Archives: Instructions
Limit Login Attempts
The Limit Login Attempts function of Really Simple SSL protects your site from login attempts by unauthorized users. When you enable Limit Login Attempts, all login attempts are logged and repeated attempts to login with invalid credentials will be blocked automatically. Temporary lockouts By default, 5 invalid login attempts within 15 minutes will result in a 30 minute lockout of the offending ip address and/or username. All automatic lockouts are temporary and will be cleared after the configured lock-out duration.
Password Security
If the login credentials of accounts on your WordPress sites are compromised, this could result in your site getting hacked. The Password Security features in Really Simple SSL aim to strengthen the protection of WordPress accounts on your website. We will explain each of these features below, and how they can help you improve the security of user accounts. Securing User Accounts and Passwords Activating the “Enforce strong passwords” setting enhances WordPress’ default password strength check (for all new user registrations);
About Email verification
Some features in Really Simple SSL rely on the ability to send emails to a website administrator or to your users. To make sure these e-mail messages reach the intended recipient an e-mail verification function is included under “Settings -> General”. During activation of the plugin a verification email is sent to the supplied email address (the main WordPress administrator user by default). If you want to change the email address Really Simple SSL uses for notifications or resend the
Disabling admin account creation protection when you are locked-out
Really Simple Security Pro has an advanced hardening setting to “Restrict creation of administrator roles” Enabling this setting will check for Users that were assigned the Administrator role in a different way than through the regular user profile interface. If a such a user account is found, the role of the user will be changed to Subscriber immediately and an e-mail notification will be sent to the site administrator. If for some reason you are locked out of your site
About Vulnerabilities
This article explains how to configure vulnerability detection in Really Simple SSL and what are important things to consider. If you want to know more about our latest release, also called 7.0 Vulnerabilities, read this article about our future endeavour’s for Really Simple SSL. When you enable vulnerability detection and save settings, a pop-up will appear to configure your website and runs a first scan. Notifications You can configure when and how to show the notifications based on the minimum