Support Center Visit Demo License manager Buy @ envato

Can't improve security of WP

neridevneridev
in General info & installation
Hi, I have a little/big problem :) with improve security of WP. I would like to use .htaccess file with this content:

<FilesMatch "\.(php)$">
    deny from all
    allow from localhost
</FilesMatch>

This file allow run .php files from localhost only. But if I am using this, BeTheme doesn't work correctly. It show only HTML page without any CSS and JS.
Please how can I fix it?

Comments

  • AlbertAlbert
    Hi,

    this is not possible to do what you need. Our theme uses dynamic css (css files with .php extension) and this won't work.

    Thanks for understanding.
    Learn more: Video Tutorials | How To | FAQ Vote on what comes next
  • neridevneridev
    Why other multipurpose themes, that use dynamic CSS too ( yes, use .php for generate css) ,  works with .htaccess file fine?
    I think, if you use .php files for dynamic CSS, they can run from localhost... there is not any need for running "out of localhost".
    All Wordpress use .php files, plugins use .php files and works with .htaccess restriction.

    I think, you could debug and find what files are loading "out of localhost" and fix it... otherwise BeTheme is very poor in security and I will be very unhappy.
    Security should be on first place! Thanks for thinking about this.
  • AlbertAlbert
    We can promise that we'll think about it while future updates.
    Learn more: Video Tutorials | How To | FAQ Vote on what comes next
Sign In or Register to comment.
This website uses cookies

We use cookies to personalise content and ads, to provide social media features and to analyse our traffic. We also share information about your use of our site with our social media, advertising and analytics partners who may combine it with other information that you’ve provided to them or that they’ve collected from your use of their services.

Neccessary

Necessary cookies help make a website usable by enabling basic functions like page navigation and access to secure areas of the website. The website cannot function properly without these cookies.

Analytics & Performance

Statistic cookies help website owners to understand how visitors interact with websites by collecting and reporting information anonymously.

Marketing

Marketing cookies are used to track visitors across websites. The intention is to display ads that are relevant and engaging for the individual user and thereby more valuable for publishers and third party advertisers.

Cookies are small text files that can be used by websites to make a user's experience more efficient.

The law states that we can store cookies on your device if they are strictly necessary for the operation of this site. For all other types of cookies we need your permission. This means that cookies which are categorized as necessary, are processed based on GDPR Art. 6 (1) (f). All other cookies, meaning those from the categories preferences and marketing, are processed based on GDPR Art. 6 (1) (a) GDPR.

This site uses different types of cookies. Some cookies are placed by third party services that appear on our pages.

You can at any time change or withdraw your consent from the Cookie Declaration on our website.

Learn more about who we are, how you can contact us and how we process personal data in our Privacy Policy.

Please state your consent ID and date when you contact us regarding your consent.