Support » Plugin: Sucuri Security - Auditing, Malware Scanner and Security Hardening » TimThumb problems after securing wp-content

  • Resolved Daniram

    (@daniram)


    Hello,

    after securing the wp-content folder by placing the .htaccess in it, the previews of the images generated from TimThumb are no longer displayed.

    I managed to get them to be displayed back again after placing a .htaccess file into the TimThumb folder containing this:

    <Files timthumb.php>
    Satisfy Any
    Allow from all
    </Files>

    I was wondering if this method is secure enough or maybe there’s a better one?

    Thanks

Viewing 1 replies (of 1 total)
  • Hello, you are asking if your method is secure enough to protect your site, I will say no because the code mentioned in your commend will not filter vulnerabilities in the code of a plugin or theme installed in your site.

    I added a warning in the plugin to advise administrators that activating the content directory hardening will affect the execution of plugins like TimThumb but we do not recommend to have insecure code anyway.

    The only way to be sure that your site will be virtually 100% protected against an attack is installing a firewall.

Viewing 1 replies (of 1 total)
  • The topic ‘TimThumb problems after securing wp-content’ is closed to new replies.