Hi,
I'm a security researcher. Thank you for providing this useful clearlinux/wordpress docker image!
After I set it up, I found your docker has the configuration files .htaccess exposed to end-users.
It's recommended to restrict access to .htaccess files here.
As they may expose sensitive configuration information to attackers, would it be better to block them from public access?
Thanks!
Best,
-ct
Hi,
I'm a security researcher. Thank you for providing this useful
clearlinux/wordpressdocker image!After I set it up, I found your docker has the configuration files
.htaccessexposed to end-users.It's recommended to restrict access to .htaccess files here.
As they may expose sensitive configuration information to attackers, would it be better to block them from public access?
Thanks!
Best,
-ct