WordPress Security -- Auto Update, Remove RSS, .htacces & robots.txt

5/18/2015 - 10:42 PM

WordPress Security -- Auto Update, Remove RSS, .htacces & robots.txt

User-agent: *
Disallow: /cgi-bin
Disallow: /wp-admin
Disallow: /wp-includes
Disallow: /wp-content/plugins/
Disallow: /wp-content/cache/
Disallow: /wp-content/themes/
Disallow: */trackback/
Disallow: */feed/
Disallow: /*/feed/rss/$

functions.php

// Remove WordPress HEAD Generator Tag
remove_action('wp_head', 'wp_generator');

// Remove RSS Generator Tag
function remove_wp_version_rss() {
 	return'';
}
add_filter('the_generator','remove_wp_version_rss');

.htaccess

# STRONG HTACCESS PROTECTION
<Files ~ "^.*\.([Hh][Tt][Aa])">
order allow,deny
deny from all
satisfy all
</Files>

# disable directory browsing
Options All -Indexes

# protect from sql injection
Options +FollowSymLinks
RewriteEngine On
RewriteCond %{QUERY_STRING} (\<|%3C).*script.*(\>|%3E) [NC,OR]
RewriteCond %{QUERY_STRING} GLOBALS(=|\[|\%[0-9A-Z]{0,2}) [OR]
RewriteCond %{QUERY_STRING} _REQUEST(=|\[|\%[0-9A-Z]{0,2})
RewriteRule ^(.*)$ index.php [F,L]

Cacher is the code snippet organizer for pro developers

We empower you and your team to get more done, faster

WordPress Security -- Auto Update, Remove RSS, .htacces & robots.txt