.htaccess securiy tips for your Wordpress site

MooseLucifer

MooseLucifer

Well-known member
Registered
Joined
May 20, 2016
Messages
149
Points
28
Currently WordPress is the most widely used today with many websites built on this platform. Because it is easy to use and install, also for this reason that the security for WordPress sites are made becomes more difficult. However, through this post, I will share with you 3 easy tips to help you secure your Wordpress blog.

3 tips to secure your Wordpress with .htaccess

Here are 3 important files/folders in WordPress that you should protect

1. wp-config.php
2. wp-contents folder
3. .htaccess file
Click to expand...
Secure your wp-config.php file

wp-config.php is file in root folder, it stores information about your website, also databases. This is very important file that you can not allow other people know. So, you need to protect wp-config.php for viewing.

Code: 
<Files wp-config.php>
order allow,deny
deny from all
</Files>
No directory browsing

WordPress is so popular hence everyone can know its folder and files structure hence we can make the folder view as public as following

Code: 
Options All -Indexes
Protect your wp-content

wp-content folder contains the images, themes and plug-ins folder and it is very important so that we can prevent external access as follows:

Code: 
Order deny,allow
Deny from all
<Files ~ ".(xml|css|jpe?g|png|gif|js)$">
Allow from all
</Files>
Protect your .htaccess file

The code below will prevent all who view any files on your website starts with "hta"

Code: 
<Files ~ "^.*.([Hh][Tt][Aa])">
order allow,deny
deny from all
satisfy all
</Files>
I hope with these tips you will be able to secure for yourself or your blog site and looking forward to hearing other tips on how to secure our Wordpress site.

Good luck!
 
UWH-David

UWH-David

Member
Registered
Joined
Jan 18, 2016
Messages
45
Points
8
You can also go a step further by restricting access to the admin area:

Code: 
<IfModule mod_rewrite.c>
RewriteEngine on
RewriteCond %{REQUEST_URI} ^(.*)?wp-login\.php(.*)$ [OR]
RewriteCond %{REQUEST_URI} ^(.*)?wp-admin$
RewriteCond %{REMOTE_ADDR} !^IP Address One$
RewriteCond %{REMOTE_ADDR} !^IP Address Two$
RewriteCond %{REMOTE_ADDR} !^IP Address Three$
RewriteRule ^(.*)$ - [R=403,L]
</IfModule>
 
You must log in or register to reply here.
Older Threads
MooseLucifer
How to remove unwanted words in Wordpress title automatically
Replies
0
Views
1,894
MooseLucifer
peteynessx
How to cheap advertise hosting
Replies
4
Views
2,379
CyberHour
tk-hassan
SELLING Affordable Dedicated Hosting in Netherlands From TEMOK Starting at $90/Month | Free Reboots
Replies
0
Views
1,691
tk-hassan
FerdieQO
How to make custom Sidebars in a WordPress Theme
Replies
1
Views
1,993
Alex_smith
Bryan McClure
How to reset root password in CentOS 6
Replies
6
Views
4,390
Hostpad
Newer Threads
pablohunt2812
How can i get quality backlink in SEO 2016
Replies
12
Views
5,010
pauleswanson
H
Can you please suggest some good hosting providers?
Replies
8
Views
4,134
CyberHour
FerdieQO
Different types of customer support?
Replies
4
Views
2,311
hostnesta
Kaz Wolfe
How much did you know your hosting skill when selling a hosting service?
Replies
5
Views
3,160
KevinHV
David Makogon
Best way to learn web hosting for a beginner?
Replies
13
Views
4,851
GswHosting
Latest Threads
josephilip
Welcome to ServerMO: Excellence in Dedicated Server Hosting
Replies
0
Views
40
josephilip
cancan
Save an incredible 90% off! The Best HostPapa Deal so Far: Unlimited SSL, 50 GB NVMe, 24/7 support
Replies
0
Views
71
cancan
M
How to Choose the Best Web Hosting Provider for a New Website ??
Replies
1
Views
57
BlueLeaf
J
Jtti: What are some common misconceptions about firewall rules?
Replies
0
Views
162
jtti
Mvv758
Hello
Replies
1
Views
86
AlbaHost
Recommended Threads
Dewlance
OFFER $7/m Windows & Linux VPS - 4 vCPU + 8th Year Anniversary - Dewlance
Replies
0
Views
13,397
Dewlance
agungwah
  • Locked
WTS Sell HQ site, lot site, with many niches
Replies
5
Views
4,454
ev3v4hn
shiyuchen
Google, Bing or Yahoo?
2 3
Replies
46
Views
12,168
desmondmiles
steitieh
A custom website could not run in WHM/cPanel in a VPS
Replies
13
Views
7,261
steitieh
sunnyboy
Possible review on atlantic.net?
Replies
4
Views
5,843
jadensmith
Similar Threads
HostSailor
How to Setting https redirect using .htaccess?
Replies
2
Views
1,172
BlueLeaf
Mujkanovic
Make .htaccess work with Nginx on Plesky onyx?
Replies
5
Views
1,649
Mujkanovic
I
.htaccess
Replies
2
Views
1,404
ITivan80
Rahul_A
How to solve Redirect chains from htaccess in Cpanel?
Replies
2
Views
1,380
digitalone
Fusion Arc Hosting
How to Edit .htaccess File via the cPanel Filemanager?
Replies
0
Views
977
Fusion Arc Hosting

Latest postsNew threads

Latest Hosting OffersNew Reviews

Popular Contributors - Past 30 Days

Sponsors

Tag Cloud

You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an alternative browser.
  • cpanel
  • dedicated
  • free
  • hello
  • hosting
  • hosting services
  • marketing
  • offers
  • seo
  • server
  • services
  • vps
  • web
  • web hosting
  • website
  • wordpress
    • Top