Additional Security Procedures

From PGVWiki
Jump to navigation Jump to search


After installing and securing your website, you can take these additional steps to further secure it.


These procedures are independent of each other and not in procedural order.

  • Move the index directory out of your document root directory (eg html_public) and set $INDEX_DIRECTORY in the config.php file accordingly.
  • Create a tmp_session sub-directory in your index directory, and set this as your session save path.
  • Move the config.php file out of your document root directory, replacing it with a file that requires it at the new location. For example, require_once "../safefolder/config.php";
  • Use Media Firewall to protect media files from unauthorized access.