Last active
April 14, 2024 09:22
-
-
Save nathaningram/5e48c46d48ca0db87f69a500d096b0d9 to your computer and use it in GitHub Desktop.
Creating a Starter Site - Custom Functions - Security
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
<?php | |
/* | |
Plugin Name: Custom Security Functions | |
Plugin URI: https://nathaningram.com | |
Description: Security Hardening for Core WordPress | |
Version: 2023.11 | |
Author: Nathan Ingram | |
Author URI: https://nathaningram.com | |
License: GPL2 | |
*/ | |
// Security Check | |
if (!defined('ABSPATH')) { | |
die(); | |
} | |
// Suppress Login Errors | |
function ni_suppress_login_errors(){ | |
return 'Something went wrong - please check your username or password'; | |
} | |
add_filter('login_errors', 'ni_suppress_login_errors'); | |
// Prevent User Enumeration | |
function ni_stop_author_enumeration($redirect, $request) { | |
if (preg_match('/author=([0-9]*)(\/*)/i', $request)) { | |
wp_redirect(home_url(), 301); | |
exit; | |
} | |
return $redirect; | |
} | |
add_filter('redirect_canonical', 'ni_stop_author_enumeration', 10, 2); | |
// Disable Post by Email | |
add_filter( 'enable_post_by_email_configuration', '__return_false', 100 ); | |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment