Bad Url Access scan

The scan

This scan checks that several important WordPress files are not directly accessible.

The fix

SecuPress will block access to those files using rules depending on your server.

What if the fix doesn't work ?

For Apache servers : the .htaccess  file is probably not writeable. Access your site via FTP and open up the .htaccess  file. Add in the lines provided by SecuPress in the error message.

If the file is writable and rules applied, check that you don't have any other .htaccess in the WP folders like ./wp-admin/, ./wp-includes/, ./wp-content/, and ./wp-content/uploads/ because they override the main (our) rules.

For IIS7 servers : the web.config  file is probably not writeable. Access your site via FTP and open up the web.config  file. Add in the lines provided by SecuPress in the error message. 

For nginx servers : SecuPress can't access the nginx.conf  file. Access your site via FTP and open up the nginx.conf  file. Add in the lines provided by SecuPress in the error message.