core file scanner

  • Resolved diedenker

    (@diedenker)


    8 years, 9 months ago

    hi!

    there is no option in the core file scanner to mark a problem as “fixed” or “ignored”. some security plugins recommend to delete the readme file in wordpress (because it contains the wordpress version), and consequently shield comes up with a warning that this file is missing – again and again. and when the readme is put back, then error messages from other security plugins come up…

    thanks for considering that!

    https://www.ads-software.com/plugins/wp-simple-firewall/

Viewing 1 replies (of 1 total)
  • Plugin Author Paul

    (@paultgoodchild)

    Deleting the readme.html file is not security.

    If a “security” plugin is recommending you do this, it’s misleading.

    The ONLY time you might consider hiding your WordPress version is if you are not going to update your WordPress and the version you’re running has a known security vulnerability.

    I may add an exclusion for the next release of Shield for this file if it’s missing (not if it’s different).

    Again, readme.html is absolutely not a security risk.

Viewing 1 replies (of 1 total)
  • The topic ‘core file scanner’ is closed to new replies.