New Settings submenu: Security

I think that it would be nice to have a Security submenu item in settings. It could contain “the basics” that those of us who are paranoid do and/or the reasonable/typical things that popular security plugins do.

I’m not suggesting that you try to duplicate/compete with any given security plugin currently on the market… I’m talking about having some of the basics as checkboxes. Some examples:

  • Remove meta generator tags? (from page head and RSS feeds)
  • Enable XML-RPC? (unticked by default; with help text that briefly describes why you might want/need it, else keep it disabled)
  • Disable File Editing? [i.e.: define( ‘DISALLOW_FILE_EDIT’, true );]
  • Perhaps an option/button/checkbox to add some of these to .htaccess for the user (but only if Apache is detected): https://codex.wordpress.org/Hardening_WordPress#WP-Includes
  • etc, etc, TBD…

Read-only archive: https://petitions.classicpress.net/posts/136/new-settings-submenu-security

Author: Daniel Hendricks

Vote count: 49

Status: completed

Tags:

  • cp-research-plugin

Comments