ONE Cloudflare Rule to Block All WordPress Comment Spam

Here's an easy way to block all WordPress comment spam using a single Cloudflare firewall rule. Related to Cloudflare and WordPress Comments: How to Implement Infinite Threaded Replies in WordPressHow to Disable Links in WordPress CommentsHow to Fix Cloudflare Blocking REST API Requests … [Read more...]

[Fix] Cloudflare Blocking REST API Requests

Sometimes, Cloudflare blocks REST API requests and prevents WordPress from working correctly. I most commonly encounter this problem when the WordPress Gutenberg editor throws the following message: Updating failed. The response is not a valid JSON response. Cloudflare Blocking REST API … [Read more...]

“HTTPS Not Evaluated” Error Can Fix Itself

After I published a post yesterday, I got the following error in the Google Search Console (GSC): "HTTPS not evaluated", under the "HTTPS is invalid and might prevent it from being indexed" link as shown here: HTTPS is Invalid and might prevent it from being indexed After clicking the … [Read more...]

4 Most Secure Web Hosting Providers

Here are the top 4 most secure web hosting providers. Most web hosts don't include free security. Disclaimer: I get a commission when you buy through my site, and your clicks let me buy solid gold thrones :) A2 Hosting 9.9 A2 Hosting is the most secure web hosting … [Read more...]

Hostgator Security: It’s Not Enough

Even though it provides basic security for its servers, Hostgator doesn't protect individual accounts from hacking attempts and malware. You must either purchase the SiteLock add-on or subscribe to a 3rd party security solution. These add to your hosting costs, cutting into the deep discounts … [Read more...]

How to Fix cPanel AutoSSL Errors Under a Cloudflare Proxy

One day, I woke up to find that all my Let's Encrypt SSL certificates had expired. How was this possible? I had been using AutoSSL or Let's Encrypt for years and they were renewing without any issues. So I went into my web hosting panel and tried to renew them manually, but they all failed. … [Read more...]

Convert WordPress to HTTPS with SSL for Free

You already know the importance of HTTPS. Google looks more favorably on SSL enabled sites, and you also gain credibility by having the "lock" icon at the top of the address bar next to your URL. There's just one catch - SSL certificates cost money. And the free ones are time limited, or have some … [Read more...]

Here’s How Hackers Can Find your WordPress Username

So you've taken pains to hide your WordPress login and admin screens from hackers. You've changed your default usernames and removed all mention of them from your theme. You're safe right? There's no way that hackers can find your login pages, let alone your usernames. Wrong! Unless you take … [Read more...]

WP-Tweaks