Sucuri Security (Hardening)
Error logs
PHP uses files named as bps_php_error.log to log errors found in the code, these files may leak sensitive information of your project allowing an attacker to find vulnerabilities in the code. You must use these files to fix any bug while using a development environment, and remove them in production mode.
-
/wp-content/bps-backup/logs/bps_php_error.log
Please do not enable/use or follow this advice. If you remove your BPS PHP Error log you will no longer have a troubleshooting log to log, view and fix php errors that occur on your website. Your BPS php error log is in a secure protected folder that cannot be viewed by anyone else except for you. I believe a generic/default server PHP error_log is not protected so if you do not have BPS Pro installed then enabling/using or following this advice may be ok to do. You should make sure your server is logging these php errors somewhere though, otherwise you will not know when php errors/problems are occurring on your website and will not have any troubleshooting capability to find the problem.
.
