We have a custom php.ini and .htaccess file in the root of the web

Question

Editorial Team

Asked: May 27, 20262026-05-27T01:10:12+00:00 2026-05-27T01:10:12+00:00

We have a custom php.ini and .htaccess file in the root of the web tree.

The .htaccess cannot be accessed by default but the php.ini can be accessed.

For example:

http://example.com/php.ini

Whats the recommenced procedure to block access to the php.ini file?

You must login to add an answer.

Need An Account,

Editorial Team · Answer 1 · 2026-05-27T01:10:13+00:00

Editorial Team

Also if you must have it in the public folder try:

<Files php.ini>
  order allow,deny
  deny from all
</Files>

The Archive Base Latest Questions