admin管理员组

文章数量:1122826

This question would appear similar to Deny php execution in /wp-includes - using .htaccess in /wp-includes VS root folder - but is different in that that question asserts the questioner has already determined they want to deny access.

I'm trying to clamp down on "drive by hacking" on my generic wordpress hosting server - ie I don't control what plugins can be run. (I noticed a site I am very familiar with getting slammed, and discovered it was something dodgy looking at files in this directory - and I thus know this useage was not legitimate). I can easily whip something up to block php access to this directory - and my looking at the server logs would imply this is likely a good idea - but are there any gotchas I need to be aware of, or legitimate reasons why php files might be called from the web browser for anything which is under the wp-includes directory?

本文标签: hackedAre there any legitimate reasons for a web browser to directly access wpincludes*php

版权声明:本文标题:hacked - Are there any legitimate reasons for a web browser to directly access wp-includes*.php? 内容由网友自发贡献,该文观点仅代表作者本人, 转载请联系作者并注明出处:http://www.betaflare.com/web/1736300958a1931009.html, 本站仅提供信息存储空间服务,不拥有所有权,不承担相关法律责任。如发现本站有涉嫌抄袭侵权/违法违规的内容,一经查实,本站将立刻删除。