This topic contains 3 replies, has 2 voices. Last updated by Ceefacom 3 years, 7 months ago.
Topic Author | Topic |
---|---|
Posted: Friday May 17th, 2013 at 3:42 am #50095 | |
Hi Guys, I’ve had a look to see if this has been covered elsewhere, which I am guessing it has. My apologies if I’m rehashing something already covered. We’re about to go live with a new site and I’m going through the steps for hardening WordPress. I’m following steps to add security to wp-includes, which adds some lines to .htaccess to block scripts using mod_rewrite. The page/section I’m referring to: http://codex.wordpress.org/Hardening_WordPress#Securing_wp-includes This isn’t my area of expertise, so when I edit .htaccess and see that S2Member has some instructions already there referring to mod_rewrite I’m not sure if adding WP’s suggested lines will interfere with it or not. Or if not, whether it’s better to stack them in a particular order, or if it doesn’t matter. Would you be able to provide any advice for me? If it makes any difference, the site has both paid membership and a shopping cart with digital downloads (handled by another plugin). It’s not a multisite. For reference, the S2Member lines are: # BEGIN s2Member GZIP exclusions RewriteEngine On # END s2Member GZIP exclusions And the WP lines from the above link are: # Block the include-only files. |