WordPress Security Blog

Add Additional WordPress wp-admin HTTP Authentication from CPanel

In this WordPress tutorial we explain how to password protect the WordPress wp-admin from Cpanel to add an additional layer of security to your WordPress administrator dashboard and protect WordPress from zero day vulnerabilities.

The Complete htaccess File for WordPress

If you host your own WordPress most probably you have heard about .htaccess files and all the things you can do with .htaccess files to secure WordPress. If you are not familiar with .htaccess files in relation to WordPress you can go through our definite guide to htaccess and WordPress, where you can find all […]

Configure Custom Error Pages on Apache with htaccess

Having user friendly custom error pages for your website is perhaps as important as having good content. In this article we show you how to easily implement custom error pages for your WordPress website or blog with .htaccess files.

How to Restrict Access to WordPress files With htaccess

If you would like to restrict access to a WordPress file, or a number of files on your website from being accessed from an external source, you can do so by using .htaccess files. Restricting access to files with .htaccess is ideal for files which still need to be accessed by your WordPress but never accessed directly by your website visitors, such as the wp-config.php.

How to Prevent Hotlinking of Images in WordPress

Hotlinking is the direct linking to a number of website’s files from another website. If someone hotlinks to images or other media files on your WordPress website or blog, it will result in extra load on your website and bandwidth theft, therefore you should prevent hotlkinking.

How to Block Bad Bots with htaccess for WordPress

Bots, short for robots, are computer programs that browse (surf) websites all over the internet and automatically perform specific tasks. Like almost everything else on the internet, there are good bots and bad bots. Follow this guide to learn how to block bad bots with .htaccess files.

Block Bad Users From Accessing Your WordPress

If you want to ban a bad user from accessing your WordPress website or blog and you have the user’s IP address, or hostname, you can block such users by using an htaccess file.

Use htaccess to Restrict Access to WordPress wp-admin via IP address

There are several methods to protect the WordPress admin dashboard (wp-admin directory). You can restrict access to the WordPress wp-admin directory to your IP address only via an .htaccess file.

How to Reset a WordPress User Password using phpMyAdmin

You can reset WordPress password using the phpMyAdmin web interface. Follow the three easy steps in this WordPress tutorial to reset a WordPress password within a minute and gain back access to your WordPress blog or website.

How to Apply Secure WordPress MySQL Database Privileges

As seen in Why minimum MySQL user WordPress database privileges improve security, it is very important to assign the minimum required database privileges to the MySQL user being used by WordPress to access the MySQL WordPress database, i.e. the user specified in WordPress wp-config.php file.