How to Disable PHP Execution in Certain WordPress Directories

Are you looking to improve the security of your WordPress site.Hackers can upload malware to your website in an attempt to break in. Disabling PHP in

WordPress Information:How to Disable PHP Execution in Certain WordPress Directories

Are you trying to enhance the safety of your WordPress website?

Hackers can add malware to your web site in an try to in. Disabling PHP in these directories will cease the malware from operating.

On this article, we are going to present you ways to disable PHP in WordPress utilizing the .htaccess file.

How to Disable PHP Execution in Certain WordPress Directories

Why Disable PHP Execution in Certain WordPress Directories?

By default, WordPress makes sure directories writeable so that you and different approved customers in your web site can simply add themes, plugins, photos, and movies to your web site.

Nevertheless, this functionality will be abused it will get into the incorrect fingers, similar to hackers can use it to add backdoor entry information or malware to your WordPress web site.

These malicious information are sometimes disguised as core WordPress information. They're principally written in PHP and may run in the background to achieve full entry to each side of your web site.

Sounds scary, proper?

Don't fear; there may be a simple repair for that. Merely disable PHP execution in sure directories the place you don't want it. By doing so, no PHP information will run inside these directories.

Let's check out how to enhance WordPress safety by disabling PHP execution utilizing the .htaccess file.

Disabling PHP Execution in Certain WordPress Directories Utilizing .htaccess File

Most WordPress websites an .htaccess file in the foundation folder.

This highly effective configuration file is used to password-protect the admin space, disable listing shopping, generate an Search engine optimization-friendly URL construction, and extra.

By default, the .htaccess file is positioned in your WordPress web site's root folder, however you may as well create and use extra .htaccess information inside your internal WordPress directories.

To guard your web site from backdoor entry information, you want to create a .htaccess file and add it to your website's/wp-includes/ and /wp-content/uploads/ directories.

Merely create a clean file in your pc utilizing a textual content editor similar to Notepad on Home windows or TextEdit on Mac. Save the file as .htaccess and paste the next code inside it.

<Recordsdata *.php>deny from all</Recordsdata>
Hosted with ❤️ by WPCode
1-click Use in WordPress

How to Disable PHP Execution in Certain WordPress Directories

Now save the file in your pc.

Subsequent, you should add this file to the /wp-includes/ and /wp-content/uploads/ folders in your WordPress internet hosting server.

You may add it utilizing an FTP shopper or the File Supervisor app in your internet hosting account's cPanel dashboard.

How to Disable PHP Execution in Certain WordPress Directories

As soon as the .htaccess file with the above code is added, it'll cease any PHP information from operating in these directories.

Checking for Backdoors in WordPress Utilizing Sucuri

Utilizing this .htaccess trick helps you harden your WordPress safety, however it won't repair a WordPress website that has already been hacked.

Backdoors are cleverly disguised and may already be hidden in plain sight.

If you would like to examine for doable backdoors in your web site, then you definately want to activate in your web site.

How to Disable PHP Execution in Certain WordPress Directories

Sucuri is the very best WordPress safety plugin available on the market. It scans your web site for doable threats, suspicious code, malware, and vulnerabilities.

It additionally successfully blocks most hacking makes an attempt from even reaching your web site by including a firewall between your website and suspicious visitors.

Most significantly, in case your WordPress website will get hacked, then it'll clear it up for you. To be taught extra, you possibly can learn our Sucuri overview as a result of we now have been utilizing their for years.

You may be taught extra in our information on discovering and backdoors in a hacked WordPress website.

We hope this text helped you to find out how to disable PHP execution in sure WordPress directories to harden your web site safety. You may also need to find out how to create a free enterprise e-mail deal with or our skilled picks for the must-have WordPress plugins to develop your website.



Christian is a digital marketing expert, with a focus on SEO and WordPress. She loves to share her wealth of knowledge through her writing, and enjoys surfing the internet for new information when she's not out in the waves or hiking a mountain. Her mission is to learn something new every day, and she firmly believes that there is no such thing as too much knowledge.

Articles: 124

Leave a Reply

Your email address will not be published. Required fields are marked *