stackoom
  简体   繁体   中英

Edit .htaccess file to allow .php execution

 原文  2016-07-27 16:33:47       php/ wordpress/ .htaccess

Question

The following entry in my .htaccess file was preventing a Wordpress .php script from executing and causing errors on my website. 

<FilesMatch "\.(?i:php)$">
  <IfModule !mod_authz_core.c>
    Order allow,deny
    Deny from all
  </IfModule>
  <IfModule mod_authz_core.c>
    Require all denied
  </IfModule>
</FilesMatch>

I have removed the entry and it resolved the problem. However, I don;t know if this has then left my website at risk. How would be the best way to allow a certain file to run (taxonomy-redirect.php) without causing any undue risk.

1 answers

solution1
 0 ACCPTED  2016-07-27 16:56:49

Removing this block altogether will allow execution of any .php file and that might cause security issues.

You should allow just taxonomy-redirect.php while still disallowing other .php files using a negative lookbehind regex like this : 

<FilesMatch "(?<!taxonomy-redirect)\.(?i:php)$">
  <IfModule !mod_authz_core.c>
    Order allow,deny
    Deny from all
  </IfModule>
  <IfModule mod_authz_core.c>
    Require all denied
  </IfModule>
</FilesMatch>

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question How to allow execution of PHP in HTML file using .htaccess allow .php extension in htaccess file .htaccess How to allow php execution only in one directory? + security questions allow access to only one php file with htaccess htaccess allow access to one PHP file How to allow users to edit PHP file? PHP htaccess - allow disallow edit htaccess via php Edit .htaccess with PHP Edit htaccess with php
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM