Really Simple Security – Simple and Performant Security (formerly Really Simple SSL)
Easily improve site security with WordPress Hardening, Two-Factor Authentication (2FA), Login Protection, Vulnerability Detection and SSL certificate. Really simple, Effective and Performant WordPress Security Really Simple Security is the most lightweight and easy-to-use security plugin for WordPress. It secures your WordPress website with SSL certificate generation, including proper 301 https redirection and SSL enforcement, scanning for possible vulnerabilities, Login Protection and implementing essential WordPress hardening features. We believe that security should have the absolute minimum effect on website performance, user experience and maintainability. Therefore, Really Simple Security is: Lightweight: Every security feature is developed with a modular approach and with performance in mind. Disabled features won’t load any redundant code. Easy-to-use: 1-minute configuration with short onboarding setup. Security Features Easy SSL Migration Migrates your website to HTTPS and enforces SSL in just one click. 301 redirect via PHP or .htaccess Secure cookies Let’s Encrypt: Install an SSL Certificate if your hosting provider supports manual installation. Server Health Check: Your server configuration is every bit as important for your website security. WordPress Hardening Tweak your configuration and keep WordPress fortified and safe by tackling potential weaknesses. Prevent code execution in the uploads folder Prevent login feedback and disable user enumeration Disable XML-RPC Disable directory browsing Username restrictions (block ‘admin’ and public names) and much more.. Vulnerability Detection Get notified when plugins, themes or WP core contain vulnerabilities and need appropriate action. Login Protection Allow or enforce Two-Factor Authentication (2FA) for specific user roles. Users receive a two-factor code via Email. Improve Security with Really Simple Security Pro Protect your site with all essential security features by upgrading to Really Simple Security Pro. Advanced SSL enforcement Mixed Content Scan & Fixer. Detect files that are requested over HTTP and fix them to HTTPS, both Front- and Back-end. Enable HTTP Strict Transport Security and configure your site for the HSTS Preload list. Firewall Really Simple Security Pro includes a performant and efficient WordPress firewall, to stop bots, crawlers and bad actors with IP and username blocks. 404 blocking – Blocks crawlers as they trigger unusual numbers of 404 errors. Region blocking – Only allow/block access to your site from specific regions. Automated and customisable Firewall rules. IP blocklist and allowlist. Security Headers Security headers protect your site visitors against the risk of clickjacking, cross-site-forgery attacks, stealing login credentials and malware. Independent of your Server Configuration, works on Apache, LiteSpeed, NGINX, etc. Protect your website visitors with X-XSS Protection, X-Content-Type-Options, X-Frame-Options, a Referrer Policy and CORS headers. Automatically generate your WordPress-tailored Content Security Policy. Vulnerability Measures When a vulnerability is detected in a plugin, theme or WordPress core you will get notified accordingly. With Vulnerability Measures, you can configure simple but effective measures to make sure that a critical vulnerability won’t remain unattended. Force update: An update process will be tried multiple times until it can be assumed development of a theme or plugin is abandoned. You will be notified during these steps. Quarantine: When a plugin or theme can’t be updated to solve a vulnerability, Really Simple Security can quarantine the plugin. Advanced Site Hardening Choose a custom login URL Automated File Permissions check and fixer Rename and randomize your database prefix Change the debug.log file location to a non-public folder Disable application passwords Control admin creation Disable HTTP methods, reducing HTTP requests Login Protection Secure your website’s login process and user accounts with powerful security measures. Two-Step verification (Email login) 2FA (two factor authentication) with TOTP Passwordless login with passkey login Enforce strong passwords and frequent password change Limit Login Attempts With Limit Login Attempts you can configure a threshold to temporarily or permanently block IP addresses or (non-existing) usernames. You can also throw a CAPTCHA after a failed login (hCaptcha or Google reCaptcha) Access Control Restrict access to your site for specific regions. Add specific IP addresses or IP ranges to the Blocklist or Allowlist. Useful Links Documentation Security Definitions Translate Really Simple Security Issues & pull requests Feature requests Love Really Simple Security? If you want to support the continuing development of this plugin, please consider buying Really Simple Security Pro, which includes some excellent security features and premium support. About Really Simple Plugins Our mission is to make complex WordPress requirements really easy. Really Simple Security is developed by Really Simple Plugins. For generating SSL certificates, Really Simple Security uses the le acme2 PHP Let’s Encrypt client library, thanks to ‘fbett’ for providing it. Vulnerability Detection uses WP Vulnerability, an open-source initiative by Javier Casares. Want to join as a collaborator? We’re on GitHub as well!
Top keywords
- security27×3.54%
- really15×1.97%
- simple15×1.97%
- login14×1.84%
- really simple14×1.84%
- really simple security11×1.44%
- simple security11×1.44%
- wordpress10×1.31%
- vulnerability9×1.18%
- ssl8×1.05%
- site7×0.92%
- website6×0.79%
Simple Page Access Restriction
Did you ever require to show certain pages to logged-in users only? You might have found a variety of WordPress Plugins to do this, but most of them are too complicated and too complex to use. What you might have preferred is a simple and easy-to-use plugin that allows you to restrict access to select WordPress pages to logged-in users only. Look no more; the Simple Page Access Restriction Plugin is what you need! Restricting Access to Select WordPress Pages This plugin offers a simple way to restrict visits to select pages only to logged-in users and allows for page redirection to a defined (login) page of your choice. The plugin focuses on simplicity and is straightforward to use. Defining a Page for Redirection Simply define a (login) page, or a specified URL, in the plugin’s settings where guest users should be redirected to in case they are not logged in upon visiting select pages. Guest users visiting those pages will be redirected to the defined Login Redirect Page – as per the plugin’s setting. Access Restrictions for logged-in Users Only To restrict access to your pages to logged-in users only, simply open the respective page(s) in edit modus in WordPress. You will find a new Meta box inserted by our plugin where you can select to limit access to logged-in users only. This way, you have immediate clarity on which pages should only be visible to logged-in users. The Simple Page Access Restriction Plugin allows you to easily restrict access to certain pages of your users’ account, like a purchase history page, license or download pages to logged-in users only. If you face any problem installing and bringing this plugin to work, please contact us via support, and we will get back to you within 24 hours. What can the plugin be used for? Building My Account Pages: When you try to build My Account Pages, you might have noticed some pages using specific shortcodes (e.g. for Purchase History, Subscriptions, etc.) can still be accessed by Unauthorized Visitors. The pages typically show titles but empty Information below. This looks a bit strange and should not be allowed. Simple Page Access Restriction Plugin can easily restrict select My Account Pages by redirecting visitors to a specified login page instead. Limiting Access for Visitors: This plugin is very useful in restricting visitors on those web pages that must only be reserved for registered and logged-in users. Now with this plugin, you can select any page to restrict and redirect them to a specified login page very easily! Like this plugin? Consider leaving a 5 star review. We also provide additional plugins to enhance your Easy Digital Downloads (EDD) or WooCommerce (WOO) store. Checkout our other plugins: UpsellMaster automatically calculates suitable Upsell products in 1-click for each product. EDD Product Versions enables product versioning for all of your products and allows you to (1) generate additional revenues from selling updated download versions (existing customers can even be offered a discount for upgrading their products) as an alternative to selling subscriptions and/or (2) simply add a comprehensive archive of old download versions for easy reference to your customers. Plugin increases the monetization and customer retention of your webshop. Freelancer Marketplace plugin will help you build a freelancer marketplace for WordPress and Easy Digital Downloads. EDD Advanced Shortcodes provides additional shortcodes to enhance the functionality of your EDD store. EDD Landing Pages for Categories and Tags adds a text editor and an additional text field to your download category and tag pages. EDD Mailchimp Abandoned Cart WordPress Plugin this plugin triggers email series in Mailchimp when customers abandon their carts. The plugin allows for recovering of lost sales and improves conversion. EDD FES Vendor Statistics adds a page to the Vendor Dashboard to make it easier for the vendors to understand and monitor monthly commissions earned and payout status on their own. EDD Requests this plugin helps you to trigger more engagement with your visitors by offering them a contact button on the download product and author page where they can quickly submit requests for assistance and upload attachments. Requests are added on tracking lists in the vendor and admin dashboards to ensure systematic follow-ups. EDD Custom Payment Status this plugin allows you to create custom payment statuses, which will be included in Earnings & Sales Reports. EDD Mailchimp Vendor Email Trigger this plugin allows triggering an email series in Mailchimp upon registration of new vendors.