I am a novice in designing developing and an absolute newbie in WP. I've been reading about security strengthening measures, one of which is moving the wp-config.php file one directory above WP install directory (outside of all the WP directories that is)
But what if that directory is still within public_html, is it as useful then?
What I've read about moving that file is not always clear/differentiating the cases in which this "above" directory is also outside public_html or within it.
Has any list ever been put together on "misbehaving" plugins when wp-config.php is moved?