How to prevent uploads folder from being accessible

  • Resolved Dreamscape2

    (@dreamscape2)


    1 year ago

    Hi. Is there a way to prevent my uploads folder to be indexed and publicly visible through Wordfence? It’s supposed to be a secured intranet site but the uploads index is discoverable.

Viewing 1 replies (of 1 total)
  • Plugin Support wfpeter

    (@wfpeter)

    Hi @dreamscape2, thanks for getting in touch.

    Wordfence can help disable code execution in the /wp-content/uploads folder in Wordfence > All Options > General Wordfence Options. The contents of the .htaccess we place there should mirror that shown in our documentation: https://www.wordfence.com/help/dashboard/options/#exec-uploads.

    We don’t specifically have an option to hide the directory listing, although I’ve noticed visiting that folder on my test site causes a 403 with or without Wordfence. Depending on the server platform or host, this protection may be offered via a control panel or .htaccess placement. Your host may be able to assist with this if you’re unsure whether it’s available.

    Thanks,
    Peter.

Viewing 1 replies (of 1 total)
  • The topic ‘How to prevent uploads folder from being accessible’ is closed to new replies.