WP Cerber Security Hardening Options

In this article:

With WP Cerber Security having so many features, it can replace other single-purpose WordPress security plugins you may have installed. It can set up a maintenance page for when your website is under construction. It has an access control list (ACL) and custom email notifications.

WP Cerber Security includes many other features as smaller “hardening” options. Below we’ll cover how to enable these settings and what they accomplish.

Harden WordPress

  1. Log in to WordPress.
  2. On the left, hover over WP Cerber and click Dashboard.
  3. Click the Hardening tab.
  4. Toggle green all hardening options that wouldn’t negatively affect your website.
  5. Once your done, Save Changes.

Hardening Options

The list below summarizes the possible hardening functions on this page:

  • Stop user enumeration – Redirect requests for author username queries to a 404 page
  • Protect admin scripts – Block malicious access to load-scripts.php and load-styles.php
  • Disable PHP in uploads – Block the ability to run PHP scripts from your media folder
  • Disable PHP error displaying – Prevent displaying errors which show information that makes your website easier to hack
  • Disable XML-RPC – Disables the Remote Procedure Calling protocol (recommended if you don’t use Jetpack) without you manually editing the .htaccess file
  • Disable feeds – Deny access to the RSS feed URLs if you don’t have a WordPress-powered podcast or encourage visitors to subscribe to your RSS feeds
  • Stop user enumeration – Block REST API requests to users’ data
  • Disable REST API – Restrict REST API usage to those specified within the Allow these namespaces text field
  • Logged in users – Allow all logged in users to use REST API
  • Allow REST for these roles – Restrict REST API usage to specified roles (if Logged in users is toggled gray) – super admin (network / multisite), administrator, editor, author, contributor, subscriber
  • Allow these namespaces – Add namespaces for active plugins – e.g. contact-form-7, jetpack
WP Cerber Security Hardening Options
Harden your WordPress Website without breaking anything

Harden your Server

There are many hardening options for our Shared Hosting and Nginx-powered WordPress Hosting customers:

VPS Hosting includes more hardening features via WebHost Manager (WHM):

Have any further questions about security? Contact our 24/7 Live Support for general questions or Sucuri for in-depth security solutions.

Was this article helpful? Let us know!