Source: wordpress Version: 4.0.1 Severity: normal Dear Maintainer,
The README advices the user to create a config file in /etc/wordpress/config- local.php based on the /usr/share/doc/wordpress/examplesapache.conf example. However it forgots to say this file should not be available to all users as it contains wordpress password ! It only needs to be read by the www-data user. So maybe, putting a config-local.conf.example in /etc/wordpress/ with appropriate rights will be a better choice. -- System Information: Debian Release: 8.0 APT prefers testing-updates APT policy: (500, 'testing-updates'), (500, 'testing') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.16.0-4-amd64 (SMP w/4 CPU cores) Locale: LANG=fr_BE.utf8, LC_CTYPE=fr_BE.utf8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) -- To UNSUBSCRIBE, email to [email protected] with a subject of "unsubscribe". Trouble? Contact [email protected]
