@diosmosis One issue with this method is that it will warn if someone set up their server to return a
301 Moved Permanently on the config.ini.php request.
(reported in https://forum.matomo.org/t/nach-update-auf-4-3-fehlermeldung-required-private-directories/41903)
@Findus23 I thought about it but I can't think of a good way to deal w/ redirects. We could follow them, but then we don't know if we're still looking at config.ini.php. If we don't follow them, and just accept 3XX codes, then we might end up accepting a redirect between protocols. I guess we could check both http:// and https:// w/o following redirects and if either both return 3XX or both return 4XX, we can safely pass?