Include security headers in the .htaccess
To add HTTP response headers in WordPress
WordPress does more than 38.8% of all websites on the internet. Yes - more than one in four websites you visit is likely powered by WordPress. • WordPress.org , often as self-hosted WordPress is the free open source WordPress software that you can install on your own web host to create a 100% custom website.• WordPress.com is a for-profit, paid..., you just need to add the following lines to your .htaccesshtaccess is a configuration file that controls the web server on which your website is run. Additional Information: https://kinsta.com/de/wissensdatenbank/wordpress-htaccess-datei/ mehr erfahren file.
First, log in to your WordPress WordPress does more than 38.8% of all websites on the internet. Yes - more than one in four websites you visit is likely powered by WordPress. • WordPress.org , often as self-hosted WordPress is the free open source WordPress software that you can install on your own web host to create a 100% custom website.• WordPress.com is a for-profit, paid... hosting account and go to the root folder of your WordPress WordPress does more than 38.8% of all websites on the internet. Yes - more than one in four websites you visit is likely powered by WordPress. • WordPress.org , often as self-hosted WordPress is the free open source WordPress software that you can install on your own web host to create a 100% custom website.• WordPress.com is a for-profit, paid... site from there. Then search for the .htaccesshtaccess is a configuration file that controls the web server on which your website is run. Additional Information: https://kinsta.com/de/wissensdatenbank/wordpress-htaccess-datei/ mehr erfahren file and edit it.
As this is a (.) file, it may be hidden. If you cannot find the .htaccesshtaccess is a configuration file that controls the web server on which your website is run. Additional Information: https://kinsta.com/de/wissensdatenbank/wordpress-htaccess-datei/ mehr erfahren file in the root folder, go to the settings and click on “Show hidden files”.
Now insert the following line at the end:
Header set Strict-Transport-Security "max-age=31536000" env=HTTPS Header set X-XSS-Protection "1; mode=block" Header set X-Content-Type-Options nosniff Header always append X-Frame-Options SAMEORIGIN Header referrer policy: no-referrer-when-downgrade
After adding, save the file and your security headers are integrated.
Dieser Beitrag ist auch verfügbar auf: Deutsch (German)