This isn't a web accessible folder, and if you are seriously worried about your trust path... hide it.
how?
Easy make a duplicate of your mainfile.php and hide it below your root folder.
Open public_html/mainfile.php
and replace it with the folowing.
<?php if (stristr(htmlentities($_SERVER['PHP_SELF']), "mainfile.php")) { Header("Location: index.php"); die(); } include("/path/to/your/new/mainfile.php"); ?>
^^I strongly believe in placing config files below the webroot, and in essence that is exactly what mainfile is.
Now you can name and place your trust path wherever you like it via your uber protected mainfile.php.
This Post was from: https://www.impresscms.org/iforum/viewtopic.php?topic_id=1053&post_id=9466