(please specify the URL of the site on which you are experiencing the problem)
Error Message
(Dear Sir, today i login to my WordPress dashboard i unknown user was added in my account as administrator, i was checking as my url structure was changed and my pages are not opening but these are available in post section when i was invest aging and approach to .htcccess file, i was restore the defult rules but it is say permission has been denied. kindly look into matter. ) no any url is working and and it redirect to 404 but post is available. someone has changed the rules and overall dictrionary kindly see
Other Information
(other information and details relevant to your question)
You’ll have to use the File Manager and go to your domain’s htdocs folder for you to be able to create/edit your .htaccess file, then also probably make some changes from your database’s phpMyAdmin, both to delete the incriminating user from your database users table and to reset your password to be able to log in to your website again. Also, make sure to change your hosting account and Client Area passwords if you suspected that someone logged into one of those with your credentials and never share them again if you shared them.
We were unable to make changes to the .htaccess file. It’s possible WordPress cannot write to the .htaccess file because of file permissions, which may have been set by another security plugin, or you may have set them manually. Please verify the permissions allow the web server to write to the file, and retry the installation.
Unfortunately, CHMOD functionality is a massive foot gun because it’s very easy to change the permissions of files so you can’t access them anymore yourself. Unfortunately, if that happens, there is no way to reset the permissions to regain access.
We’ve been working to restrict or disable chmod functionality because it has zero benefit and only risks like this, but apparently, it’s not restricted enough yet.
I have been using your free hosting service for the past two years, and I have always been able to access and modify the .htaccess file without any issues. However, I recently encountered a restriction when trying to access or modify the .htaccess file, as it is now showing as “not writable,” and I am unable to make changes.
Could you kindly provide clarification on why this change has occurred? I have not faced any issues with .htaccess access in the past, and I would like to understand why this restriction has been applied now.
Additionally, if there are any steps I need to take to regain access to the file, or if this is part of a recent update or change in your policies, I would greatly appreciate your guidance.
Thank you for your time and assistance. I look forward to your prompt response.
No, we can’t. We didn’t make this change, you did, probably by accident.
We try to block the ability to mess with chmod as much as possible precisely because of issues like this, but apparently we didn’t block it enough and didn’t do enough to protect you from breaking your own website.
Not plugging the hole is our fault, but it must have been something you did that actually caused this to break on your website.
There are no steps you can take to regain access to the file. Once you take away your own ability to modify your files, you can’t modify them again to restore that ability.
This has been a risk since day 1, and over time we’ve been moving towards restricting the chmod functionality to prevent this from happening. So the only relevant changes in policy should prevent this issue, not cause it.
This file is permanently blocked from changes. The only thing you can do at this point is to create a new hosting account and migrate the website to it. That’s the only way you’ll be able to configure .htaccess rules on your website again.
I appreciate your response. However, I would like to clarify that as a user on your free hosting plan, I do not have access to modify or change file permissions, including those of the .htaccess file, or any other folder or file permissions. Since this ability is not available in the free hosting plan, I am unable to intentionally or accidentally change any permissions on my site.
Given that no such permissions are provided to users, I am uncertain as to how any changes to the permissions could have been made from my end. Therefore, it seems highly unlikely that I caused this issue.
Could you please further investigate how this issue might have occurred despite these restrictions? Additionally, I would appreciate any assistance in resolving the matter, as my website is currently experiencing issues related to file permissions.
Thank you for your response, but I would like to clarify that this situation is quite concerning for me. As a user of your free hosting plan, I never had access to modify file permissions in the first place, so I cannot understand how the permissions were changed in the first place. Given this, I would appreciate it if you could provide more context about how this happened despite the restrictions you’ve mentioned.
While I understand that the ability to modify the .htaccess file has been permanently blocked in my current account, I would like to ask if there are any other possible solutions before I resort to creating a new hosting account. For example, is there any way to temporarily lift the restrictions or get assistance from your support team to resolve this issue?
I would greatly appreciate any help or suggestions that would avoid the need for a full migration
No. You removed the permissions that are needed to do that.
Wrong. The ability is still technically there, it’s just hidden and has a few blocks on it. But (As you have demonstrated) it is still possible to override it
sorry I’ve been busy and haven’t eaten all day