This repository was archived by the owner on Aug 7, 2025. It is now read-only.
This repository was archived by the owner on Aug 7, 2025. It is now read-only.
Block readable access to .htaccess files #399
Description
Hi,
I'm a security researcher. Thank you for providing this useful clearlinux/wordpress docker image!
After I set it up, I found your docker has the configuration files .htaccess exposed to end-users.
It's recommended to restrict access to .htaccess files here.
As they may expose sensitive configuration information to attackers, would it be better to block them from public access?
Thanks!
Best,
-ct