Include security headers in the .htaccess

Include security headers in the .htaccess

To add HTTP response headers in WordPress WordPress does more than 38.8% of all websites on the internet. Yes – more than one in four websites you visit is likely powered by WordPress. • WordPress.org , often as self-hosted WordPress is the free open source WordPress software that you can install on your own web host to create a 100% custom website.• WordPress.com is a for-profit, paid…, you just need to add the following lines to your .htaccesshtaccess is a configuration file that controls the web server on which your website is run. Additional Information: https://kinsta.com/de/wissensdatenbank/wordpress-htaccess-datei/ mehr erfahren file.

First, log in to your WordPress WordPress does more than 38.8% of all websites on the internet. Yes – more than one in four websites you visit is likely powered by WordPress. • WordPress.org , often as self-hosted WordPress is the free open source WordPress software that you can install on your own web host to create a 100% custom website.• WordPress.com is a for-profit, paid… hosting account and go to the root folder of your WordPress WordPress does more than 38.8% of all websites on the internet. Yes – more than one in four websites you visit is likely powered by WordPress. • WordPress.org , often as self-hosted WordPress is the free open source WordPress software that you can install on your own web host to create a 100% custom website.• WordPress.com is a for-profit, paid… site from there. Then search for the .htaccesshtaccess is a configuration file that controls the web server on which your website is run. Additional Information: https://kinsta.com/de/wissensdatenbank/wordpress-htaccess-datei/ mehr erfahren file and edit it.

As this is a (.) file, it may be hidden. If you cannot find the .htaccesshtaccess is a configuration file that controls the web server on which your website is run. Additional Information: https://kinsta.com/de/wissensdatenbank/wordpress-htaccess-datei/ mehr erfahren file in the root folder, go to the settings and click on “Show hidden files”.

Now insert the following line at the end:

Header set Strict-Transport-Security "max-age=31536000" env=HTTPS

Header set X-XSS-Protection "1; mode=block"

Header set X-Content-Type-Options nosniff

Header always append X-Frame-Options SAMEORIGIN

Header referrer policy: no-referrer-when-downgrade

After adding, save the file and your security headers are integrated.

Dieser Beitrag ist auch verfügbar auf: Deutsch (German)