Add this code to your .htaccess file to disallow outside access of your config file: wp-config.php. This is a good idea to add extra security to your WordPress installation.

<files wp-config.php> order allow,deny deny from all </files>

Download (tar.gz)