Best Coding practises

How to deny php execution in specific folders and with specific file names

Updated on

May you site have been hacked and you want to don’t allow execution of specific files with specific names.

May you have give upload access to a folder and you want in this folder php files cannot been executed.

You can do this with .htaccess file

Examples below

#With this htaccess snippet you can disallow all php files execution
<Files *.php>
  deny from all
</Files>
#With this htaccess snippet you can disallow php files execution with name myphpfile.php
<Files *myphpfile.php>
  deny from all
</Files>
#With this htaccess snippet you can disallow php files execution that exists in wp-content/uploads folder
<Files *wp-content/uploads/*.php>
  deny from all
</Files>

Related Post

PHP tricks and tips

How to recursive left trim a string in PHP

How to access WordPress Database from your Dashboard

Woocommerce – Update checkout on method payment change

How to add PHP Hooks in your WordPress Site

PHP tricks and tips

Using trim/ltrim/rtrim php functions with 2 parameters may cause unexpected outputs