Steps to take after migrating to SSL
Step 1. Mixed Content Scan After installing Really Simple Security and activating SSL, it is still possible that your site is flagged as not secure. The most common cause for this is ‘Mixed content’. If you do not see the secure lock in your browser address bar, you still have mixed content. It is very important that this is fixed because browsers will display ‘insecure site’ warnings to visitors of the site. Learn more about mixed content Step 2. SSL
Passkeys: no need for Limit Login Attempts?
Traditional logins with usernames and passwords are often targeted by brute-force attacks, phishing, and credential stuffing. That’s where Passkeys come in: a modern, phishing-resistant authentication method that has been gaining traction for its usability and strength. Really Simple Security Pro includes Passkey support to allow site administrators to enable (or enforce) passkey-based logins on WordPress, replacing the need for traditional passwords. This can be enforced per user role: for instance, you can require Passkeys for Administrator and Editor roles only.
Configuring Really Simple Security with WP-CLI
Table of contents What is WP-CLI? Why would you want to use it? Prerequisites and how to install How to use WP-CLI Really Simple Security WP-CLI commands What is WP-CLI? WP-CLI is a command-line interface for WordPress. It allows you to manage your WordPress site using commands in your terminal or command prompt, making it easier to automate tasks and manage your site without needing to log into the WordPress admin dashboard. Why would you want to use it? Using
How to Fix The “Link you followed has Expired” error on WordPress
When trying to upload a (large) plugin or theme to your WordPress site, you might run into the message “The link you followed has expired”. This occurs because of the max. upload file size configuration of your WordPress installation, if the file you’re uploading exceeds this limit: this error could appear. How to find the current upload limit on your WordPress site You can view what these limits are currently set to, directly within the WordPress admin interface. This information
404 Not Found errors detected on your homepage
The 404 Blocking rule in Really Simple Security’s Firewall helps protect your site against malicious scanning attempts by blocking IP addresses that generate too many 404 Not Found errors while scanning your site for vulnerabilities (a detailed explanation is available here). If you see the following notice appear on the Really Simple Security Dashboard, this means that the plugin has detected 404 Not Found errors on the homepage of your site. In such cases, the plugin automatically deactivates the 404 Blocking