There are many reasons why we should change the PHP version as there is a possibility that themes, plugins and widgets might not be supported by the current PHP version. There is also a possibility that your website might have been developed in 7.0, but the default PHP is 7.4 in that case your website might face many issues. In such cases, you need to upgrade the PHP version to 7.4 so that the website can work.
You will have to downgrade the PHP version if your website is not supporting the latest version, suppose your website is built on the PHP version of 7.2 but here at HostingRaja we provide the latest version of 8.0 in that scenario you might face problems in running your website. Hence we will downgrade the PHP version of WordPress hosting so that your website can run smoothly.
In each upgraded version many of the bugs have been fixed which were previously there in the old version or while in the process of website transfer in the Hence you can upgrade to the latest version so as to keep the website run smoothly.
we are supporting PHP version,
PHP version 5.6
PHP version 7.0
PHP version 7.1
PHP version 7.2
PHP version 7.3
PHP version 7.4
PHP version 8.0
Login to Cpanel.
Click on "File Manager" and open the installations.php file under the .softaculous folder.
Copy the content and paste it in the https://www.unserialize.com/ website input box and click on the "unserialize" button, this will give the result of the file content in the array format.
Identify the particular array of the domain and remove the array from the installations.php file
In 1st line of the installations.php, the WordPress installation count is mentioned. For example, a:4 where "4" is the WordPress installation count.
Subtract by 1 the count of the WordPress installation and save the file.
Still facing the same issue rise ticket to softaculous support team for a solution.
Quick WordPress Migration With Migration Guru Plugin
This is one of the easy & quick way to migrate your wordpress from one setup to other. Example, If you want to migrate your wordpress from other service provider, you can follow the steps mentioned here or you can contact our support team, We will be very happy to do it.
Kindly install the Migration guru Plugin from your Old Wordpress dashboard (From where you want to migrate the wordpress).
After that provide the New server FTP credentials to the Migration tool. After providing the FTP credentials click the Migrate button.
Once you click the Migrate Button, the migration starts. This Plugin's help to migrate the completed WordPress account from one server to another server.
NOTE: Before starting the migration, make sure that, Your server or hosting account is preinstalled with WordPress.
To Start migration, perform the following steps:
1. Login your old wp-admin dashboard, Click the plugin section and then select Add new option.
2. Search Migrate Guru: Migrate & Clone WordPress Free keyword section.
2. After installing plugin click the migration guru option in the left sidebar. provide your Email Id Once the migration gets completed your get notification to that mail id.
3. After providing the mail Id, agree with teams and conditions then, Click the Migration Site option.
4. Her your want Select the FTP option for the migrated tools
5. After selecting the FTP option, you want to provide FTP credentials.
5. After providing the FTP credentials click the Migrate option.
We have seen many website owners are worrying about the security of WordPress. Whatever you see the security tips online, most of them are outdated and we have worked on the latest tips to secure your WordPress website.
As we know WordPress is one of the most popular and widely used content management system available these day among website users. With the increase usage of this CMS, the reliability and the security of WordPress has become more hardened over time.
There are many security standards wordpress users deploy to prevent and protect a WordPress based website from hackers. At HostingRaja we have a team of security experts and they have collected some important data and information to present you WordPress users with most reliable and best tips to improve the security and protection of your WordPress website and by using these tips they can prevent their wordpress hosting from being hacked by hackers.
These days everyone knows , including hackers and normal website users that admin is the mostly used username. You should not make the life of hackers so easier. Once you create WordPress website for you, it is highly recommended to choose a different username for it and try to start with capital letters. Once you create the user for your your WordPress give all rights to that user and delete the old user from your account.
This security tip many sound really basic to website owners, but in actual many people are still using passwords for their accounts such as 12345, admin123 or qwerty etc. By using this kind of password for your WordPress website, you are inviting hackers to hack your website. So it is highly recommended to choose a highly complicated password that has mixture of numbers, symbols, upper & lower characters and try to make it at least 15 characters long.
WordPress has huge library of plugin and Wordpress users can perform almost every task using these plugins. WordPress plugins can be considered as treasure for the website owners and everyone wants to use. At present WordPress has more than 50000 plugins. As a WordPress website owner you should be aware that a plugin to download and install on your website might sometime harm it.
In order to prevent it , you should always download plugin from trusted resources and always check for comments or users reviews and also check if support is exists or not.
DO NOT INSTALL A WORDPRESS PLUGIN IF YOU DONT NEED THEM. Generally everyone (website admin) is tempted to try and install all the available plugins from WordPress. Plugins are the root cause of many security issues in wordpress. INSTALL ONLY THE REQUIRED PLUGINS. Installing more plugins will leads to website loading slow.
The team of security expert at WordPress takes the security related tasks quite seriously. WordPress expert take care of your websites with every possible patch and update. Each and every new update boost your website security, fixes the bugs (if any) and increase the website performance. So it is always recommended to keep your WordPress updated with latest environment.
The in-built tool available inside the WordPress dashboard, known as plugin and theme editor is one of the wonderful tool, although if you are not using it then it is better to disable due to the security reasons. In case any hacker hacks your website, they can easily destroy your whole website by changing the code of it.
You can easily disable or remove the plugin and theme editor by inserting one single line code:
define( ‘DISALLOW _FILE_EDIT’, true); to wp-config.php and .hta
It is always recommended to create backups of your website on regular basis and you should not depend upon someone else including your WordPress website hosting provider to take backup your website. You can take backup manually or you can use some plugins to do it.
You can secure your WordPress website using Firewall plugins and there are some good plugins available in WordPress library. For example “All In One WP Security & Firewall” plugin. This plugin will take your website security and protection to a completely new heights. This plugin minimizes security related uncertainty by looking for suspicious activities and by deploying and executing the newest recommended WordPress security techniques.
Make sure that you delete unused and non-functioning versions of WordPress from your server. Any type of unused WordPress themes, plugins, widgets or any other files whether they are not in use or not in active mode should be deleted from your server. You should keep one simple rule in your mind “Delete Delete and Delete” all the unwanted and unused installations.
In WordPress, the default table prefix is wp_ and these days everyone including hackers are also aware of that. SQL injection attacks can be easily perform with the default table prefix because it is easier to identify it. Changing the WordPress table prefix is highly recommended to prevent SQL injection attacks. You can do this by using any WP security plugin form example SSH SFTP Updater Support plugin.
Inactive or unused user accounts in your WordPress can be a security threat for your WordPress based website. The only thing you need to do is remove all the inactive or unused accounts from WordPress.
Steps you need to follow to do this:
Login to your WordPress dashboard
Hit ‘Users’
You will be redirected to the page where all users will be listed
Remove the the one which is inactive or unused.
SSH2, also Secure File Transfer Protocol, or SFTP based connections are much more secure than normal FTP connection to upgrade and update your WordPress. The shell based technique highly secure because it encrypts all the data transfer. You can make use of “SSH SFTP Updater Support” plugin available in WordPress plugins directory and it use phpseclib. Additionally it is one of the best option to make use of SSH (Secure Shell), SFTP (Secure File Transfer Protocol), RSA and X.509 in PHP.
One of the most important file available on your server is wp-config.php and it is available in the root directory of your website. Wp-config.php usually contains the information about your WordPress website. Protecting wp-config.php file means you actually securing the core part of your website because once you secure it, it becomes more hard for the hackers to break and steal the information from your website because it becomes unreachable to those kind of hackers. As a user of WordPress site you can secure your wp-config.php by putting the following code in it:
A user can secure wp-config.php by simply placing the below mentioned code in the root directory.
|
# protect wp-config.php <files wp-config.php> Order deny,allow Deny from all </files> |
Having a SSL certificate installed on your website is another excellent option for the WordPress users to protect the websites admin panel. Having SSL certificate installed on your website makes it more complicated for the hackers and security stealers to cheat and steal your sensitive information and it also helps to gain better rank in Google search.
SSL is must for every website these days because recently Google has officially announced that it will use https as a ranking signal, so if your website is having SSL it will be awarded with top rankings in Google search results. Having SSL security implemented on your website allows you to login securely through HTTPS. You can get SSL certificate for free of cost from us.
The main use of .htaccess file is to specify the WordPress security controls for a specific directory of files. In order to protect your WordPress website or blog from hackers, all you have to do is put the following code in the .htaccess files of your registered domain.
# STRONG HTACCESS PROTECTION</code>
<Files ~ “^.*.([Hh][Tt][Aa])”>
order allow,deny
deny from all
satisfy all
</Files>
The number of the WordPress version of your website is available into the source code of it and it can be easily targeted by the hackers. If any hacker find the version number of your site they can easily create a perfect attack technique to hack it. To prevent this you can use “Remove Version” plugin of WordPress. This plugin remove the version number of your site from everywhere it is required like Meta, Javascript, RSS and CSS in order to protect your website.
As a WordPress user you can easily protect your website from script injection. All you have to do is place the following code into your .htaccess file.
|
# protect from sql injection Options +FollowSymLinks RewriteEngine On RewriteCond %{QUERY_STRING} (<|%3C).*script.*(>|%3E) [NC,OR] RewriteCond %{QUERY_STRING} GLOBALS(=|[|%[0-9A-Z]{0,2}) [OR] RewriteCond %{QUERY_STRING} _REQUEST(=|[|%[0-9A-Z]{0,2}) RewriteRule ^(.*)$ index.php [F,L] |
The above code will secure your website from undesirable changes of _REQUEST and/or GLOBALS.
Blocking the number of failed login tries mainly intercepts the website users from utilizing the brute force methods on a website based on Wordpress. Brute force attack is an effort to get the websites password through implementing each and every possible way. In order to block failed login attempts and complement extra security on your website you can implement two-factor authentication as well as HTTP authentication.
As a user of WordPress the best thing to reduce the risks of login attempts by hacker is to modify or delete the default admin account or change the username and password of your account and also you can create new account with tough username and password. Try to make your password as difficult as possible.
Search engines like Google, mainly crawl all the pages of your website and index all the contents placed on those pages unless they are not informed to not to do that. Keep in mind that as a website owner you should not allow indexing of your admin area and other sensitive parts of your website. One of the ideal ways to stop crawlers from indexing the admin part of your website is by creating robot.txt file and place the following code in it:
|
# User-agent: * Disallow: /cgi-bin Disallow: /wp-admin Disallow: /wp-includes Disallow: /wp-content/plugins/ Disallow: /wp-content/cache/ Disallow: /wp-content/themes/ Disallow: */trackback/ Disallow: */feed/ Disallow: /*/feed/rss/$ You can put whatever you want to avoid from block inside the robot.txt file by following Disallow:*/file name/ |
These are few of the most important tips you can use to secure your WordPress website.
If you need more help, feel free to contact our WordPress experts via live chat, phone and Raising ticket today.
WordPress is defined as one of the largest and greatest CMS in the world. Nowadays, many people prefer WordPress as an excellent platform to build their website, particularly for startup companies.
WordPress Hosting is a type of web hosting synergy that is specially optimized to work with websites developed through WordPress. It is possibly the most convenient and also the most famous CMS in the market. Websites that are built on the WP platform have some unique features and characteristics.
Usually, this occurs when a plugin or an active theme is not allowing WordPress to properly execute the code in the footer area of your website. This code is triggered with the function <?php wp_footer(); ?>.
When a theme is blowing this code, or a plugin does something that messes it up, then you will end up with a missing WordPress admin bar issue
Step - 1: The most important thing is to login before troubleshooting the problem because the admin bar will be displayed only after you logged in properly.
You will be able to do this by navigating to your login URL also. This is the website address usually generated by adding /wp-admin at the end of your website URL. Once you are logged in, you will be redirected to your website’s WordPress dashboard, otherwise, you will see the WordPress login screen.
Or log in to WordPress website hosting cPanel, there you should be navigating to /home/username/public_html/wp-config.php
Step - 2: You will find the below code in the wp-config.php file
These lines had been added to wp-config file:
/** Absolute path to the WordPress directory. */
if ( !defined(‘ABSPATH’) )
define(‘ABSPATH’, dirname(__FILE__) . ‘/’);
/** Sets up WordPress vars and included files. */
require_once(ABSPATH . ‘wp-settings.php’);
//Disable File Edits
define(‘DISALLOW_FILE_EDIT’, True);
Step - 3: And there below you will find one line.
define(‘DISALLOW_FILE_EDIT’, True);
Step - 4: It will be True and you need to change it to false.
define(‘DISALLOW_FILE_EDIT’, false);
Page 1 of 2