wp-config.php

  • OMahony

    (@mindedasia)


    5 years ago

    Background: I am a very simiple-level WP user who assembled a 4 page website that worked, then a week ago stopped working. I spend 3 hours learning the cause from a really helpful video and now i have returned it to being able to update plugins – to un-crash it. but it left me with a question:

    Does anybody know why extra lines in wp-config.php would be added or be modified wihtout admin knowledge ?
    The two lines (at the end of the file)

    define(‘DISALLOW_FILE_EDIT’, true);
    define(‘DISALLOW_FILE_MODS’, true);

    had to be changed back to

    define(‘DISALLOW_FILE_EDIT’, false);
    define(‘DISALLOW_FILE_MODS’, false);

    I′m just really curious to know why and how this happened? I am the only user on this site. Does WP get updated without site-admins being informed?
    Thnks for any answers.

Viewing 1 replies (of 1 total)
  • Carike

    (@carike)

    That is probably from a security / firewall plugin.
    They don’t do it by default though, so someone probably ticked the options without understanding what the implications would be.

    Setting DISALLOW_FILE_EDIT to TRUE is actually a very good idea, since that disables the plugin and theme editors. Since editing plugin and theme files can cause fatal website errors and since experienced developers are comfortable enough with the other methods of editing their website’s code, setting it to TRUE is very prudent.
    DISALLOW_FILE_MODS is something that needs to be done with more caution, as it will break the update mechanisms.

Viewing 1 replies (of 1 total)
  • The topic ‘wp-config.php’ is closed to new replies.