For BPS Pro folks:
If you add a RewriteEngine Off htaccess file in a folder/directory then you are turning off security in ONLY that folder. .htaccess files are heirarchical. What this means is this – If you have an .htaccess file in a parent/root folder and you add a RewriteEngine Off .htaccess file in a child/subfolder folder then that child folder will NOT follow the security rules/directives in the parent/root folder .htaccess file and will instead follow the rules/directives in its own .htaccess file.
You can download a BPS Pro RewriteEngine Off .htaccess file from this folder /wp-content/plugins/bulletproof-security/admin/htaccess/RewriteEngineOff.htaccess
Upload the RewriteEngineOff.htaccess file to the folder/directory where you want to turn off security/prevent the parent .htaccess file from applying its security rules/directives in this folder.
Rename the RewriteEngineOff.htaccess file to just .htaccess after you have uploaded it to this folder/directory.
You might need to add a blank index.php file in the folder/directory. Try just the RewriteEngine Off .htaccess file first and if that does not work you can use the WordPress blank index.php file here: /wp-content/index.php and upload it to your folder/directory.
BPS free and/or Roll Your Own RewriteEngine Off .htaccess File
1. Open Notepad (NOT Word or WordPad) or Notepad++ (it is a free app that you can download) on your computer.
2. Add this one line of text in your new Notepad text file: RewriteEngine Off.
3. Save the text file with this name: securityoff.htaccess.
4. Upload the securityoff.htaccess file to the folder/directory where you want to turn security Off/prevent the parent .htaccess file from applying its security rules/directives in this folder.
5. Rename the securityoff.htaccess file to .htaccess (removing securityoff from the file name).
NOTE: You may also need to add a blank index.php file in that folder/directory. You can use the WordPress blank index.php file here: /wp-content/index.php
.
