WordPress.org

Ready to get started?Download WordPress

Forums

Akismet
Better .htaccess (1 post)

  1. MickeyRoush
    Member
    Posted 1 year ago #

    I've noticed that 2.5.7 includes an .htaccess file. Here are the contents:

    Order Deny,Allow
    Deny from all
    
    <FilesMatch "^akismet\.(css|js)$">
    	Allow from all
    </FilesMatch>

    It would be much better and efficient if you used "Order Allow,Deny"

    Why?
    Because "Order Deny,Allow" is blacklisting and "Order Allow,Deny" is whitelisting, which is basically what you're trying to do.

    Per Apache docs:
    "First, all Allow directives are evaluated; at least one must match, or the request is rejected. Next, all Deny directives are evaluated. If any matches, the request is rejected. Last, any requests which do not match an Allow or a Deny directive are denied by default."

    http://httpd.apache.org/docs/2.0/mod/mod_access.html#order

    In simple terms, if the request doesn't match an "Allow" directive it is denied.

    So this would be better:

    Order Allow,Deny
    <FilesMatch "^akismet\.(css|gif|js)$">
    Allow from all
    </FilesMatch>

    http://wordpress.org/extend/plugins/akismet/

Topic Closed

This topic has been closed to new replies.

About this Plugin

About this Topic