LS Creating Addtional .htaccess Files

  • Resolved lechon

    (@lechon)


    5 years, 5 months ago

    Hello,

    The plugin is creating additional .htaccess files that are easy to view via web browser. This is a really, really bad idea. How do we fix this?

Viewing 3 replies - 1 through 3 (of 3 total)
  • Plugin Support qtwrk

    (@qtwrk)

    Hi,

    The LSWS itself already prohibits access to “.” file , like .htaccess.

    I assume you are not using LSWS/OLS ?

    If that is case, please try add

    RewriteRule .htaccess - [F]

    To your .htaccess , this rule should prohibit all request to such files.

    Best regards,

    Thread Starter lechon

    (@lechon)

    Hi,

    We are using LS cache in 2 sites , one with LSWS and the other one without it. The one without the LSWS was the one creating the issue. We implemented the code you gave us and it works, thanks for that.

    We were surprised by this because Cloudflare blocks this type of incursions, but we discovered that Cloudlfare will only block one .htaccess file and no other copies of it.

    Regards,

    Plugin Support qtwrk

    (@qtwrk)

    Hi,

    Yes, I shall advice our devs to built a feature to block .htaccess in case from non-LSWS server.

    Best regards,

Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘LS Creating Addtional .htaccess Files’ is closed to new replies.