WordPress.org

Plugin Directory

Test out the new Plugin Directory and let us know what you think.

HTTP header improved security

Plugin to add HTTP header improved security

This plug-in helps setting up the various header instructions included in the HTTP protocol allowing simple improvement of your website security. As usual, make sure to understand the meaning of these options and to run full tests on your web site as some options may result in some features stop working.

This plug-in provides security enhancement by enabling follow measures:

  • HSTS (Strict-Transport-Security)
  • CSP (Content-Security-Policy)
  • Clickjacking mitigation (X-Frame-Options in main site)
  • XSS protection (X-XSS-Protection)
  • Disabling content sniffing (X-Content-Type-Options)
  • Remove PHP version information from the HTTP header
  • Remove WordPress version information from the header

securityheaders.io is a useful resource for evaluating your web site's security.

Requires: 3.3 or higher
Compatible up to: 4.7.2
Last Updated: 1 week ago
Active Installs: 80+

Ratings

5 out of 5 stars

Support

Got something to say? Need help?

Compatibility

+
=
Not enough data

2 people say it works.
0 people say it's broken.

100,1,1 100,1,1 100,1,1 100,1,1 100,1,1 100,1,1 100,1,1 100,1,1 100,1,1
100,1,1 100,1,1 100,1,1 100,1,1 100,1,1
100,1,1 100,1,1 100,1,1 100,2,2