How to secure config.php file

marcyslen

marcyslen

Member
Joined
Jul 9, 2016
Messages
48
Points
8
I saw config.php file in my web root, i am not sure it can be viewed by someone or not, is there a way to secure this file on my hosting?
 
energizedit

energizedit

Well-known member
Registered
Joined
Dec 13, 2016
Messages
259
Points
18
Most likely it can not be "read" by anyone other than you. But you can change the permissions using the cPanel File Manager, change the permissions to Owner read and everything else as no permissions (Group and Everyone would have no permissions)

You will want to make sure that whatever software (eg. Wordpress) you have installed can still read the config.php file though.
 
marcyslen

marcyslen

Member
Joined
Jul 9, 2016
Messages
48
Points
8
energizedit said:
Most likely it can not be "read" by anyone other than you. But you can change the permissions using the cPanel File Manager, change the permissions to Owner read and everything else as no permissions (Group and Everyone would have no permissions)
Click to expand...
How to change the permissions for my files in cPanel? I leave default setting when uploaded my files to my host. What permission should I set for each file?

energizedit said:
You will want to make sure that whatever software (eg. Wordpress) you have installed can still read the config.php file though.
Click to expand...
I want to have several ways to protect my config.php file on my WP sites, I read Wordpress sites could be hacked in different ways.
 
UH-Peter

UH-Peter

[email protected]
Hosting Provider
Registered
Joined
Dec 4, 2016
Messages
120
Points
18
You can change the permissions for files through the cPanel File Manager or in your preferred FTP program. In File Manager, locate the file you wish to change the permissions for. Next, right click and select Change Permissions from the menu (or select the icon near the top of the screen).

PL_fix_Selection_19.jpg
PL_fix_Selection_20.png

This will bring up the Change Permissions window where you can adjust the settings as needed by checking the box by each permission you want for each level of access (User, Group and World).

PL_fix_Selection_21.png

Once you are finished editing your file permissions, click the "Change Permissions" button.

Keep in mind that you should only change file permissions if needed. You want to make sure that you aren't allowing more access to your files than is necessary, since that can leave your website vulnerable.

Incorrect file permissions can cause errors or even worse, allow unauthorized users to hack your site. Remember that 777 permissions means that your file is readable, writeable and executable by the "world". This is not common, as it is a rare situation where a file needs to be written and executed by the "world." If you find files or folders with permissions that do not match the default permissons, it's usually best to change them to the recommended permissions.
 
You must log in or register to reply here.
Older Threads
Marin Davies
What is SiteLock ?
Replies
6
Views
3,977
ForwardWeb
elzorro
cPanel error when using Cloudflare DNS
Replies
5
Views
3,065
jwn
F
Does your host allow overselling?
Replies
7
Views
8,182
ikalf
HostXNow
OVH Dedicated Server Price Increase by 20%
Replies
14
Views
7,079
cPanelHosting
Marin Davies
How to manage my domain name contact information (whoisinfo)?
Replies
8
Views
3,092
energizedit
Newer Threads
David Beroff
Send notification when apache or mysql server is down
Replies
4
Views
2,479
HostXNow
energizedit
My Intro
Replies
10
Views
4,118
Gecko
HostXNow
Hello everyone from the UK
Replies
5
Views
2,415
Nixtree
energizedit
VPS Templates
Replies
4
Views
2,632
HostXNow
energizedit
VPS Management
Replies
4
Views
2,447
HostXNow
Latest Threads
josephilip
Welcome to ServerMO: Excellence in Dedicated Server Hosting
Replies
0
Views
40
josephilip
cancan
Save an incredible 90% off! The Best HostPapa Deal so Far: Unlimited SSL, 50 GB NVMe, 24/7 support
Replies
0
Views
71
cancan
M
How to Choose the Best Web Hosting Provider for a New Website ??
Replies
1
Views
57
BlueLeaf
J
Jtti: What are some common misconceptions about firewall rules?
Replies
0
Views
162
jtti
Mvv758
Hello
Replies
1
Views
86
AlbaHost
Recommended Threads
onegoodman25
WTS Cash Back Comparison Script
Replies
0
Views
2,228
onegoodman25
David Beroff
Verify whmcs license?
Replies
6
Views
5,891
David Beroff
itrafficsupplier
WTB Looking for pr5+ or wikipedia article link
Replies
5
Views
4,316
seosystems
Joe S.
How to set up a dedicated server hosting
Replies
4
Views
3,326
LJSHost
JFSG
  • Poll
Do you read the Terms of Service?
2 3 4
Replies
71
Views
18,249
vps6
Similar Threads
harrygreen90
What should I change on the DirectAdmin control panel to make my server more secure?
Replies
10
Views
2,266
David Beroff
BlueLeaf
How to Secure Email Communication with an S/MIME Certificate?
Replies
0
Views
880
BlueLeaf
Dopani
How do I configure and manage SSH (Secure Shell) access to my VPS?
Replies
3
Views
1,194
David Beroff
Solarcom
Fast&Secure Swiss hosting for you | Solar Communications | DISCOUNT HERE!
Replies
3
Views
937
Solarcom
sh-admin
Ready To Go Pre-Configured , Secured & Hardened Servers
Replies
3
Views
3,080
Philippe Gaucher

Latest postsNew threads

Latest Hosting OffersNew Reviews

Popular Contributors - Past 30 Days

Sponsors

Tag Cloud

You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an alternative browser.
  • cpanel
  • dedicated
  • free
  • hello
  • hosting
  • hosting services
  • marketing
  • offers
  • seo
  • server
  • services
  • vps
  • web
  • web hosting
  • website
  • wordpress
    • Top