I understand the plugin will allow admins the ability to browse the directory structure even beyond httpdocs.
On one site the browsing is restricted to the same level as httpdocs, on other installations I am able to browse the entire file server right up to /.
In your opinion, which is the correct implementation?
Ideally, I would like to prevent one wordpress admin from looking at the files in other wordpress accounts on the same VPS. Is this achievable? (I have full control over the VPS).
FYI – the wordpress sites in question are all fresh installs, no other plugins. I’ve checked PHP versions, ruled out Nginx, compared .htaccess, plugins, wordpress versions, file permissions, wp-config files. All the same.
- The topic ‘Directory Browsing Question’ is closed to new replies.