We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
There was an error while loading. Please reload this page.
WordPress Starter has several security improvements (which works on the major LAMP servers).
We improved standard robots.txt file with rules to hide WordPress backend and other files, which should not be indexed.
.htaccess files deny access to:
.htaccess
.env
environments/*
By default installer will generate WordPress salts automatically. To replace them you can change .env variables:
AUTH_KEY
SECURE_AUTH_KEY
LOGGED_IN_KEY
NONCE_KEY
AUTH_SALT
SECURE_AUTH_SALT
LOGGED_IN_SALT
NONCE_SALT
Salts can be generated with:
composer wp:salts
We recommend to set one more level of security - add additional HTTP password protection. You can do this with our composer script:
composer wp:secure -u "login" -p "password"
Next: mu-plugins autoloader