Ender’s one click Security adjustment can disable WordPress’s built-in PHP and script error debugging functions, making the site less vulnerable to malicious attacks. This function displays code errors in the front end of the website, allowing hackers to find website security vulnerabilities. The error report concealment has now been resolved. Update security key WordPress uses security keys to improve information encryption, so it is almost impossible for hackers to find the right combination using any unpredictable encryption password (such as 89080a8908908b098903c). The
Defender’s previous security key update feature allows you to update these keys periodically and set a notification that informs the administrator how often to regenerate these keys. The location of the key regeneration. When the security key is regenerated, the update is automatically marked as resolved. The location where the security key is displayed will be updated. You can also set up advance notification here so that you can reset it later. One of the automatic one click Security adjustment functions of defender against information disclosure is to prevent the disclosure of important files on misconfigured servers, thus allowing malicious users to access WordPress sites or databases. The
The state of the security function to prevent information disclosure. PHP anti running defender allows you to disable PHP running directly from an unwanted directory, thus preventing harmful PHP files from being uploaded to the directory of the WordPress site. Solve the problem of preventing PHP from running. You can also bypass defender protection by adding exceptions to the PHP file you want to run. Where PHP files are exempted. The firewall in firewall defender adds an enhanced layer of protection for hackers trying to enter the website through indiscriminate intrusion. The
Safety measures include: Login lockdown defender will lock all users who attempt to log in and fail repeatedly to obtain the correct credentials. Male defender’s login lock control panel. You can configure login locking options, such as locking time, locking messages, and user name blocking. By adjusting the threshold, you can specify the number of login attempts that defender will allow to fail within a given time before triggering a lock. In this example, Defender intercepts users who fail to log in five times within five minutes. You can set the lock time or permanently lock the problematic user. The
Male temporarily or permanently shield users. As with most defender features, you can customize the messages that will be displayed to locked users. User defined messages for locking. You can also use a regular user name (such as admin) to automatically lock and block users trying to log in. Male defender locks and prohibits users who log in with a forbidden user name. 404 sense defender staring at recidivists. They are usually robots that scroll through all links on the site to find the back-end management area, so that they can request pages on non-existent WordPress sites under the same IP address or cause confusion. The
If this happens too often, defender will prevent users from accessing the site. You can specify the number of 404 errors that trigger locking in a specific time period, and select a specific time period (seconds, minutes, or hours) or the blocking time of users who permanently cause problems. Male defender firewall – probe 404. You can also customize the messages displayed to locked users. Do not let people guess why hackers are locked. Defender’s block list Auto
Prohibit users and robots from accessing the specified files and folders. If a public file or folder is missing from the web site, you can write it to the Allow list area. Locking does not include these access attempts. ‹ prohibit or allow users to access files and folders. To specify the file formats and extensions that are automatically prohibited or allowed, just enter them in the plug-in field. Automatically disable or allow access to the file format and extension. Defender monitors all interactive components on the site. However, you can also choose to include or exclude 404 monitoring for users who log in by clicking the button. Male Click to view the 404 of the logged in user. Geo location IP lock defender allows you to block traffic from all locations (even nationwide) without expecting traffic from a specific location to the site. Location IP locking is an additional security bonus that prevents users in unwanted locations from approaching the site. IP barring inside the defender firewall can block unwanted visitors with just a few clicks. Countries that do not want traffic to flow in are prohibited to protect the website from hackers at this location. To access the free geolite2 database, you must register a free account on maxmind. You can check your account, generate a password, and then generate a license key. Male generate the license key to access the geoip database. After you add this license key to defender, you can , add, and access the geolite 2 database. To the list of countries, add the geoip database license key. If the license activation is successful, you can specify the country \/ region where communication is blocked or allowed from the drop-down menu in the \
User role. If there is a lost phone, you can activate this setting and send the verification code through the user’s email instead of sending. You can also force 2fa validation and create custom graphics instead of using the default defender icon. Set options for lost calls, compulsory authentication and customized graphics. Defender uses the Google OTP application. The and setup instructions are located on the user profile dashboard, so you can easily install applications on your device on the app store or Google play. To access the Setup Guide, enable 2fa in the user profile. 2fa works by scanning the barcode and entering the 6-digit password displayed on the device. Male Google authentication screen. Defender’s 2fa function adds the first impenetrable security and protection layer for hackers. Cannot access without password. Advanced tools defender provides two advanced tools to enhance site security and prevent hackers from accessing the site. Masked login area: change the URL path on the login screen to a path other than the default WP admin. Security header: activate the security header to add a security layer to the website. Let’s take a quick look at how easy it is to make it difficult for hackers to find a login screen. Login shielding defender can easily change the default URL, mask (hide) the login area, and prevent hackers and robots from finding and accessing the login URL. You can select a unique mask login URL and enter the required slug (for example, \
