<Files "*"> order allow,deny deny from all </Files>
now when I add backup to a wordpress site, it still dont work, but how is that possible, ohh how i hate that
sublime1
7:24 pm on Sep 29, 2010 (gmt 0)
If you add this to a .htaccess file in a given directory on a server, it says "deny web access to all files in (and below) the current directory".
I'll bet you're using the backup-db plugin -- it writes its backup files to a location in the wp-content directory, which is normally accessible -- without such a directive, someone could potentially download your backup files.
Most likely, the problem is that the web server (Apache) does not have the permission to write files to the directory. The directory must be writable by the apache Unix account (usually either "apache" or "httpd").
Typically, apache should be the "owner" of the directory, and have read, write and execute ("rwx" permissions). Most likely, you'll need to change the owner of the directory. The unix command for this is "chown", and you may be able to do this with an FTP client, as well, depending on a few things.
zeus
12:01 pm on Sep 30, 2010 (gmt 0)
nah dont have that plugin, I have fixed the wordpress thing, but what makes me worried how that was possible to change that many sites htaccess files.
jdMorgan
1:05 pm on Sep 30, 2010 (gmt 0)
Who or what changed these .htaccess files?
If you did not change them, and you didn't run a script that would change them, then this could be a server hack. But there's not enough information posted in this thread to determine that.
Jim
sublime1
3:51 pm on Sep 30, 2010 (gmt 0)
Hi Zeus --
I am very happy to help if you need it -- I know WordPress, Apache, Unix and all that.
As Jim says, more info about what may have happened would be important, and I agree that you have some reason to be worried. Here are some things that would be helpful:
What version of Wordpress
What kind of host (do you have a private server or is it a managed host)
What happened (or happens) to cause this problem. When did you first notice it? Can you reproduce the problem?
What other directories have the .htaccess file in them?
How do you access your WP installation (shell, FTP program, Web Control Panel or similar?)
If you have Google Webmaster Tools, does it report any malware? (If not, you should get an account and verify your site!)
