Check issue #125
Signed-off-by: Jerome Jutteau <j.jutteau@gmail.com>
```
You should also remove un-necessessary write access once the installation is done (ex: configuration file).
```
You should also remove un-necessessary write access once the installation is done (ex: configuration file).
-An other obvious basic security is to let access users to the site by HTTPS.
+An other obvious basic security is to let access users to the site by HTTPS (make sure `web_root` in you `config.local.php` is set with https).
## Server side encryption
## Server side encryption