Category: WordPress Security
Passkeys: no need for Limit Login Attempts?
Traditional logins with usernames and passwords are often targeted by brute-force attacks, phishing, and credential stuffing. That’s where Passkeys come in: a modern, phishing-resistant authentication method that has been gaining traction for its usability and strength. Really Simple Security Pro includes Passkey support to allow site administrators to enable (or enforce) passkey-based logins on WordPress, replacing the need for traditional passwords. This can be enforced per user role: for instance, you can require Passkeys for Administrator and Editor roles only.
Changing the Email Template
You will be sending emails to your users, from your server. This means you can edit the email template to your liking. Here we will explain how to override the HTML template, and use your own logo. The unbranded version of the email will be sent to your users. Overriding the default E-mail 2FA template – Create a new folder in the /wp-content/ directory of your WordPress site, rename the folder to custom-email-templates – Navigate to /wp-content/plugins/really-simple-ssl-pro/mailer/templates/, and create a
Configuring Really Simple Security with WP-CLI
Table of contents What is WP-CLI? Why would you want to use it? Prerequisites and how to install How to use WP-CLI Really Simple Security WP-CLI commands What is WP-CLI? WP-CLI is a command-line interface for WordPress. It allows you to manage your WordPress site using commands in your terminal or command prompt, making it easier to automate tasks and manage your site without needing to log into the WordPress admin dashboard. Why would you want to use it? Using
404 Not Found errors detected on your homepage
The 404 Blocking rule in Really Simple Security’s Firewall helps protect your site against malicious scanning attempts by blocking IP addresses that generate too many 404 Not Found errors while scanning your site for vulnerabilities (a detailed explanation is available here). If you see the following notice appear on the Really Simple Security Dashboard, this means that the plugin has detected 404 Not Found errors on the homepage of your site. In such cases, the plugin automatically deactivates the 404 Blocking
About the Firewall
The Firewall module in Really Simple Security is a powerful feature that allows you to monitor and filter requests to your WordPress site. You can activate the firewall by enabling the “Enable Firewall” slider under SSL & Security -> Settings -> Firewall. This article explains how to configure the firewall rules in Really Simple Security to identify and lock out unwanted, malicious traffic from your WordPress site. Table of Contents 404 Blocking Region Blocking User Agents IP Allowlist & Blocklist Event