WordPress is a priceless and powerful content management system, but its security issues remain to be a top concern for both users and core developers. To protect your own web projects against malicious attacks, you may try to disable WordPress comments or control user permissions.
However, there are still many hackers trying to access your website and intercept sensitive data by guessing at your weak passwords when they realize that you run website on WordPress. In the further, those malicious attackers would also send specially-crafted HTTP requests to your server by exploiting the vulnerabilities caused by outdated version of WordPress or plugin bugs.
In this case, it is of great necessity to use strong passwords and keep your WordPress up-to-date as possible. More importantly, you’d better hide the fact that you are using WordPress so as to protect your website against aggressive attacks like HTTP requests, SQL-injection or more. Here, we would like to showcase how to use the long-awaited Hide My WP plugin to enhance your website security.
What Is Hide My WP?
As a premium security plugin, Hide My WP allows you to obscure you implementation of WordPress and the version number of your WordPress. More than that, this anti-spam plugin also protects you from massive brute-force attacks that may aim at the most aggressive and biggest botnet on your WordPress installation.
Website URL: http://codecanyon.net/item/hide-my-wp-no-one-can-know-you-use-wordpress/4177158
How to Install and Activate this Plugin?
As is noted above, you should go to the listed official site to purchase and download this Hide My WP plugin. If done, you should go back to the WordPress dashboard and then hover over to “Plugins” in order to enter “Add New” area. Next, click on “Upload Plugin” button and upload the newly-downloaded .zip file from your local computer. Don’t forget to choose “Install Now” to start your installation. Note that, you will be prompted to “Activate” this plugin once you have installed this plugin.
How to Use Hide My WP in WordPress?
Having done with those mentioned steps, you will need to customize Hide My WP plugin, which is not difficult even for absolute beginners. Here, let’s go with more details as follows.
Make Your “Start” Settings
To start with your customization, you should go into “Settings” and enter “Hide My WP.” As is showed, you will be required to fill in your purchase code so as to make everything go as expected. To do so, you only need to click the link of “Get it” under the blank box and copy those generated code so as to take effect.
In the meantime, you are allowed to specify “Import Options” by selecting from three built-in schemes, including Medium Privacy (more compatibility), Medium Privacy (quick) and High Privacy (less compatibility). As the selected-scheme will define the way your plugin will set up, you’d better consider it seriously.
On the other hand, you should export your current settings by pasting and saving your export code. And more, you will be asked to provide “Debug Report” so as to get fast and quality service from support team. Also, you can “Spread it” and get “Quick Fix Guide” in the below parts. At length, remember to click on “Save Settings” to end your “Start” settings.
Customize Your “General Settings”
Inside this “General Settings” area, there are various editing options. First of all, you are empowered to specify “404 Page Templates” by using a blog theme or custom page. More interestingly, you are capable of creating your “Trusted User Roles” from many selectable options, such as “Author/User role”, “Contributor/User role”, “Subscriber/User role”, “Key Master”, “Premise Member”, “Shop Manager”, “Student”, etc.
In the meantime, you can also specify the “Replace Mode” and receives a email that notifies you of a custom 404 error page. In addition to that, you are allowed to hide your wp-login.php file and wp-admin folder for some untrusted users. If you already have a custom .htaccess file and don’t want to update it frequently by HMWP, you will need to check the box of “Customized .htaccess.”
Scroll down and you will notice there are more options for you to select. To name a few, you are permitted to remove auto-created feeds from header and the version number from script and styles URLs. In the further, you can also hide administrative bar, PHP files and other files for strange users. If needed, you can replace keywords in your HTML output, and in the meantime, fill out your email sender address and name. Pay attention that you can restore all changes to the default settings if you are not content with the current ones.
Configure Your “Permalinks & URLs”
In the “Permalinks & URLs” section, you will need to change and create different pathways and link structures so as to perish WordPress link vulnerabilities. To be more specific, you are able to create new theme path, new style name, new wp-includes file’s path and more. More than that, you can enable the HVWP anti-spam system and change every plugin folder name and Ajax URL. Above all, you should change admin login URL and fill in the new path as is displayed in the following screenshot.
In the following, you can make a series of personal settings on “Author”, “Feeds”, “Post”, “Page”, “Category”, “Paginate”, “Tag” and “Search”, etc. All those options work to prevent malicious software from detecting that your site is currently powered by WordPress. More importantly, you are able to change nonce and disable archive and “Other WP.” If required, you can “Restore Default.”
Till this step, you have done with your configuration, which is fairly simple and don’t require any technically-focused code.
From what has been discussed above, it is obvious that Hide My WP is a rarely-seen security plugin that foils malicious attacks by reforming the structure of your WordPress themes, plugins and other files. However, to shield your WordPress site from dedicated hackers or botnet is a constant battle that requires a huge investment in time and money.
To concentrate on what’s important for your business, you’d better choose a reliable and professional WordPress hosting solution that is responsible for maintaining and protecting your site. Here, we highly recommend you to go with the following hosting companies, all of which are unbeatable in protection features and customer support.