Page 4 – Really Simple Security

LiteSpeed Cache and Security Headers

If you are using LiteSpeed cache you may have problems updating your security headers. This is because LiteSpeed cache will prevent the loading of our advanced-headers.php file. The solution for this is to add rsssl_after_saved_fields to the “Purge All Hooks” list in the LiteSpeed cache settings. This will purge the LiteSpeed cache on every save of the Really SImple SSL settings. NOTE: This will not work for CSP learning mode because learning mode changes the headers without a manual save

Leon Wimmenhoeve December 20, 2023

How valuable is your website?

Thousands of websites get hacked every day. It may not have happened to you, but there is no reason for cybercriminals not to try. People often think it won’t happen to their website because there is nothing to gain for an attacker. You may not be running a webshop, you’re not storing any confidential or valuable data on your website, and you are not even bothered about losing your website because you’re hardly getting any visitors. No one would care

Leon Wimmenhoeve August 25, 2023

W3 Total Cache and Security Headers

Disk: Enhanced mode blocks security headers If you are using W3 Total Cache in “Disk: Enhanced” mode, setting security headers in Really Simple SSL will not work correctly. Really Simple SSL sets security headers using PHP and the “Disk: Enhanced” mode in W3 Total Cache completely bypasses PHP and serves static HTML only. This means W3 Total Cache “Disk: Enhanced” mode is incompatible with the security headers functionality in Really Simple SSL. To use Really Simple SSL’s security headers functionality

Leon Wimmenhoeve August 18, 2023

Rogue admin protection for WordPress

To protect your website against the creation of rogue admins, simply enable the “Restrict creation of administrators” setting under advanced hardening in Really Simple SSL Pro.

Leon Wimmenhoeve August 4, 2023

Implementing Content Security Policy (CSP) on WordPress

Implementing a Content Security Policy is an essential way to protect your website from common attacks. What is Content Security Policy Content Security Policy enhances the security of web applications, reduces the attack surface, and protects users from various forms of web-based attacks such as Cross-Site Scripting (XSS), Clickjacking, data and code injection attacks. In this article, we will explore the significance of CSP and delve into the step-by-step process of implementing it on a WordPress website to enhance security

Leon Wimmenhoeve July 28, 2023

Recent

Configuring Really Simple Security with WP-CLI

How to Fix The “Link you followed has Expired” error on WordPress

404 Not Found errors detected on your homepage

Protecting site visitors with Security Headers

Hardening your website’s security

Why WordPress is (in)secure

Staying ahead of vulnerabilities

Our journey towards Really Simple Security

Categories

Most popular