Interface directory is open to web

Hello All,

I have installed an OpenEMR with latest version (7.0.1) and successfully using the application. What I have observed is, we can login to admin using the below URL:

URL: http://localhost/openemr

It is redirecting to the URL: http://localhost/openemr/interface/login/login.php?site=default

From the above URL, If I remove the text after ‘interface/’ and hit enter, it is exposing the “Interface” directory to web.

How can I restrict this public access to this folder and make my application work in a secure way?

1 Like

Thank you Stephen. It helped me solve the issue.