AgilityWeb
8/26/2018 - 3:46 PM

WP Security htaccess

######################################
#         WORDPRESS SECURITY         #
######################################

# Follow symbolic links
Options +FollowSymLinks

# Protect folder content
Options -Indexes

# Hide server information
ServerSignature Off

# Protect wp-config.php
<files wp-config.php>
 Order allow,deny
 Deny from all
</files>

# Protect .htaccess and .htpasswds
<Files ~ "^.*\.([Hh][Tt][AaPp])">
 Order allow,deny
 Deny from all
</Files>

# Hide authors pages
<IfModule mod_rewrite.c>
 RewriteCond %{QUERY_STRING} ^author=([0-9]*)
 RewriteRule .* - [F]
</IfModule>

# Protect xmlrpc.php
<Files xmlrpc.php>
 Order allow,deny
 Deny from all
</Files>

# Protect info files
<FilesMatch "^(readme.html|readme.txt|README.txt|README.md|changelog.txt|license.txt|LICENCE.txt|LICENCE)">
 Order allow,deny
 Deny from all
</FilesMatch>