Issue on getting-started/maintenance/securing-modx

[1640max]

Affected page(s)

https://docs.modx.com/3.x/en/getting-started/maintenance/securing-modx#protect-the-core-and-other-locations
https://docs.modx.com/3.x/ru/getting-started/maintenance/securing-modx#izmenenie-putey-po-umolchaniyu

What needs to be improved?

English manual says:

...moving the core directory outside of the web root is not currently possible...

and it's recommended to modify .htaccess. But the same page in Russian still recommends to move the core. Which one is right?

Relevant context

Btw, provided pieces of code for .htaccess give me an error every time, but moving the core works perfectly. Is it a good idea to leave it in a different directory now or should i put it back and cope with the .htaccess error?

[Mark-H]

MODX3 no longer allows moving the core, so the Russian version will need to be updated.

What errors are you getting with the provided .htaccess code?

[1640max]

MODX3 no longer allows moving the core, so the Russian version will need to be updated.

What errors are you getting with the provided .htaccess code?

Hello Mark-H,
I was wrong, it hasn't given me any errors, it just doesn't have any effect. Here is what I tried:

1. Clean installed MODX 3
2. Renamed ht.access to .htaccess at public_html/.
3. Same for public_html/core/.htaccess.
4. Appended the following code (from „Hardening MODX...“) to public_html/.htaccess:

RewriteCond %{HTTP_HOST} ^(www\.)?test\.mysite\.com$ [NC]
# Block access to dotfiles and folder people have no need to touch
RewriteRule ^(\.(?!well_known)|_build|_gitify|_backup|core|config.core.php)  /index.php?q=doesnotexist [L,R=404]

No effect. changelog.txt and config.core.php still accessible from browser, „Core folder is accessible by web“ error is still there.
Server version: Apache/2.4.53 (Red Hat Enterprise Linux 8)