Plugins DatabasePlugins Database logo
Back to plugins
Homepage WordPress

Actions

DownloadAuthor pageSee on WordPress

Plugin info

Total downloads: 2,280
Active installs: 10
Total reviews: 0
Average rating: 0
Support threads opened: 0
Support threads resolved: 0 (0%)
Available in: 1 language(s)
Contributors: 1
Last updated: 6/16/2014 (4215 days ago)
Added to WordPress: 9/13/2011 (14 years old)
Minimum WordPress version: f
Tested up to WordPress version: f
Minimum PHP version: f

Maintenance & Compatibility

Maintenance score

Possibly abandoned • Last updated 4215 days ago

20/100

Is WP Best Practices abandoned?

Possibly abandoned (last update 4215 days ago).

Compatibility

Requires WordPress: f
Tested up to: f
Requires PHP: f

Ratings

0
0
0
0
0See all reviews

Developers

Ed Orsini (Owner)1

Languages

Similar & Alternatives

Explore plugins with similar tags, and compare key metrics like downloads, ratings, updates, support, and WP/PHP compatibility.

WP-Simply remove generator tag
Rating 0.0/5 (0 reviews)Active installs 20
Compare
WP Version Remover
Rating 1.0/5 (1 reviews)Active installs 200
Compare
Sneakily Hide WP Versions
Rating 0.0/5 (0 reviews)Active installs 10
Compare
See more alternatives to WP Best Practices

Description

This plugin is designed to implement the latest WordPress best practices
around security into your WordPress website.

Features

  1. Deny access to the wp-config.php file to anyone surfing for it. https://codex.wordpress.org/Hardening_WordPress#Securing_wp-config.php
  2. Deny access to .svn files to anyone surfing for it.
  3. Block access to wp-includes scripts to not intended users. https://codex.wordpress.org/Hardening_WordPress#Securing_wp-includes
  4. Disable file editing. https://codex.wordpress.org/Hardening_WordPress
  5. Remove the Compatibility View button on Internet Explorer.
  6. Remove the meta name generator tag from the header of every page, including RSS feeds, which contains your site’s WordPress version.
  7. Disable the XML-RPC (pingback) functionality to help avoid DDoS attacks. http://bit.ly/1o9RsFA

For more information, questions, requests, or comments, please email the developer.

Installation

This section describes how to install the plugin and get it working.

  1. Upload the wp-best-standards.zip to the /wp-content/plugins/ directory
  2. Unzip the file
  3. Activate the plugin through the ‘Plugins’ menu in WordPress
  4. You are all set! Enjoy!

Frequently Asked Questions

The Meta Name Generator is still displaying the WordPress version. How could this be?

Make sure that your template does not have a hard coded reference within the header.php file. Some older templates seem to have this reference. Please delete or comment the line.

Review feed

No reviews available

Screenshots

  1. This screen shot illustrates the admin section of the plugin which allows you to hide the login page

    This screen shot illustrates the admin section of the plugin which allows you to hide the login page

Changelog

1.5.3

  • Performed code cleanup and removed functionality not used.

1.5.3

  • Clean up.

1.5.1

  • Removes the compatibility mode from Internet Explorer

1.5

  • Clean up.

1.4

  • Disables the file editing of themes and plugins in the admin dashboard.
  • Secures the wp-includes folder.
  • Secures the wp-config.php file.

1.3

  • This release disabled the XML-RPC functionality in order to help prevent denial-of-service (DDoS) attacks.

1.2

  • Minor code cleanup.

1.1

  • This release included the ability to hide the WordPress version from the wp-login.php file.
  • Minor code cleanup.

1.0

  • The original release of this plugin.
  • This release included the ability to remove the WordPress version from the meta generator tag and the readme.html file.
Back to plugins