error_log file in root a security risk?
-
Good evening everyone,
I noticed an “error_log” file in the root of my WordPress website continues to grow by the day. The size of the file is currently at 50MB. When I look at the file using Textpad or Notepad, I see some of the errors in it contain the prefix name of my database tables, which I changed for security reasons using a well known security plugin. I am concerned that this error_log file shows the full name of my prefix database table name.
My question to the experts on this forum is this. Is there a danger with a hacker accessing the error_log file from my website’s root and then reading the file, thus seeing the name of the database tables? I worry that the file is just sitting on my website’s root. Is there no way to have the error_log file be generated somewhere else in the website folder structure, maybe in a folder I create? I just feel like its vulnerable just sitting on the root.
Thank you,
Nate
- The topic ‘error_log file in root a security risk?’ is closed to new replies.