Replies: 0
Sometime/somehow this morning my GoDaddy WP site was hacked. When the main user called to tell me she couldn’t get into wp-admin (page is all blank except for text/links – clicking on any link produces a 404 – the site was still accessible/usable), I contacted GoDaddy support which was much less helpful than they have been in the past (they told me it was hacked and to replace index.php and wp-config files). So I figured we would have to rebuild the site and started FTPing everything down to my desktop. I started noticing all these files that were updated today at 5am. This included .htaccess in wp-admin (and many other places throught the site), user-edit.php, install.php and root level index.php. Since the site just went a major rebuild a couple of months ago, I still had their dev folder so I was able to replace most everything that was changed and regained access to wp-admin by renaming the .htaccess in the wp-admin folder.
My question is, how many places is .htaccess supposed to be? I am finding it in all kinds of places and am concerned that I have missed some of them and what should be in them. FWIW, the one I found in wp-admin had this in it:
<FilesMatch “.*\.(phtml|php)$”>
Order Allow,Deny
Deny from all
</FilesMatch>
<FilesMatch “(index).php$”>
Order Allow,Deny
Allow from all
</FilesMatch>