I needed to do some security tweaks and could not access the .conf file for Nginx to make the changes. I think it would be a good idea to allow access for customization. I wanted to be able to...
1.Prevent Information Disclosure
Often servers are incorrectly configured, and can allow an attacker to get access to sensitive information that can be used in attacks.
2. Prevent PHP execution
Overview
By default, a plugin/theme vulnerability could allow a PHP file to get uploaded into your site's directories and in turn execute harmful scripts that can wreak havoc on your website. Prevent this altogether by disabling direct PHP execution in directories that don't require it.
I needed to do some security tweaks and could not access the .conf file for Nginx to make the changes. I think it would be a good idea to allow access for customization. I wanted to be able to...
1.Prevent Information Disclosure
Often servers are incorrectly configured, and can allow an attacker to get access to sensitive information that can be used in attacks.
2. Prevent PHP execution
Overview
By default, a plugin/theme vulnerability could allow a PHP file to get uploaded into your site's directories and in turn execute harmful scripts that can wreak havoc on your website. Prevent this altogether by disabling direct PHP execution in directories that don't require it.