Is it unsafe to keep a Laravel project files inside public_html?
问题 I have 3 different laravel projects inside public_html (that is, one level below) on a shared hosting. I changed each domain/subdomain document root path to point to the respective project/public folder (i.e. public_html/project1/public) Additionally I put the Options -Indexes statement in my .htaccess files so people can't browse directly into my project files, and denied all access to .env files. Is there still a vulnerability doing this? 回答1: I assume that when you mention public_html,