explain that uploaded files are not affected by whitelist settings

diff --git a/includes/DefaultSettings.php b/includes/DefaultSettings.php
index a671dd2..70b1bc0 100644 (file)
--- a/includes/DefaultSettings.php
+++ b/includes/DefaultSettings.php
@@ -749,6 +749,9 @@ $wgBlockAllowsUTEdit    = false; # Blocks allow users to edit their own user tal
 # NOTE: This will only work if $wgGroupPermissions['*']['read'] 
 # is false -- see below. Otherwise, ALL pages are accessible,
 # regardless of this setting.
+# Also note that this will only protect _pages in the wiki_.
+# Uploaded files will remain readable. Make your upload 
+# directory name unguessable, or use .htaccess to protect it.
 $wgWhitelistRead = false;      
 
 /**