[wp-hackers] protecting wp-content/plugins ?

Omry Yadan omry at yadan.net
Sat Aug 18 08:14:51 GMT 2007


g30rg3_x wrote:

> 2007/8/17, Omry Yadan <omry at yadan.net>:
>   
>> Matt wrote:.
>> I really don't see the big deal here. why not add an empty index.html
>> file and be done with it?
>> it will certainly reduce the vulnerability of many wp blogs out there.
>>     
>
> because you will need to add a blank index.html to every directory
> (and subdirectories), its a not efficient way to solve this...

covering wp-content and wp-themes will make the life of an attacker much
harder.
there is a huge difference because those are guarantied to be there.



More information about the wp-hackers mailing list