Additional Security Procedures
Jump to navigation Jump to search
Move the index directory out of your document root directory (eg html_public) and set $INDEX_DIRECTORY in the config.php file accordingly.
Create a tmp_session sub-directory in your index directory, and set this as your session save path.
Move the config.php file out of your document root directory, replacing it with a file that requires it at the new location. For example, require_once "../safefolder/config.php";
Use Media Firewall to protect media files from unauthorized access.
These procedures are independent of each other and not in procedural order.