Title: UndaSecure
Author: asantosundanet
Published: <strong>November 13, 2017</strong>
Last modified: April 6, 2018

---

Search plugins

This plugin **hasn’t been tested with the latest 3 major releases of WordPress**.
It may no longer be maintained or supported and may have compatibility issues when
used with more recent versions of WordPress.

![](https://ps.w.org/undasecure/assets/icon-256x256.jpg?rev=1764790)

# UndaSecure

 By [asantosundanet](https://profiles.wordpress.org/asantosundanet/)

[Download](https://downloads.wordpress.org/plugin/undasecure.1.2.16.zip)

 * [Details](https://mri.wordpress.org/plugins/undasecure/#description)
 * [Reviews](https://mri.wordpress.org/plugins/undasecure/#reviews)
 * [Development](https://mri.wordpress.org/plugins/undasecure/#developers)

 [Support](https://wordpress.org/support/plugin/undasecure/)

## Description

This plugins adds markers in /.htaccess and /wp-content/uploads/.htaccess to secure
against attacks and optimize Apache configurations for SEO propouses.

Sets protection in ROOT/.htaccess for wp-config.php, .htaccess, xmlrpc.php, wp-cron.
php.
 Sets block author scans in ROOT/.htaccess.

Sets GZIP/DEFLATE in ROOT/.htaccess.
 Sets Header add Access-Control-Allow-Origin
in ROOT/.htaccess. Sets ExpiresActive in ROOT/.htaccess. Sets Header unset Etag 
in ROOT/.htaccess.

Create or add to /wp-content/uploads/.htaccess protection for files only.

Removes files on each WP update to prevent exposing WP version number (readme.html,
wp-config-sample.php, license.txt).

## Reviews

There are no reviews for this plugin.

## Contributors & Developers

“UndaSecure” is open source software. The following people have contributed to this
plugin.

Contributors

 *   [ asantosundanet ](https://profiles.wordpress.org/asantosundanet/)

[Translate “UndaSecure” into your language.](https://translate.wordpress.org/projects/wp-plugins/undasecure)

### Interested in development?

[Browse the code](https://plugins.trac.wordpress.org/browser/undasecure/), check
out the [SVN repository](https://plugins.svn.wordpress.org/undasecure/), or subscribe
to the [development log](https://plugins.trac.wordpress.org/log/undasecure/) by 
[RSS](https://plugins.trac.wordpress.org/log/undasecure/?limit=100&mode=stop_on_copy&format=rss).

## Changelog

#### 1.2.15

added new banned extensions in uploaded files

#### 1.2.14

Added mp3 to secure uploaded files

#### 1.2.13

Added protection for wp-cron.php. Added “remove_query_arg” to JS and CSS files

#### 1.2.12

Removes ‘wp-config-sample.php’ and ‘license.txt’ on each WP update.

#### 1.2.11

Removes ‘readme.html’ on each WP update.

#### 1.2.10

Improved Update Hook

#### 1.2.9

Added Update Hook

#### 1.2.8

Define global vars to locate include files

#### 1.2.7

Deny PHP file execution on wp-content/uploads

#### 1.2.6

Files renamed and deleted

#### 1.2.5

Include files moved to subfolders.

## Meta

 *  Version **1.2.16**
 *  Last updated **8 years ago**
 *  Active installations **10+**
 *  WordPress version ** 4.0 or higher **
 *  Tested up to **4.9.29**
 *  Language
 * [English (US)](https://wordpress.org/plugins/undasecure/)
 * Tags
 * [optimization](https://mri.wordpress.org/plugins/tags/optimization/)[secure](https://mri.wordpress.org/plugins/tags/secure/)
 *  [Advanced View](https://mri.wordpress.org/plugins/undasecure/advanced/)

## Ratings

No reviews have been submitted yet.

[Your review](https://wordpress.org/support/plugin/undasecure/reviews/#new-post)

[See all reviews](https://wordpress.org/support/plugin/undasecure/reviews/)

## Contributors

 *   [ asantosundanet ](https://profiles.wordpress.org/asantosundanet/)

## Support

Got something to say? Need help?

 [View support forum](https://wordpress.org/support/plugin/undasecure/)