How to secure Plugin files to prevent direct access

October 23, 2015 by admin Leave a Comment

A lot of WordPress Plugins allow direct access by typing in the url in your browser. Depending on the situation, this could be a potential security threat that could allow your site to be hacked. Today’s snack will show you how to stop people from being able to access your Plugin files directly.

Just enter this code below into your .htaccess file. Remember to back up your .htaccess file before you edit it.

<Files ~ ".(js|css)$">
  order allow,deny
  allow from all
</Files>

We obviously can’t guarantee this will help prevent your site from being hacked, but it could help.

Disclosure: There are affiliate links on posts and throughout the website and if you use the links to make a purchase we may earn a commission from it. We link to these companies and their products because of the quality of the companies and not because of the commission we may receive from it.

Disclaimer: The information contained in this website is for general information purposes only and in no event will this website or its owners be liable for any losses or damages associated with your use of our website or content. We recommend that you make a backup of your website before you make updates to it. Click here to see our full Disclaimer.

Reader Interactions

Leave a Reply Cancel reply