Hi,
I've noticed a potential security issue while EasyApache is running. During part of the process, visiting a PHP-based website doesn't load the site, but instead downloads the PHP file. Of course that also means that hackers can freely download files like wp-config.php and others.
Has anyone else seen this? It seems to happen for a fairly long time during the process.
And, most importantly, is there a fix? This is a big risk IMO.
Thanks,
Mark
I've noticed a potential security issue while EasyApache is running. During part of the process, visiting a PHP-based website doesn't load the site, but instead downloads the PHP file. Of course that also means that hackers can freely download files like wp-config.php and others.
Has anyone else seen this? It seems to happen for a fairly long time during the process.
And, most importantly, is there a fix? This is a big risk IMO.
Thanks,
Mark