Moving Config to Site’s Root | WordPress.org

Resolved Storyman
(@storyman)

18 years, 11 months ago

Hopefully someone can tell me the security level risk of having the config file in the public_html folder. I’ve always been under the impression that it’s best to move it up into the site’s root. That is the wp-config.php file is at the same level as the public_html folder.

Is there a security risk with the config file in the public_html folder?

Is it possible to move the config file up one level? If so, which file(s) need to be changed?

Viewing 1 replies (of 1 total)

whooami
(@whooami)

18 years, 11 months ago

There’s very little risk involved with the standard location.

Unless you leave it and/or your entire public_html dir with insecure permissions.

Unless your php parser takes a complete dump and decides to spit out php in plain text. Ive NEVER seen it happen.

if you want to minimize risk, you can move it up.. or you can just rename it.

Either way, you are edit the tops of nearly every core WordPress file.

Viewing 1 replies (of 1 total)

The topic ‘Moving Config to Site’s Root’ is closed to new replies.

Tags

In: Fixing WordPress
1 reply
2 participants
Last reply from: whooami
Last activity: 18 years, 11 months ago
Status: resolved

Topics

Topics with no replies

Non-support topics

Resolved topics

Unresolved topics

All topics