with your Defender plugin, the suggested method to Prevent

Hello,

with your Defender plugin, the suggested method to Prevent PHP execution seems to refer to a NGINX server....how do we do this for on an Apache server?

  • Hoang Ngo
    • Code Slayer

    Hi @office55,

    I hope you are well today.

    Hmm, perhaps your config is nginx as proxy, and apache as php processing. In this case, you will need to create 2 .htaccess files.

    1.Please create a .htaccess file inside /wp-includes, with this content

    ## WP Defender - Prevent PHP Execution ##
    <Files *.php>
    Order allow,deny
    Deny from all
    </Files>
    <Files wp-tinymce.php>
    Allow from all
    </Files>
    <Files ms-files.php>
    Allow from all
    </Files>

    2. Create a .htaccess file inside /wp-content/, which this content

    ## WP Defender - Prevent PHP Execution ##
    <Files *.php>
    Order allow,deny
    Deny from all
    </Files>
    ## WP Defender - End ##

    Then you will be good now :slight_smile:

    Please note that, the wrong detection is a bug, and it will be fixed in next version.

    If you have any additional issues, please let us know and we'll be happy to help.

    Best regards,
    Hoang

Thank NAME, for their help.

Let NAME know exactly why they deserved these points.

Gift a custom amount of points.