How to Secure Your WordPress Login Page from Hackers

[et_pb_section fb_built=”1″ _builder_version=”4.27.4″ _module_preset=”default” global_colors_info=”{}”][et_pb_row _builder_version=”4.27.4″ _module_preset=”default” global_colors_info=”{}”][et_pb_column type=”4_4″ _builder_version=”4.27.4″ _module_preset=”default” global_colors_info=”{}”][et_pb_text _builder_version=”4.27.4″ _module_preset=”default” hover_enabled=”0″ global_colors_info=”{}”…

WP Hide and Security Enhancer PRO v7.1.7 WordPress Plugin

https://themesfores.com/product/wp-hide-and-security-enhancer-pro-plugin/ WP Hide and Security Enhancer PRO v7.1.7 Hide and increase Security for your WordPress website instance using smart techniques. No files are changed on your server. The plugin not only allows you to change the default URLs of your WordPress, but it hides/blocks defaults! All other similar plugins just change the slugs, but the defaults are still accessible, obviously revealing WordPress. WP Hide and Security Enhancer PRO Features: Custom Admin Url Block default admin Url Block any direct folder access to completely hide the structure Custom wp-login.php filename Block default wp-login.php Block default wp-signup.php Block XML-RPC API New XML-RPC path Adjustable theme URL New child Theme URL Change theme style filename Clean any headers for the theme style file Custom wp-include Block default wp-includes paths Block defalt wp-content Custom plugins URLs Individual plugin URL change Block default plugins paths New upload URL Block default upload URLs Remove WordPress version Meta Generator block Disable the emoji and required javascript code Remove pingback tag Remove we manifest Meta Remove rsd_link Meta Remove wpemoji Minify Html, css, JavaScript https://themesfores.com/product/wp-hide-and-security-enhancer-pro-plugin/ #SecurityPlugin #WordpressPlugins

How to Check If Your Website or Plugins Are Using XML-RPC

How to Check If Your Website or Plugins Are Using XML-RPC | https://tinyurl.com/2cmcveav | #Blogging #security #Wordpress #XMLRPC If you’re managing a WordPress site and want to know whether xmlrpc.php is being actively used by your site or plugins, you’ll need to perform some advanced steps. Disabling xmlrpc.php can improve security, but it’s essential to ensure that this won’t break any functionality. Here’s how you can determine if XML-RPC is in use on your site. Monitoring Server Logs for XML-RPC Requests One of the most direct ways to check if your site is using xmlrpc.php is by monitoring your server’s access logs. Steps to Monitor Server Logs What to Look For Using Plugins to Log XML-RPC Requests WordPress […] Read more... https://tinyurl.com/2cmcveav

How to Add Security through WordPress

WordPress itself provides several built-in security features, and you can further enhance security by utilizing various plugins and best wordpress hosting india. Here's how you can add security to your WordPress site:

Step 1: Update WordPress Core, Themes, and Plugins: - Keep your WordPress installation, themes, and plugins up to date to patch any known security vulnerabilities. Step 2: Use Secure Hosting: - Choose a reputable hosting provider that offers security features like firewalls, malware scanning, and regular backups. Step 3: Strong Admin Passwords: - Use strong, unique passwords for your WordPress admin accounts and encourage all users to do the same. Step 4: Limit Login Attempts: Install a plugin to limit the number of login attempts from a single IP address to protect against brute force attacks. Step 5: Two-Factor Authentication (2FA): - Implement 2FA for WordPress logins using plugins like Google Authenticator or Duo Two-Factor Authentication. Step 6: Secure wp-config.php: - Protect your wp-config.php file by moving it to a higher-level directory or adding code to your .htaccess file to restrict access. Step 7: Disable Directory Listing: - Prevent directory listing by adding Options -Indexes to your .htaccess file to hide directory contents. Step 8: Disable XML-RPC: - If you're not using XML-RPC functionality, disable it to prevent potential exploitation by attackers.

Step 9: Limit File Permissions: - Set appropriate file permissions for your WordPress files and directories to restrict unauthorized access. Step 10: WordPress Security Headers: - Implement security headers like Content Security Policy (CSP), X-Frame-Options, X-XSS-Protection, and others to enhance browser security. Step 11: WordPress Security Plugins: - Install reputable security plugins like Word fence, Sucuri Security, or themes Security to monitor and protect your site from various threats. Step 12: Regular Backups: - Set up regular backups of your WordPress site, including files and the database, and store them securely offsite. Step 13: WordPress Salts and Keys: - Update your WordPress salts and keys regularly to enhance encryption and protect against brute force attacks. Step 14: Disable File Editing: - Prevent file editing within the WordPress dashboard by adding define ('DISALLOW_FILE_EDIT', true); to your wp-config.php file. Step 15: Security Headers: - Add security headers to your site's HTTP responses to protect against various types of attacks. You can do this manually or by using a security plugin. Step 16: Monitor File Changes: - Install a plugin or set up alerts to monitor and notify you of any unauthorized changes to your WordPress files and cheap wordpress hosting india. Note: By implementing these security measures, you can significantly improve the security of your WordPress site and protect it from various threats. Additionally, staying informed about security best practices and regularly auditing your site's security can help you stay one step ahead of potential attackers.

Booster votre site Wordpress en quelques clics de souris Les sites WordPress sont très populaires, de part leur convivialité et leur administration simplifiée, mais leur performance peut parfois laisser à désirer. Pour remédier à cela, il existe de nombreux plugins, mais l'un d'entre eux se démarque particulièrement : Perfmatters. Ce plugin all-in-one (tout-en-un) propose toute une palette d'options pour optimiser les sites WordPress, améliorant ainsi leur vitesse de chargement, leur sécurité, leurs fonctionnalités, voir leur SEO. Dans cet article, nous allons mettre en valeur les caractéristiques uniques de Perfmatters et expliquer pourquoi il est devenu un incontournable pour les propriétaires de sites WordPress. Que propose donc Perfmatters pour améliorer les performances de mon site WordPress ? Suppression des éléments inutiles L'une des principales fonctionnalités de Perfmatters est sa capacité à supprimer les éléments inutiles de votre site WordPress. En effet, WordPress inclut par défaut un certain nombre de fonctionnalités qui ne sont pas toujours nécessaires, telles que les émojis, les raccourcis RSS,  et les widgets de commentaires. Perfmatters vous permet de désactiver facilement de nombreuses fonctionnalités intégrées dans Wordpress, ce qui réduit la quantité de code exécuté sur votre site et améliore ainsi sa performance. Voici la liste des éléments que vous allez pouvoir contrôler: Désactiver les Emojis Désactiver les Dashicons Désactiver les Embeds Désactiver le XML-RPC Supprimer jQuery Migrate Masquer la version de Wordpress Supprimer le lien WLWManifest Supprimer le lien µRSD Supprimer le Shortlink Désactiver les flux RSS Supprimer les liens des flux RSS Désactiver les Pingbacks Désactiver l'API REST Supprimer les liens de l'API REST Désactiver Google Maps Désactiver l'indicateur de force du mot de passe Supprimer les URL des commentaires Désactiver les commentaires Désactiver Heartbeat Limiter le nombre de révisions des pages et articles Modifier l'URL de connexion au backoffice et d'autres à venir ... Optimisation de la base de données Une base de données propre et optimisée est essentielle pour garantir une bonne performance de votre site WordPress. Perfmatters offre plusieurs options pour nettoyer et optimiser votre base de données, notamment la suppression des révisions d'articles, des brouillons, des commentaires indésirables et des données de transitoire. Ces options permettent non seulement de libérer de l'espace disque, mais aussi de réduire le temps de chargement de votre site en minimisant les requêtes à la base de données. Minification et combinaison des fichiers La minification et la combinaison des fichiers CSS, JavaScript et HTML sont des techniques courantes pour améliorer la performance des sites web. Perfmatters intègre ces fonctionnalités, ce qui vous permet de réduire la taille de vos fichiers et de diminuer le nombre de requêtes envoyées par le navigateur. Il est important de noter que, contrairement à d'autres plugins d'optimisation, Perfmatters ne nécessite pas l'installation d'extensions supplémentaires pour effectuer ces tâches. Gestion des scripts et styles Perfmatters vous offre la possibilité de désactiver, supprimer ou déplacer les scripts et les feuilles de styles en fonction de vos besoins. Par exemple, vous pouvez choisir de ne charger un script que sur certaines pages ou de le déplacer du header vers le footer de votre site. Cette fonctionnalité est particulièrement utile pour optimiser le chargement des ressources et améliorer le temps de chargement de votre site. Optimisation de la mise en cache La mise en cache est un moyen efficace d'améliorer les performances d'un site WordPress en stockant temporairement certaines données pour réduire le nombre de requêtes à la base de données. Perfmatters propose des options de mise en cache pour les pages, les scripts et les styles, ainsi que pour les utilisateurs connectés. De nombreuses options de preloading sont ainsi proposées et très simples à mettre en oeuvre.

En complément, il est possible de gérer localement en cache kes polices Google Fonts, mais aussi s'interfacer avec de nombreux CDN ou encore réaliser certaines fonctions d'analytique en local. Le plugin est compatible avec les plugins de mise en cache populaires, tels que W3 Total Cache et WP Super Cache ou encore WP Rocket, ce qui vous permet de bénéficier d'un niveau d'optimisation supplémentaire. Optimisation des images Les images représentent souvent la plus grande partie de la taille d'une page web, il est donc essentiel de les optimiser pour améliorer les performances de votre site. Perfmatters vous permet de désactiver la taille par défaut des images, de forcer la compression des images téléversées, d'automatiser la taille de l'image lorsque celle-ci n'est pas proposée et de désactiver la création de vignettes inutiles.Vous pourrez gérer finement le chargement différé (Lazy Load) de vos images et de vos vidéos. Le plugin est compatible avec des solutions d'optimisation d'images externes, telles que Smush et ShortPixel, ce qui vous permet de réduire encore davantage la taille de vos images. Fonctionnalités de sécurité Perfmatters propose plusieurs fonctionnalités pour améliorer la sécurité de votre site WordPress. Parmi celles-ci, on trouve la possibilité de désactiver le XML-RPC, de bloquer les connexions pingback/trackback et de limiter les requêtes d'API REST. Ces options renforcent la protection de votre site contre les attaques et les abus. Compatibilité et support Perfmatters est compatible avec la plupart des thèmes et plugins WordPress populaires, ce qui garantit une intégration transparente avec votre site. De plus, le plugin est régulièrement mis à jour pour assurer sa compatibilité avec les dernières versions de WordPress. Enfin, l'équipe de support de Perfmatters offre une assistance rapide et efficace en cas de problème ou de question. En conclusion, Perfmatters est un plugin tout-en-un qui offre une gamme complète d'options pour optimiser les sites WordPress. Ses caractéristiques uniques, telles que la suppression des éléments inutiles, l'optimisation de la base de données, la gestion des scripts et styles, et les fonctionnalités de sécurité, en font un choix idéal pour les propriétaires de sites WordPress qui cherchent à améliorer les performances de leur site facilement avec la possibilité de revenir en arrière à tout moment. L'un des meilleurs plugins Wordpress all-in-one qui remplacera aisément bon nombres de plugins individuels pour booster en toute tranquilité votre site Wordpress. Découvrir le site internet

What Is WordPress API and How to Integrate It with Your Site? 

WordPress API (Application Programming Connection point) is a bunch of conventions, tools, and schedules that permit developers to cooperate with and control WordPress data. It gives a way to outer applications and services to get to and use WordPress usefulness and data, making it a useful asset for integrating WordPress with different sites, applications, and services. 

Integrating WordPress API with your site can give many advantages, including: 

Improved Site Usefulness: By integrating WordPress API with your site, you can add strong highlights and usefulness, for example, constant data refreshes, social media integration, and then some. 

Upgraded User Experience: WordPress API permits you to make custom UIs and connections, giving a seriously captivating and instinctive user experience for your site guests. 

Better SEO: Integrating WordPress API with apparatuses like Google Investigation, Yoast Search engine optimization, and Google Search Control center can assist you with streamlining your site for better web index rankings and perceivability. 

Improved Cooperation: Custom WordPress development services permits you to share data and team up with different sites, applications, and services, making it more straightforward to work with accomplices, users, and different partners. 

To integrate WordPress API with your site, you'll have to follow these means: 

Pick A WordPress API: WordPress gives a few APIs, including REST API, XML-RPC API, and JSON API. Pick the API that best suits your necessities and prerequisites. 

Empower WordPress API: To empower WordPress API, you'll have to install and initiate a plugin, like WP REST API or Jetpack. 

Validate API: Whenever you've empowered WordPress API, you'll have to verify it by creating a API key or token. This will permit you to get to and control WordPress data 

Integrate API: Whenever you've validated WordPress API, you can begin integrating it with your site, utilizing apparatuses and conventions like AJAX, JSON, and XML. 

Conclusion 

WordPress API is an incredible asset for WordPress API integration with different sites, applications, and services. By following these means, you can undoubtedly integrate WordPress API with your site, and partake in the many advantages it gives, including improved site usefulness, upgraded user experience, better Search engine optimization, and improved cooperation. 

FACEBOOK – INSTAGRAM – TWITTER – LINKEDIN  

16 steps to increase #WordPress 1. Continuous WordPress Update 2. Regular WordPress backup 3. Enhance the #security of the wp-config.php file 4. Increase the security of the .htaccess file. 5. Increase the security of the wp-admin folder 6. Use strong password and access level 7. Increase WordPress login page security 8. Hide WordPress username

9. Change WordPress tables prefix 10. Use #SSL in WordPress 11. Disable viewing of folders 12. Disable #template and #plugin #editor 13. Disable #PHP file execution in WordPress 14. Disable #XML_RPC 15 . Check user activity in WordPress 16. Use WordPress #security #plugins

Essential WordPress Security Tips to Protect Your Website

[et_pb_section fb_built=”1″ _builder_version=”4.27.4″ _module_preset=”default” global_colors_info=”{}”][et_pb_row _builder_version=”4.27.4″ _module_preset=”default” global_colors_info=”{}”][et_pb_column type=”4_4″ _builder_version=”4.27.4″ _module_preset=”default” global_colors_info=”{}”][et_pb_text _builder_version=”4.27.4″ _module_preset=”default” hover_enabled=”0″ global_colors_info=”{}”…

To disable automatic updates for the WordPress core, themes and plugins, you can follow these steps: Disable Automatic Updates for the WordPress Core: By default, WordPress automatically updates itself for minor releases (e.g., from 5.7 to 5.7.1). To disable this feature and prevent automatic updates for the core, you can add the following line of code to your wp-config.php file: phpCopy code define( 'WP_AUTO_UPDATE_CORE', false ); Place this code snippet just above the line that says "/* That's all, stop editing! Happy publishing. */". This will disable automatic updates for the WordPress core. Disable Automatic Updates for Themes and Plugins: To disable automatic updates for themes and plugins, you can utilize a plugin or add some code to your theme's functions.php file. Here's how: Option 1: Using a Plugin (Easy method): Install and activate the "Easy Updates Manager" plugin from the WordPress.org plugin repository. Go to the "Dashboard" menu in your WordPress admin area and click on "Updates Options." From there, you can configure the settings to disable automatic updates for themes and plugins. Option 2: Adding Code to Your Theme's functions.php file: Access your WordPress files using an FTP client or a file manager provided by your hosting provider. Navigate to the folder containing your currently active theme, usually located in wp-content/themes/. Locate the functions.php file for your active theme and edit it. Add the following code snippet at the end of the file: phpCopy code add_filter( 'auto_update_plugin', '__return_false' ); add_filter( 'auto_update_theme', '__return_false' ); This code will disable automatic updates for both plugins and themes. Remember to save the changes you made to the wp-config.php file or the functions.php file. With these modifications, your WordPress installation will no longer automatically update the core, themes, or plugins. Keep in mind that manually updating these components is crucial for maintaining security and stability, so be sure to regularly update them yourself. You might also like: XML-RPC Support in WordPress, Should I Disable XML-RPC in Wordpress Increase Maximum upload file size in Wordpress

5 Common WordPress Cybersecurity Myths Debunked

WordPress is one of the most popular platforms for hosting websites today. It's not hard to see why — WordPress makes managing your website easy, from creating content to scheduling and promotions. However, many prospective site owners may have cybersecurity concerns. Looking online for things you can do to protect your WordPress website will give you many suggestions and tools. Some will help enhance your protection, while others have a minimal impact. At worst, following some of these myths can negatively affect your site if you don't know what you're doing. Here are five common WordPress cybersecurity myths debunked. 1. WordPress Is an Unsafe Platform One of the biggest myths about WordPress is that it lacks cybersecurity, or its security is lacking in some way. The truth is simply that cyberattacks are more prolific than ever and are only increasing, both in number and in complexity, as the years go by. All digital companies must follow laws and regulations, such as the CCPA in California, that require them to enforce cybersecurity to protect their clients. WordPress is no exception — and it takes security very seriously. WordPress has many cybersecurity measures to protect its users from attacks, the most crucial being its regular security updates. Similarly, there are plenty of plugins you can add that can grant further protection. WordPress is not an inherently unsafe platform, but there is only so much companies can do to prevent cyber attacks; part of the responsibility falls on website owners. Practicing good cybersecurity habits — such as regularly changing passwords, avoiding suspicious messages and websites, staying on top of updates, and using security plugins — can also help users protect their websites. 2. Hide Your WordPress Login URL If you search for WordPress security practices, you'll probably find a lot of suggestions telling you to hide your login URL and your admin pages. This is one of the most common security tips for WordPress. The reasoning is simple: Attackers cannot hack your website if they can't find the login page. Many cybercriminals attempt brute force attacks on WordPress login pages — basically trying to guess your password based on information they've gathered about you. Therefore, hiding the login page should prevent hackers from attacking your website. While it seems like it would work, the issue here is that you’re not really securing your login page; you’re merely obscuring it. Determined hackers can still find other ways to log into your WordPress, and they might be able to find where you’ve hidden your login page, as well. A common attack vector uses the REST API or XML-RPC to try to brute force their way into your site, which can bypass the login page entirely. Furthermore, changing the WP-admin page can easily break your website if you're unfamiliar with coding. This will make it inaccessible to everyone, including yourself. Hiding your login URL is not necessarily bad practice, and may even prevent some attacks; but it can also give a false sense of security and should not be your primary cybersecurity measure. 3. Guard Your WordPress Version Number and Theme Name Another one of the most common WordPress cybersecurity myths is that hiding your version number and theme name will protect you. Like hiding your WP login, this requires you to go into the code of your website. The theory is that hackers can use this information to access your site by manipulating this code. However, hackers today use automated bots to find vulnerabilities instead of looking for the code themselves. Often, they don't even look at version numbers and theme names — they search for other weaknesses. This is why keeping your WordPress version up to date is essential. Each new version of WordPress patches known security openings. If you're running on a past edition of WordPress, you are leaving those vulnerabilities open for hackers to exploit. Keeping WordPress up to date and investing in cybersecurity solutions such as multifactor authentication is more effective at preventing threats. 4. Rename Your WP-Content Directory Data such as themes, media uploads and plugins are stored in the WordPress content directory. Much of what makes your website unique is stored here, so you want to protect it from malicious actors. One of the common myths is that changing the directory's name will prevent hackers from finding it. Unfortunately, this is also not true. Even if you change its name, there are ways to find your content directory in the website's code. All hackers need to do is look into the code to find it. WordPress even has a guide on its website for how to retrieve the content directory using coding. In addition, renaming it can cause problems with the website's functionality. Since all your plugins and media downloads are stored in the folder, they will no longer be available if the website cannot find them. This makes changing the name of your content directory risky if you need to know how to fix them. A better way to protect your content is to update your plugins continually. Keeping them up to date is important for patching security vulnerabilities. 5. Hackers Only Target Large Businesses This is possibly the most dangerous myth regarding cybersecurity. Although many organizations rely heavily on their online platform, many small businesses and content creators believe their websites are of no interest to hackers. Therefore, they put little effort into their cybersecurity. This is one of the biggest mistakes any website owner can make. Small businesses and content creators are just as likely to be targeted by a cyberattack as larger companies. Studies show that 43% of all cyberattacks worldwide target small businesses, and many are forced to shut down due to the consequences of these attacks. Hackers can target you for any reason, no matter the size of your business or how popular your content is. This is why it is vital to invest in cybersecurity solutions if you have a presence on the internet. Keep Your WordPress Website Safe Debunking the five common WordPress cybersecurity myths can help you find better, lasting security solutions. Knowing what works is essential to protect your website from cyberattacks and stay operational. Read the full article

What Is WordPress API And How To Integrate It With Your Site?

WordPress API (Application Programming Connection point) is a bunch of conventions, tools, and schedules that permit developers to cooperate with and control WordPress data. It gives a way to outer applications and services to get to and use WordPress usefulness and data, making it a useful asset for integrating WordPress with different sites, applications, and services.

Integrating WordPress API with your site can give a large number of advantages, including:

Improved Site Usefulness: By integrating WordPress API with your site, you can add strong highlights and usefulness, for example, constant data refreshes, social media integration, and then some.

Upgraded User Experience: WordPress API permits you to make custom UIs and connections, giving a seriously captivating and instinctive user experience for your site guests.

Better SEO: Integrating WordPress API with apparatuses like Google Investigation, Yoast Search engine optimization, and Google Search Control center can assist you with streamlining your site for better web index rankings and perceivability.

Improved Cooperation: Custom WordPress development services permits you to share data and team up with different sites, applications, and services, making it more straightforward to work with accomplices, users, and different partners.

To integrate WordPress API with your site, you'll have to follow these means:

Pick A WordPress API: WordPress gives a few APIs, including REST API, XML-RPC API, and JSON API. Pick the API that best suits your necessities and prerequisites.

Empower WordPress API: To empower WordPress API, you'll have to install and initiate a plugin, like WP REST API or Jetpack.

Validate API: Whenever you've empowered WordPress API, you'll have to verify it by creating a API key or token. This will permit you to get to and control WordPress data

Integrate API: Whenever you've validated WordPress API, you can begin integrating it with your site, utilizing apparatuses and conventions like AJAX, JSON, and XML.

Conclusion

WordPress API is an incredible asset for WordPress API integration with different sites, applications, and services. By following these means, you can undoubtedly integrate WordPress API with your site, and partake in the many advantages it gives, including improved site usefulness, upgraded user experience, better Search engine optimization, and improved cooperation.

FACEBOOK – INSTAGRAM – TWITTER – LINKEDIN

WordPress Premium Plugin: Perfmatters Plugin v2.0.2 Free Download About Perfmatters Plugin v2.0.2 Perfmatters Plugin Free Download – Perfmatters is a very lightweight WordPress performance plugin. The main focus of this plugin is to reduce your page size and number of HTTP requests. It allows you to disable many unneeded features like emojis, XML-RPC, RSD Link, Shortlinks, RSS Feeds, and many o... https://bit.ly/3YL6PIr

3+ Cara Blokir xmlrpc WordPress Dengan .htaccess

Blokir xmlrpc , cara mengurangi serangan dan ancaman brute force dari bot  yang sangat menghabiskan banyak permintaan sumber daya (bandwite ) sehingga website tidak berjalan dengan lambar bahkan sampai di susped pihak penyedia layanan hosting oleh sebab itu kita perlu memberi perlindungan pada situs wordpress kita dari berbagai ancaman , salah satu nya adalah memblokir file xmlrpc .php   Apa Itu XML-RPC? XML-RPC adalah sebuah modul bahasa pemrograman php yang memungkinkan dilakukannya transmisi data menggunakan HTTP dan XML sebagai mekanisme transport dan encoding. XML-RPC akan mempermudah kamu dalam memposting artikel dan  mengunggahnya ke website menggunakan koneksi XML-RPC. dengan adanya  XMLRPC akan mengizinkan suatu website/ software agar dapat di “remote” melalui  IP internet yang berbeda, Manfaat  XML-RPC  Wordpress - mengakses website dengan menggunakan Android / PC - Mengatur Website (pengaturan cronjob, scheduling post, backup, dll) - agar dapat melakukan scheduling post - melakukan pingback koneksi  Xmlrpc.php Wordpress Harus Dimatikan meskipun banyak manfaat yang bisa kita rasakan saat menggunakan xmlrpc , ada banyak Masalah  XML-RPC yaitu keamanan. karena banyak dimanfaatkan sebagai  serangan membahayakan di situs Anda seperti contoh berikut ini Ada dua kelemahan xmlrpc.php WordPress yang sebaiknya Anda ketahui. - XMLRPC ini  dapat melakukan bruteforce langsung. - XMLRPC dimanfaatkan untuk melakukan serangan DDOS. Sehingga, server menjadi down dan website tidak dapat diakses. oleh sebab itu kita perlu menonaktifkan xmlrpc ini supay website kita aman Baca juga : Jasa Migrasi dan Setting Website Ke VPS

Cara Mematikan Xmlrpc menggunakan .htaccess

kenapa lebih menggunakan htacess daripada menggunakan plugin , karena ada beberapa plugin yang menggunakan sebagian XML-RPC supaya dapat berfungsi dengan baik sehingga ketika file Xmlrpc.php dimatikan maka akan muncul masalah antarplugin atau elemen tertentu dari situs Anda tidak dapat berfungsi lagi.bahkan akan membuat website kia menjadi eror dan tidak bisa diakse Konfigurasi Mematikan Xmlrpc di OpenLiteSpeed / LiteSpeed Tambahkan ke file .htaccess webroot Anda, tambahkan di blok mod_rewrite yang ada atau tambahkan yang baru: - buka file manager anda - cari file .htaccess - kemudian edit seperti di bawah ini RewriteRule ^(xmlrpc.php|wp-trackback.php) - - selesai dan simpan - jangan lupa restart webserver anda Konfigurasi Mematikan Xmlrpc di Apache / Nginx jika kamu menggunakan webserver apache / nginx bisa menggunakan kode di bawah ini , untuk mematikan xmlrpc - buka file manager anda - cari file .htaccess - kemudian edit seperti di bawah ini order deny,allow deny from all - selesai dan simpan - jangan lupa restart webserver anda Baca juga : Panduan Lengkap Cara install Runcloud di VPS Ubuntu Panduan Blokir xmlrpc WordPress Dengan .htaccess meskipun banyak manfaat yang bisa kita dapatkan dari XML-RPC wordpress  tapi menjaga keamanan situs lebih penting dengan salah satu cara yaiut  mematikan file XML-RPC. Apakah Anda sudah memblokir akses xmlrpc.php WordPress atau malah mengalami masalah , jika kamu merasa kesulitan bisa bertanya di kolom komentar di bawah ini Read the full article

Perfmatters Plugin V1.8.7 [Latest Version] Free Download

Perfmatters Plugin V1.8.7 [Latest Version] Free Download

  About Perfmatters Plugin v1.8.7 Perfmatters Plugin Free Download – Perfmatters is a very lightweight WordPress performance plugin. The main focus of this plugin is to reduce your page size and number of HTTP requests. It allows you to disable many unneeded features like emojis, XML-RPC, RSD Link, Shortlinks, RSS Feeds, and many other things to speed up your site. It’s not a caching plugin, but…

View On WordPress

7 ways to secure your WordPress Website

 1. Change your login URL 

 2. Disable XML - RPC right now 

 3. Install security plugins 

 4. Block spambots 

 5. Switch to HTTPS 

 6. Hides the common paths & files 

 7. Enable TFA