hello forum,
i am using mibew in the current version in conjunction with an apache webserver on the latest ubuntu version.
my problem is that, despite .htaccess in the mibew folder, i can access the config.yml when i call the whole path from a webbrowser, as an example
https://my-site.com/mibew/configs/config.yml since the config.yml contains access data etc. in plain text, i wonder how i can secure this, so that no one can access this file in the webbrowser.
i already tried to set permissions with chmod, but then the webserver can't access it anymore and the usage doesn't work - also the included .htaccess doesn't seem to help.
what am i doing wrong? where is the error?
thanks for help or ideas!