A carefully selected security suite for WordPress that combines only the most effective methods of guarding against hackers and other common attacks. Join our FREE Facebook group for support! Worth a 5-star review? Thank you! Plugin Homepage Plugin GitHub Our related OSS projects: SlickStack (LEMP stack automation) WP Lite boilerplate Starter Theme The Long Version Bundles all of the following in one-click activation: Disable Empty Trash 1.0.0 Disable Post Via Email 1.0.0 Disable XML-RPC 1.0.8 Force Strong Hashing 1.0.5 Header Cleanup 1.1.1 (more modules coming soon…) …if you wish to disable a certain module, use the below defined constants in your wp-config.php file. Note: these defined constants are ONLY supported within Speed Demon. If you have one of these installed as a standalone plugin already, that function WILL REMAIN ENABLED until you disable the standalone version of the function. For example, if you disable Index Autoload in Speed Demon using a defined constant, but you still have our other Index Autoload plugin installed + enabled, then that function will continue to function until you disable or delete the standalone Index Autoload plugin. This allows for web hosts or other agencies to force-control their WordPress environment using our standalone plugins. Below are all included sub-plugins along with their default values: define(‘DISABLE_EMPTY_TRASH’, ‘true’); define(‘DISABLE_POST_VIA_EMAIL’, ‘true’); define(‘DISABLE_XML_RPC’, ‘true’); define(‘FORCE_STRONG_PASSWORDS’, ‘true’); define(‘HEADER_CLEANUP’, ‘true’); Developer notes 1.0.0: It passes the PHP 7 compatibility tests It shares the Speed Demon initialization and verification modules mechanism. There are only two new modules (Disable Empty Trash and Force Strong Hashing); the other modules have been reused from Speed Demon. Doing tests having activated the Speed Demon plugin does not show any issue, both consult the plugin constants and work as expected. The config.php file is a copy of the existing of Speed Demon config.php file Compatibility This plugin has been designed for use on LEMP (Nginx) web servers with PHP 7.0 and MySQL 5.7 to achieve best performance. All of our plugins are meant for single site WordPress installations only; for both performance and security reasons, we highly recommend against using WordPress Multisite for the vast majority of projects. Note: Any WordPress plugin may also be loaded as “Must-Use” by using the Autoloader script within the mu-plugins directory. Defined Constants define(‘DISABLE_NAG_NOTICES’, true); define(‘DISABLE_EMPTY_TRASH’, ‘true’); define(‘DISABLE_POST_VIA_EMAIL’, ‘true’); define(‘DISABLE_XML_RPC’, ‘true’); define(‘FORCE_STRONG_PASSWORDS’, ‘true’); define(‘HEADER_CLEANUP’, ‘true’); Plugin Features Premium Version: Speed Demon Settings Page: No PHP Namespaces: Yes Object-Oriented Code: Yes Includes Media (images, icons, etc): No Includes CSS: No Database Storage: Yes Transients: No Options: Yes Table Data: Yes Creates New Tables: No Database Queries: Backend Only Query Types: Options API Multisite Support: No Uninstalls Data: Yes Nag Notices This plugin generates multiple Admin Notices in the WP Admin dashboard. The first is a notice that fires during plugin activation which recommends several related free plugins that we believe will enhance this plugin’s features; this notice will re-appear approximately once every 6 months as our code and recommendations evolve. The second is a notice that fires a few days after plugin activation which asks for a 5-star rating of this plugin on its WordPress.org profile page. This notice will re-appear approximately once every 9 months. These notices can be dismissed by clicking the (x) symbol in the upper right of the notice box. These notices may annoy or confuse certain users, but are appreciated by the majority of our userbase, who understand that these notices support our free contributions to the WordPress community while providing valuable (free) recommendations for optimizing their website. If you feel that these notices are too annoying, than we encourage you to consider one or more of our upcoming premium plugins that combine several free plugin features into a single control panel, or even consider developing your own plugins for WordPress, if supporting free plugin authors is too frustrating for you. A final alternative would be to place the defined constant mentioned below inside of your wp-config.php file to manually hide this plugin’s nag notices: define('DISABLE_NAG_NOTICES', true); Note: This defined constant will only affect the notices mentioned above, and will not affect any other notices generated by this plugin or other plugins, such as one-time notices that communicate with admin-level users. Inspiration n/a Free Plugins 404 To Homepage Autoloader CloudFlare Custom Functions Delete Expired Transients Disable Admin-AJAX Disable Author Pages Disable Cart Fragments Disable Embeds Disable Emojis Disable Empty Trash Disable Image Compression Disable jQuery Migrate Disable Search Disable WooCommerce Status Disable WooCommerce Styles Disable XML-RPC Download Media Download Plugin Download Theme Duplicate Post Enable Subtitles Export Database Facebook Pixel Force HTTPS Force Strong Hashing Google Analytics Header Cleanup Index Autoload Maintenance Mode Profile Change Alerts Remove Category Base Remove Query Strings Security Guard Server Status Speed Demon StatCounter View Defined Constants Virtual Robots.txt Premium Plugins Members Only Dunning Master Genghis Khan Great Migration Security Guard SEO Genius Speed Demon Special Thanks Alex Georgiou Automattic Brad Touesnard Daniel Auener Delicious Brains Greg Rickaby Matt Mullenweg Mika Epstein Mike Garrett Samuel Wood Scott Reilly Jan Dembowski Jeff Starr Jeff Chandler Jeff Matson Jeremy Wagner John James Jacoby Leland Fiegel Paul Irish Rahul Bansal Roots rtCamp Ryan Hellyer WP Chat WP Tavern Disclaimer We released this plugin in response to our managed hosting clients asking for better access to their server, and our primary goal will remain supporting that purpose. Although we are 100% open to fielding requests from the WordPress community, we kindly ask that you keep the above-mentioned goals in mind… thanks!