summaryrefslogtreecommitdiffstats
path: root/user_guide/installation
diff options
context:
space:
mode:
authorDerek Jones <derek.jones@ellislab.com>2010-03-25 16:28:46 +0100
committerDerek Jones <derek.jones@ellislab.com>2010-03-25 16:28:46 +0100
commit3181ae2a93b2c46112040036267d7c1767fe5109 (patch)
treed94762228662b76a0375dfd7fc0a68795407a2a6 /user_guide/installation
parent6e50b856d30037a88d878a68d1055fd37a182008 (diff)
updated docs to encourage installation of application and system folders above web root
Diffstat (limited to 'user_guide/installation')
-rw-r--r--user_guide/installation/index.html11
1 files changed, 8 insertions, 3 deletions
diff --git a/user_guide/installation/index.html b/user_guide/installation/index.html
index 08f37ac9e..a64461314 100644
--- a/user_guide/installation/index.html
+++ b/user_guide/installation/index.html
@@ -66,9 +66,14 @@ Installation Instructions
<li>If you intend to use a database, open the <dfn>application/config/database.php</dfn> file with a text editor and set your database settings.</li>
</ol>
-<p>If you wish to increase security by hiding the location of your CodeIgniter files you can rename the <dfn>system</dfn> folder
-to something more private. If you do rename it, you must open your main <kbd>index.php</kbd> file and set the <samp>$system_folder</samp>
-variable at the top of the page with the new name you've chosen.</p>
+<p>If you wish to increase security by hiding the location of your CodeIgniter files you can rename the <dfn>system</dfn> and <dfn>application</dfn> folders
+to something more private. If you do rename them, you must open your main <kbd>index.php</kbd> file and set the <samp>$system_folder</samp> and <samp>$application_folder</samp>
+variables at the top of the file with the new name you've chosen.</p>
+
+<p>For the best security, both the <dfn>system</dfn> and any <dfn>application</dfn> folders should be placed above web root so that they are not directly accessible via a browser. By default, .htaccess files are included in each folder to help prevent direct access, but it is best to remove them from public access entirely in case the web server configuration changes or doesn't abide by the .htaccess.</p>
+
+<p>After moving them, open your main <kdb>index.php</kbd> file and set the <samp>$system_folder</samp> and <samp>$application_folder</samp> variables, preferably with a full path, e.g. '<dfn>/www/MyUser/system</dfn>'.</p>
+
<p>That's it!</p>