The Chrome lock icon deprecated in September 2023
The Chrome lock icon is on its way out. When Really Simple SSL started many years ago, more than 50% of the Chrome page loads did not use HTTPS. On a broader spectrum, the web was not encrypted by SSL/TLS for even less than that, topping a mere 14% in 2013. This year Chrome is expecting a stable coverage of 99% of page loads to be over HTTPS. But why is the lock being replaced? The padlock icon instills a
7.0.0-Beta Feedback
Instructions 7.0.0 wil be our next major release and will feature a simple approach to fending off and mitigating vulnerabilities in plugins,. themes and WordPress core. As you can expect from Really Simple SSL this has a simple configuration under settings, while the heavy lifting is done under the hood. In the best case scenario you will never find out what happens if a vulnerability is found, but if you want to try (safely) you can trigger some of Really
Email notification doesn’t show correct content
Email notifications are sent when triggered by certain features or possible updates from Really Simple SSL. This is what you need to know: The email is sent to your email, either defaulted to the admin email or, if entered, the email under General Settings. The email will trigger if needed, also if another administrator enables or disables a feature. Some emails are sent without previous action by an administrator. You can disable this feature under General Settings. If you are
About email notifications in Really Simple Security
Really Simple Security sends email notifications for important events, such as when features are enabled or when vulnerabilities are detected in installed plugins or themes on your WordPress site. To ensure that 2FA codes and security notifications are reliably delivered to your inbox, email address verification is required. You can verify your email address in the plugin by navigating to Settings -> Security -> General. This step is used to confirm that your server is properly configured to send email,
DISALLOW_FILE_EDIT is defined and set to “false”
When activating the “Disable the built-in file editors” feature under Settings > Hardening in Really Simple SSL, you may receive a notice that “the DISALLOW_FILE_EDIT constant is defined and set to false” as shown in the below image. When DISALLOW_FILE_EDIT has been defined in the wp-config.php with a false value, Really Simple SSL cannot override this. The solution is to remove the following line from your wp-config.php file: define( ‘DISALLOW_FILE_EDIT’, false );