Wordpress Security

Disable Directory Listing

Most web servers allow any user to browse the directories (folders) when no index file is available. This can lead to information leakage and help an attacker when trying to compromise your site.

In order to improve your security, you should disable this option. The also recommends it.

Disabling directory browsing on Apache

To disable directory listing on Apache, add the following line to your .htaccess file:


# Disabling directory browsing on Apache
Options -Indexes

PreviousHow To Use Cron to Automate Tasks on CentOS 8 NextOpen database Error!: could not find driver linux Fix

Last updated 4 years ago

Was this helpful?