Title: A question about security
Last modified: September 15, 2021

---

# A question about security

 *  Resolved [mlapl1](https://wordpress.org/support/users/mlapl1/)
 * (@mlapl1)
 * [4 years, 9 months ago](https://wordpress.org/support/topic/a-question-about-security/)
 * Hello
 * I gather that when a SCORM module is uploaded it goes into the normal wordpress
   structure. This means that anybody able to guess its URL may be able to access
   it directly without going through the LMS or a membership gateway. So… my question
   is: what measures does cluevo have to protect modules and other uploaded materials.
   One solution that comes to mind (but may have overheads) is to store modules 
   above the root of the web server (I think Moodle does this) – but that would 
   complicate the coding a bit I guess – what do you think?
    Andrew

Viewing 2 replies - 1 through 2 (of 2 total)

 *  Plugin Author [CLUEVO](https://wordpress.org/support/users/cluevo/)
 * (@cluevo)
 * [4 years, 8 months ago](https://wordpress.org/support/topic/a-question-about-security/#post-14912439)
 * Hey mlapl1,
 * we currently have a basic security feature via .htaccess in place. You can activate
   this on the CLUEVO settings page. What this does is it places a .htaccess file
   inside the module directory prevents direct access to the files. Someone very
   determined can probably circumvent this by forging the requests to the files 
   but for the majority of users this should prevent undue access.
 * We do have something more in-depth planned, but this will need some more time
   to implement. It will probably be something along the lines of what you mentioned
   with storing the files outside the root directory. We’re currently exploring 
   options for this though, because this will need to be optional as a lot of users
   don’t actually have hosting that allows this sort of solution.
 * Greetings,
 * Chris
 *  Thread Starter [mlapl1](https://wordpress.org/support/users/mlapl1/)
 * (@mlapl1)
 * [4 years, 8 months ago](https://wordpress.org/support/topic/a-question-about-security/#post-14914930)
 * Thank you very much [@cluevo](https://wordpress.org/support/users/cluevo/) – 
   that is very helpful.
    -  This reply was modified 4 years, 8 months ago by [mlapl1](https://wordpress.org/support/users/mlapl1/).

Viewing 2 replies - 1 through 2 (of 2 total)

The topic ‘A question about security’ is closed to new replies.

 * ![](https://ps.w.org/cluevo-lms/assets/icon-256x256.png?rev=2111880)
 * [CLUEVO LMS, E-Learning Platform](https://wordpress.org/plugins/cluevo-lms/)
 * [Frequently Asked Questions](https://wordpress.org/plugins/cluevo-lms/#faq)
 * [Support Threads](https://wordpress.org/support/plugin/cluevo-lms/)
 * [Active Topics](https://wordpress.org/support/plugin/cluevo-lms/active/)
 * [Unresolved Topics](https://wordpress.org/support/plugin/cluevo-lms/unresolved/)
 * [Reviews](https://wordpress.org/support/plugin/cluevo-lms/reviews/)

 * 2 replies
 * 2 participants
 * Last reply from: [mlapl1](https://wordpress.org/support/users/mlapl1/)
 * Last activity: [4 years, 8 months ago](https://wordpress.org/support/topic/a-question-about-security/#post-14914930)
 * Status: resolved