Documentation
We have added documentation and F.A.Q. for the most common issues and questions which arise during installation and configuration. Please contact support for assistance if needed.

We are now Really Simple Security!
Read more about our journey.
- 5 Million Happy Users
- Awesome Support
- Powerful WordPress Security
- Best-in-class Performance
Passkeys: no need for Limit Login Attempts?
Traditional logins with usernames and passwords are often targeted by brute-force attacks, phishing, and credential stuffing. That’s where Passkeys come in: a modern, phishing-resistant authentication method that has been gaining traction for its usability and strength. Really Simple Security Pro includes Passkey support to allow
Configuring Really Simple Security with WP-CLI
Table of contents What is WP-CLI? Why would you want to use it? Prerequisites and how to install How to use WP-CLI Really Simple Security WP-CLI commands What is WP-CLI? WP-CLI is a command-line interface for WordPress. It allows you to manage your WordPress site
How to Fix The “Link you followed has Expired” error on WordPress
When trying to upload a (large) plugin or theme to your WordPress site, you might run into the message “The link you followed has expired”. This occurs because of the max. upload file size configuration of your WordPress installation, if the file you’re uploading exceeds
404 not found errors
The 404 Blocking rule in Really Simple Security’s Firewall helps protect your site against malicious scanning attempts by blocking IP addresses that generate too many 404 Not Found errors while scanning your site for vulnerabilities (a detailed explanation is available here). If you see the
Protecting site visitors with Security Headers
Each time you visit a website, information is exchanged between your device and the website’s server. HTTP headers play an important role in this communication, as they provide extra information about the data that is being shared. Security Headers are types of HTTP headers that
Hardening your website’s security
Table of Contents Introducing WordPress Hardening Hardening – Basic Disable “anyone can register” Disable the built-in file editors Prevent code execution in the public ‘Uploads’ folder Hide your WordPress version Prevent login feedback Disable directory browsing Disable user enumeration Block the ‘admin’ username Disable XML-RPC