WordPress.org

Ready to get started?Download WordPress

Forums

BulletProof Security
[resolved] My security status has errors (5 posts)

  1. calik1d
    Member
    Posted 1 year ago #

    1. wp-config.php is NOT htaccess protected by BPS

    2. The WP readme.html file is not .htaccess protected

    Can someone help with this? Thanks.

    http://wordpress.org/extend/plugins/bulletproof-security/

  2. calik1d
    Member
    Posted 1 year ago #

    I fixed the problem.

    I had to manually add the W3TC info to the root .htaccess

    Now both BPS and W3TC is working. I'll keep track of this since I didn't do anything to the root .htaccess code to begin with.

  3. AITpro
    Member
    Plugin Author

    Posted 1 year ago #

    Sounds like your Server type is DSO, which does not allow writing to files from within your WP Dashboard unless you temporarily change your folder permissions to allow file writing.

    AutoMagic is not working / not creating Master .htaccess files or you are unable to use the built in .htaccess file editor or you are unable to Backup or Restore files

    Most likely the cause of this is your Server API is DSO and not CGI. You can check your Server API on the BPS System Info tab page. If your Server API is DSO then some of the automated features in BPS will not work correctly because of the way ownership permissions are handled on DSO configured Servers. You will unfortunately need to manually perform these steps below using FTP. At some point a future version of BPS will have coding that will compensate for this and the automation will also work for DSO configured Servers.

    To Create the secure.htaccess file with AutoMagic
    – Change permissions of the secure.htaccess file to 777 – /wp-content/plugins/bulletproof-security/admin/htaccess/secure.htaccess.
    To Activate BulletProof Mode for your Root folder
    – Change permissions of your Root htaccess file to 777 – /your-website-root-folder/.htaccess.
    To Activate BulletProof Mode for you wp-admin folder
    – Change permissions of the wp-admin htaccess file to 777 – /your-website-root-folder/wp-admin/.htaccess.
    Activate Deny All htaccess Folder Protection For The BPS Master htaccess Folder
    – Change permissions of /wp-content/plugins/bulletproof-security/admin/htaccess folder to 777.
    Activate Deny All htaccess Folder Protection For The BPS Backup Folder
    – Change permissions of the /wp-content/bps-backup/htaccess file to 777.
    Backup Your Currently Active .htaccess Files
    – Change /bps-backup folder permissions to 777 - /wp-content/bps-backup.
    Backup Your BPS Master .htaccess Files
    – Change /master-backups folder permissions to 777 - /wp-content/bps-backup/master-backups.

    Once you have completed these installation steps above then change the permissions of both htaccess files to 644 and change all of your folder permissions back to 755 or whatever you previously had for those folder permissions. Another option is just to manually download the secure.htaccess file, wpadmin-secure.htaccess file and the deny-all.htaccess file and then just manually use FTP to upload the files to where they should be.

  4. AITpro
    Member
    Plugin Author

    Posted 1 year ago #

    Is everything still ok? if so then please resolve this thread. thanks.

  5. AITpro
    Member
    Plugin Author

    Posted 1 year ago #

    Resolving this thread.

Topic Closed

This topic has been closed to new replies.

About this Plugin

About this Topic