Better securing your site with wp-config.php

 * Turn OFF file editing
 * You can actually stop any user from having access to edit the files in the 
 * WordPress admin area, which means the only way to change the files would be 
 * to upload the files through FTP.
define( 'DISALLOW_FILE_EDIT', true);

Add this to your /wp-config.php file below the line define(‘WPLANG’, ”); (just to make things look cleaner).

What does this do?

It turns file editing from inside the login area of WordPress OFF. In other words, you will need to edit files from ftp (which you should be doing anyway!). This is useful for preventing users from accidentally editing plugin and theme files and can also prevent hackers from doing the same.


Leave a Reply