Does iThemes Security make the following change to the .htaccess file automatically:
deny from all
This is as per this article:
I am using iThemes Security but it doesn't seem to have done it.
Any thoughts would be greatly appreciated.