Question How to overrde "Security of the wp-content folder" with .htaccess

Laurence@ · Jul 29, 2018

What are the .htaccess directives to override this function. Say a user wants to secure /wp-content but allow 2 scripts to execute. Anyone know?

Laurence@ · Jul 30, 2018

Anyone know?

G J Piper · Aug 1, 2018

Laurence@ said:
What are the .htaccess directives to override this function. Say a user wants to secure /wp-content but allow 2 scripts to execute. Anyone know?

I don't use .htaccess. However, you can turn off the wp-content security in the WordPress settings and re-enable it manually in your "Additional nginx directives" settings for each domain. Do something like this, enabling the PHP access for specific files then disabling it for all others:

Code:

# Allow PHP for specific files while stopping all other PHP in wp-content (this is only for https content)
location ~* "^/wp-content/.*myspecialfile.php" {
   proxy_pass   https://myserveripaddress:7081;
   proxy_set_header Host   $host;
   proxy_set_header X-Real-IP   $remote_addr;
   proxy_set_header X-Forwarded-For   $proxy_add_x_forwarded_for;
}
location ~* "^/wp-content/.*\\.php" { deny all; }

Question How to overrde "Security of the wp-content folder" with .htaccess

Laurence@

Regular Pleskian

Laurence@

Regular Pleskian

G J Piper

Regular Pleskian

Similar threads