WordPress Security Tips and Tools

DISABLE PLUGIN AND THEME EDITOR

Add this code to your wp-config.php file:

define( ‘DISALLOW_FILE_EDIT’, true );

DISABLE PHP ERROR REPORTS

Errors messages can disclose the full server path. Add this code to your wp-config.php file:

error_reporting(0);

@ini_set(‘display_errors’, 0);

PROTECT WP-CONFIG.PHP

Your wp-config.php file holds the most important pieces of data in your WordPress files. Add the following code to the top of the .htaccess file:

order allow,deny

deny from all

 

Comments are closed.