Aug 152014
 

All In One WP Security And Firewall Maintenance helps you setup the website on lock down to prevent visitors viewing your site.

Last Updated: September 21, 2018

Latest News: I have updated the information below.

All In One WP Security And Firewall Maintenance

Step 1 ) Click on WP Security -> Maintenance to lock down your website while you perform some maintenance. Remember that you can personalize your message and you can even include some link to a private or another website. See image below.

Visitor Lockout

  • Enable Front-end Lockout

A media button for wp editor in maintenance settings page was added.

all-in-one-wp-security-visitor-lockout

Note: When you enable the above feature you will not be able to login via wp-admin.php file. You have to log in via wp-login.php only with admin privileges. However if you enable Rename Login Page under Brute Force tab you will have to enter the secret word to log into your admin panel.

Miscellaneous Settings

Step 2 ) Go to WP Security -> Miscellaneous to set up the following options. See image below.

Miscellaneous Settings

  • Copy Protection
  • Frames
  • Users Enumeration
  • WP REST API

all-in-one-wp-security-miscellaneous-new

Copy Protection

Step 3 ) Go to WP Security -> Miscellaneous -> Copy Protection to set up Copy Protection on your website. See image below.

Copy Protection

  • Enable Copy Protection
  • Click on Save Copy Protection Settings once you complete this option.

all-in-one-wp-security-miscellaneous-copy-protection

Frames

Step 4 ) Go to WP Security -> Miscellaneous -> Frames to up the following option. See image below.

Frames

  • Enable iFrame Protection
  • Click on Save Settings once you complete this option.

all-in-one-wp-security-miscellaneous-frames

Users Enumeration

Step 5 ) Go to WP Security -> Miscellaneous -> Users Enumeration to up the following option.

Users Enumeration

  • Disable Users Enumeration = For example if someone types yoursite.com/?author=3 they will see the following error message Accessing author info via link is forbidden, when enabled.
  • Click on Save Settings once you complete this option.

Note: There was an issue with this feature as pointed out in the following forum post. That is why the developers separated this feature from WP REST API below.

all-in-one-wp-security-miscellaneous-user-enumeration

WP REST API

Step 6 ) Go to WP Security -> Miscellaneous -> WP REST API to set up the following option.

WP REST API

  • Disallow Unauthorized REST Requests: = When enabled, the WP REST API protects against queries made to the rest api. eg: http://yoursite.com/wp-json/wp/v2/.
  • Click on Save Settings once you complete this option.

Click on the following link Delete Spam to continue configuring the plugins settings.

If you have any questions please let me know.

Enjoy.

All In One WP Security & Firewall Tutorials List:

Manuel Ballesta RuizManuel Ballesta Ruiz is a web developer, Blogger and WordPress Enthusiast.

 Leave a Reply

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <s> <strike> <strong>

(required)

(required)

The following GDPR rules must be read and accepted:
This form collects your name, email and content so that we can keep track of the comments placed on the website. For more info check our privacy policy where you will get more info on where, how and why we store your data.