Additional Security Procedures

From PGVWiki
Revision as of 14:27, 28 July 2010 by Ggpauly (talk | contribs) (→‎Procedures)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to navigation Jump to search

Introduction

After installing and securing your website, you can take these additional steps to further secure it.

Procedures

These procedures are independent of each other and not in procedural order.

  • Move the index directory out of your document root directory (eg html_public) and set $INDEX_DIRECTORY in the config.php file accordingly.
  • Create a tmp_session sub-directory in your index directory, and set this as your session save path.
  • Move the config.php file out of your document root directory, replacing it with a file that requires it at the new location. For example, require_once "../safefolder/config.php";
  • Use Media Firewall to protect media files from unauthorized access.