Publicly accessible config, backup, or log file found: .user.ini Type: Publicly

  • Resolved gaelleclairfonce

    (@gaelleclairfonce)


    2 years, 1 month ago

    Bonjour,

    je rencontre ce problème :

    • Publicly accessible config, backup, or log file found: .user.iniType: Publicly Accessible Config/Backup/Log

    is publicly accessible and may expose source code or sensitive information about your site. Files such as this one are commonly checked for by scanners and should be made inaccessible. Alternately, some can be removed if you are certain your site does not need them. Sites using the nginx web server may need manual configuration changes to protect such files.

    Ce message est apparu hier, je ne sais pas quoi faire pour y remédier. Est-ce grave ? que dois-je faire pour solutionner ce problème ?

    Merci d’avance pour votre retour,

    Gaëlle

Viewing 1 replies (of 1 total)
  • Plugin Support wfpeter

    (@wfpeter)

    2 years, 1 month ago

    Bonjour @gaelleclairfonce,

    If you can see the publicly visible file from a browser yourself (yoursite.com/.user.ini for example), are you able to use the “HIDE FILE” option offered to you in the scan results? This will usually add some code to your .htaccess to make sure it isn’t visible or downloadable in future.

    Many thanks,
    Peter.

Viewing 1 replies (of 1 total)

The topic ‘Publicly accessible config, backup, or log file found: .user.ini Type: Publicly’ is closed to new replies.