Geeklog Forums

Ive got geeklog installed and i thought i did everything that i needed to do to make it secure but i just did the security check and i got

1. Good! You seem to have removed the install directory already.
2. Your db-config.php is reachable from the web.
This is a security risk and should be fixed!
3. Your logs directory is reachable from the web.
This is a security risk and should be fixed!
4. Your plugins directory is reachable from the web.
This is a security risk and should be fixed!
5. Your system directory is reachable from the web.
This is a security risk and should be fixed!
6. Your backups directory is reachable from the web.
This is a security risk and should be fixed!
7. Your data directory is reachable from the web.
This is a security risk and should be fixed!
8. Good! You seem to have changed the default account password already.

How do i make it so these files and directories are unreachable?

If you installed Geeklog in the preferred/default configuration, alle these file are outside the public directories, but it seems you've installed the complete CMS in a public directory.

You could protect them with a .htaccess file, but it's better to install Geeklog outside the public area. If you specify the path/directory you've installed Geeklog in, we can be more specific.

---

Dutch Geeklog sites about camping/hiking:
www.kampeerzaken.nl | www.campersite.nl | www.caravans.nl | www.caravans.net

I'm going to ninja this thread rather than start a new one, given that my problem is exactly the same!

I've got Geeklog installed in the root drive. was installed via Fantastico. Can I safely ignore this error, or is that bad? :pray:


**Edit**
Actually, I'm a noob. My error is totally different!

I GOT THIS SAME MESSAGE WHEN DOING A SECURITY CHECK; DO I IGNORE THIS OR FIX IT?

---

Give me a place to stand and i will move the earth

Honest question: Does this sound like something you should ignore?

bye, Dirk