Lets Make It EasyLets Make It Easy
    Lets Make It EasyLets Make It Easy
    • Home
    • Related To PC
      • Computer Tips & Tricks
      • General Tips
      • Game Tricks And Fixes
      • Windows Tricks
    • Build a PC

      Best Gaming PC Build Under ₹80000 in India with an Amazing Performance (60 FPS)(4K,2K,1080p FHD)

      December 9, 2022

      Best Gaming PC Build Under ₹90000 in India with Stunning Performance (60 FPS)(4K,2K,1080p FHD)

      December 9, 2022

      Best Gaming PC Build Under ₹100000 (1 Lakh) in India with an Outstanding Performance (60 FPS)(4K,2K,1080p FHD)

      December 9, 2022

      Best Gaming Laptops Under 50000 in India with Super Cool Performance (60 FPS)(2K,1080p FHD)

      December 9, 2022

      Best AMD Threadripper Processors That You Need to Buy (2021) | Top Performing AMD Ryzen Threadripper Processors List (2021)

      December 9, 2022
    • Blogger Tips

      How To Create a Perfect Custom Robots.txt File in Blogger?

      January 11, 2023

      How to Disavow Backlinks in Google Search Console?

      December 9, 2022

      How to Find and Remove the Bad/Toxic/Spammy Backlinks that affects your SEO Badly from Google?

      December 9, 2022

      How to Verify Google Search Console for WordPress Using DNS Verification? | Google Search Console DNS Verification ( Domain )

      December 9, 2022

      Google Search Console : 4 Simple Methods To Verify your Site Ownership For WordPress and Blogger

      December 9, 2022
    • WordPress Tips

      How to Hide/Remove Theme Name in WordPress?

      March 7, 2023

      How to Repair a Corrupted MySQL Database Table?

      March 2, 2023

      How to Get Quick Adsense Approval for WordPress Blog/Website?

      February 27, 2023

      How to Update/Clear Google Amp Cache?

      January 28, 2023

      How to Get a Free Domain and Hosting for Educational/Testing Purposes?

      January 25, 2023
    • Youtube Tips And Tricks
    • More Topics
      • Andriod Tricks
      • Mobile Tricks
      • Publisher’s Spot
      • Internet Tricks
    Lets Make It EasyLets Make It Easy
    Home » How to Add HTTP Security Headers in WordPress For Both Apache & Nginx Servers? | How to Fix the Missing Security Headers Issue?
    Wordpress Tips

    How to Add HTTP Security Headers in WordPress For Both Apache & Nginx Servers? | How to Fix the Missing Security Headers Issue?

    Vasantharaj R NBy Vasantharaj R NDecember 9, 2022Updated:December 9, 2022No Comments3 Mins Read
    How to Add HTTP Security Headers in Wordpress For Both Apache & Nginx Servers? | How to Fix the Missing Security Headers Issue?

    Hi Guys, Today I am Going to Show You how to Add HTTP Security Headers in WordPress For Both Apache & Nginx Servers? How to Fix the Missing Security Headers Issue?

    Check Out This: How To Block AdBlocker on Your Blogger 2020? | Block Adblock Blockers 2020

    Hi Guys, Today I’m Going tell about Adding Security Headers For Worpdress Via Plugin and Manually.

    Use these Two Websites to Check whether the HTTP Security Headers are Correctly Working Or Not.

    https://securityheaders.com/

    https://sitecheck.sucuri.net/

    Steps For Checking Security Headers for a Website Easily?

    Step 1: Goto Sucuri Site Check and Enter Your Website.

    Trending
    How to Fix Command Prompt Opens And Closes Immediately in Windows 10? | Why CMD.exe Closes Immediately Whenever I Tried to Open it?

    Step 2: Wait for the Results and Navigate down to Hardening Improvements Section and Check Out the Fixes.

    How to Add HTTP Security Headers in WordPress For Both Apache & Nginx Servers? | How to Fix the Missing Security Headers Issue?

    *You can Also Use the Securityheaders to Check for the HTTP Security headers.

    Steps For How to Add HTTP Security Headers in WordPress For Both Apache & Nginx Servers? How to Fix the Missing Security Headers Issue?

     

    Method 1:  Using Free & Paid Plugins 

    Free Plugins 

    1.Defender Security By WPMU DEV,

    2.HTTP headers to improve web site security By Carl Conrad

    3.GD Security Headers By Milan Petrovic

    *Free Plugins Are Freely Available at WordPress.org Plugins Store.

    Paid Plugins 

    1.WebARX Security [ Free But Need to be Buy a Simple Plan to Use Hardening Option In Firewall ]

    2.Sucuri WordPress Security

    1.Tutorial  for Adding Security Headers Via Defender Plugin 

     

    Step 1: Go to Plugins and Add New Plugin and Search for Defender Plugin and Install it.

    Step 2: Navigate to Advanced Tools and Look for Security Headers and then Select the Configure Button.

    Step 3: Now Enable the All Security Headers and Click Save.

    How to Fix the Missing Security Headers Issue?

    2.Tutorial  for Adding Security Headers Via WebARX Plugin 

    Step 1: Goto WebARX website Sign Up and Add your Website.

    Step 2: Download the WebARX Plugin from their Site and Add it to your WordPress Via Add New Plugin which in the Plugin Section.

    Step 3: After Installing the WebARX Navigate to Settings and Select the Security Options.

    Step 4: Now Move Down to .htaccess Features and Turn On the Add Security Headers Feature and Save the Settings.

     

    How to Add HTTP Security Headers in WordPress For Both Apache & Nginx Servers?

     

    Method 2:  Adding Security Headers Manually

    Step 1: First of all Go to Your File Manager Via C-Panel or FTP.

    Step 2: Right-click .htaccess, Click Edit Button.

    Step 3: Now Just Add the Below Given Code into the .htaccess file and click Save.

     

    For Apache Server Users, You Must Try This Code

    <IfModule mod_headers.c>
       Header set Referrer-Policy "strict-origin-when-cross-origin"
       Header set X-XSS-Protection "1; mode=block"
       Header set X-Content-Type-Options "nosniff"
       Header always append X-Frame-Options "SAMEORIGIN"
       Header set Strict-Transport-Security "max-age=31536000"
       Header always set Permissions-Policy fullscreen=* 
       Header unset X-Powered-By
    </IfModule>	
    

    For Nginx Server Users, You Must Try This Code

    add_header X-Frame-Options SAMEORIGIN;
    add_header X-Content-Type-Options nosniff;  
    add_header X-XSS-Protection "1; mode=block";  
    add_header Strict-Transport-Security "max-age=31536000";
    add_header Referrer-Policy "strict-origin-when-cross-origin";
    add_header always set Permissions-Policy fullscreen=* :
    

    MOST IMPORTANT NOTE –  Always Set the expose_php Option to “Off” 

    This Option Can Be Seen under the Php Configurations.

     

    How to Check the HTTP Security Headers Working Properly or not?

     

    *Recommended Way to Check – Use the Securityheaders to Check the HTTP Security headers which is working or not.

     

    *Alternative Way to Check – Goto Sucuri Site Check and Enter Your Website and Check the Hardening Improvements Section.

    That’s It! You’re Done Man! 

    @@@ Leave Comments !!! @@@

    Vasantharaj R N

    Basically an Instrumentation Engineer But Very much Interested in Blogging. I'm a Passionate Blogger and an Expert in Search Engine Optimization And Always Looking Forward to Learn New Things. I Would Fix & Provide Solution to the Most Common Issues Related to PC,Laptops,Mobiles,OS, Hardwares and Softwares.

    Related Posts

    How to Hide/Remove Theme Name in WordPress?

    March 7, 2023

    How to Repair a Corrupted MySQL Database Table?

    March 2, 2023

    How to Get Quick Adsense Approval for WordPress Blog/Website?

    February 27, 2023

    How to Update/Clear Google Amp Cache?

    January 28, 2023
    Add A Comment

    Leave A Reply Cancel Reply

    Lets Make It Easy
    Copyright © 2021 Letsmakeiteasy LLC. All Rights Reserved. Letsmakeiteasy® is a registered trademark.WordPress hosting by Hostinger | Crafted With Love | Designed By Vasanth

    Type above and press Enter to search. Press Esc to cancel.