WordPress.org

Ready to get started?Download WordPress

Plugin Directory

WP Best Practices

This plugin is designed to implement the latest WordPress best practices around security into your WordPress website.

This plugin is designed to implement the latest WordPress best practices around security into your WordPress website.

Features

  1. Deny access to the wp-config.php file to anyone surfing for it. http://codex.wordpress.org/Hardening_WordPress#Securing_wp-config.php
  2. Deny access to .svn files to anyone surfing for it.
  3. Block access to wp-includes scripts to not intended users. http://codex.wordpress.org/Hardening_WordPress#Securing_wp-includes
  4. Disable file editing. http://codex.wordpress.org/Hardening_WordPress
  5. Remove the Compatibility View button on Internet Explorer.
  6. Remove the meta name generator tag from the header of every page, including RSS feeds, which contains your site's WordPress version.
  7. Disable the XML-RPC (pingback) functionality to help avoid DDoS attacks. http://bit.ly/1o9RsFA

For more information, questions, requests, or comments, please email the developer.

Requires: 2.0.2 or higher
Compatible up to: 3.9.1
Last Updated: 2014-6-16
Downloads: 1,040

Ratings

4 stars
4.7 out of 5 stars

Support

Got something to say? Need help?

Compatibility

+
=
Not enough data

0 people say it works.
0 people say it's broken.

100,1,1
100,1,1