In addition to the main .htaccess File, b2evolution comes with several
sample.htaccess files which you can rename to
.htaccess in their respective folders.
Doing so will prevent direct execution of
.php files, as an additional security precaution, in several unwanted places such as:
You normally don’t need this additional precaution, as only System Admins can upload files into these folders. However, in case of a security breach, it can help protecting against hackers who try to upload a command shell.
Created by • Last edit by on Mar 19, 2017