How to hide the .user.ini file on Lightsail

I have a WordPress site hosted on Lightsail and one of my plugins called Wordfence scanned and reported that I need to hide .user.ini file to prevent a security breach. Can anyone help me with this issue? Thanks

Topics

Compute

Tags

Amazon Lightsail

Language

English

John

asked a year ago339 views

1 Answer

Newest
Most votes
Most comments

Are these answers helpful? Upvote the correct answer to help the community benefit from your knowledge.

I think the problem can be solved by adding the following setting in .htaccess to prevent external access to .user.ini.

<FilesMatch "^(\.user\.ini)">
order allow,deny
deny from all
</FilesMatch>

EXPERT

Riku_Kobayashi

answered a year ago

Relevant content

Do i need to encrypt the static IP on a LightSail WordPress site?
Accepted Answer
Gary Smith
asked 10 months ago
WordPress files on LightSail
rePost-User-2381584
asked 2 years ago
My sitemap.xml thats on my Lightsail wordpress site is suddenly pointing to foreign scam sites - How can I fix this?
jagberg
asked 7 months ago
Upload Zipped Wordpress Files to Lightsail
AngelSky
asked 3 months ago
How do I host an HTML website as a subdomain in my Lightsail WordPress instance?
AWS OFFICIALUpdated 3 months ago
How do I install WordPress in a Lightsail instance instead of the WordPress blueprint that Bitnami provides?
AWS OFFICIALUpdated 4 months ago
How do I install a Let's Encrypt SSL certificate in a Bitnami stack that's hosted on Lightsail?
AWS OFFICIALUpdated 5 months ago
How do I install a wildcard Let's Encrypt SSL certificate in a Bitnami stack that's hosted on Lightsail?
AWS OFFICIALUpdated 2 months ago
Why can't I connect to a peered VPC when using an AWS Site-to-Site VPN connection that terminates on a virtual private gateway?
EXPERT
Karthikiran Ilango
published 10 months ago
Amazon GameLift releases a major update to the GameLift plugin for Unity on GitHub
EXPERT
Sachin
published 6 months ago