BuddyPress Docs attachments directory is publicly accessible
-
I have the following error:
Your BuddyPress Docs attachments directory is publicly accessible. Doc attachments will not be properly protected from direct viewing, even if the parent Docs are non-public.
It looks like you are running Apache. The most likely cause of your problem is that the AllowOverride directive has been disabled, either globally (httpd.conf) or in a VirtualHost definition. Contact your host for assistance.
My apache2.conf are below:
____
#=========================================================================#
# Default Web Domain Template #
# DO NOT MODIFY THIS FILE! CHANGES WILL BE LOST WHEN REBUILDING DOMAINS #
# https://hestiacp.com/docs/server-administration/web-templates.html #
#=========================================================================#<VirtualHost xx.xx.xx.xx:8080>
ServerName domain.com
ServerAdmin info@domain.com
DocumentRoot /home/user/web/domain.com/public_html
ScriptAlias /cgi-bin/ /home/user/web/domain.com/cgi-bin/
Alias /vstats/ /home/user/web/domain.com/stats/
Alias /error/ /home/user/web/domain.com/document_errors/
#SuexecUserGroup user user
CustomLog /var/log/apache2/domains/domain.com.bytes bytes
CustomLog /var/log/apache2/domains/domain.com.log combined
ErrorLog /var/log/apache2/domains/domain.com.error.logIncludeOptional /home/user/conf/web/domain.com/apache2.forcessl.conf*
<Directory /home/user/web/domain.com/stats>
AllowOverride All
</Directory>
<Directory /home/user/web/domain.com/public_html>
AllowOverride All
Options +Includes -Indexes +ExecCGI
</Directory><FilesMatch \.php$>
SetHandler “proxy:unix:/run/php/php8.3-fpm-domain.com.sock|fcgi://localhost”
</FilesMatch>
SetEnvIf Authorization .+ HTTP_AUTHORIZATION=$0IncludeOptional /home/user/conf/web/domain.com/apache2.conf_*
IncludeOptional /etc/apache2/conf.d/*.inc
- You must be logged in to reply to this topic.
