Title:

Changing the default index page with htaccess

Whenever a visitor tries to access a specific directory on your site, say www.mysite.com/products, WordPress uses the index.php file to load its content. However, on some servers, index.php is not loaded automatically. In such cases, either a 404 error message or the content of the directory is displayed. Doing this can expose sensitive information about…

Title:

Redirect your WordPress site with htaccess

Redirection is the process of forwarding a URL request to another URL. There are many cases where redirection plays an important role – moving your site to a new domain, redirecting a single page, moving to a different file extension, redirecting www to non www version of the site, and many more. The redirection can…

Title:

Custom Error Pages with htaccess

While browsing the Internet, we’d all have encountered errors at some point. The most common errors that show up are when we try to access a non-existent page or something failed during server processing. While this is undoubtedly a frustrating experience for any visitor, we can do our bit to get them out of the…

Title:

Enforcing Strong Passwords in WordPress

Passwords are definitely a chink in one’s armour when it comes to WordPress security. Over time, password-based protection has gotten weaker and the attackers stronger. In our earlier article, we looked at how brute force attacks are causing widespread havoc in the WordPress community.  The most common mistakes that we make is not using strong…

Title:

Stop hotlinking with htaccess

While browsing through the web, you find a very interesting image for your site. There are 2 ways in which you can add it to your own site (assuming it is a free image) – download the image to your local computer and upload it to your site or add a direct link to that…

Title:

WordPress Security – 404 detection

As a regular browser of the Internet, you must have surely come across 404 errors which tell you that the page you were looking for could not be found. Sometimes these are quite funny too, like the one by mint.com. On your own site too, you may see the occasional 404 error. These usually occur…

Title:

Disable PHP execution for better WordPress security

Certain folders in WordPress, like uploads, are writeable by default so that users can upload files (images, videos, etc) onto your site. Themes and plugins also create files in their respective cache directories while at work which isn’t possible unless these directories are writeable. However, this also opens up your site for potential attacks. Hackers…

Title:

Your one-stop shop for all the WordPress security news and updates is finally here!

In the wake of recent vulnerabilities and their exploits, all WordPress owners and administrators are on high alert with regard to security. The main challenge when it comes to securing our sites is to keep ourselves up to date with all the latest news – which plugin vulnerability has been discovered, what is the new…

Title:

WordPress Malware Scanners – A first hand account

As a WordPress site owner, security has always been top concern for me and also a tad overwhelming. The knowledge that new vulnerabilities are exposed every day only makes it that much scarier. I decided that having a good scanning solution in place for my site would be the way to go forward. Once I…

Title:

WP eCommerce WordPress Plugin Vulnerability

The latest WordPress plugin vulnerability disclosed by Sucuri recently is in the WP eCommerce plugin that lets attackers access and modify private information on your site. It allows malicious users to export user data such as names, addresses, etc. It also lets attackers buy products on your site and change the status of the transaction to…

End of content

End of content