Elgg: Protecting Upgrade.php
Written by Rodolfo Hernandez Sunday, 12 December 2010
What is upgrade.php? Upgrade.php is a file that flushes the cache that elgg uses. It runs code and database upgrades. By default, in any regular Elgg install, anyone can run this file. This is not good. We don’t want anyone running this file.
For that reason, I will show you how to protect this file so that only the admin is the only one allow to run it.
-First, open the file upgrade.php
-Look for this:
Below that, please add this:
And done. Now only the admin/owner of the page will be the only one that would be able to run it.
For more info about Elgg hosting solutions please visit Arvixe-Elgg Hosting