level to deny wp-config access but grant template (4 posts)

  1. Mark (podz)
    Support Maven
    Posted 12 years ago #

    If a user has acess to the template edit screen, and knows how to then access other files from that, then I cannot see how that can be stopped.
    The system has no way of knowing that it is not you logged in, so setting file permissions is not an option, and again user levels are coded well into wordpress.
    Again it comes back to being very careful about who you promote.

  2. Root
    Posted 12 years ago #

    Well why not get the guy to edit locally and ftp. Not quite the same solution, but the same result.

  3. ihad
    Posted 12 years ago #

    if users have ftp access they can view whatever files they want. ftp access is out of the question.

  4. Root
    Posted 12 years ago #

    Well they could send the file to you by email. Or ftp them to one dir for you to transfer. My point is you may be in pursuit of a chimera anyway. Many of us avoid editing in the template editor unless we only have browser access to our blogs. Normally we use our normal web tools.

Topic Closed

This topic has been closed to new replies.

About this Topic


No tags yet.