Joel Runion

How to Disable File Editing

Image: File Editing

When websites are hacked, lines of code are typically injected into existing files through the WordPress admin. If you become the unfortunate victim of a hack, you can still prevent the most common attacks by preventing anyone from editing your files – your last line of defense when the worst happens. The method is pretty straightforward:

1. Add a line of code to your functions.php file.

2. Your files can no longer be edited unless someone accesses your files via FTP.

3. If you ever need to edit your files again through the WordPress admin instead of FTP, simply remove the line of code you added in Step #1 through your FTP.

Here is that line of code:

define(‘DISALLOW_FILE_EDIT’, true);

Remember: The line of code should be added at the end of your functions.php file.

Want to read more articles like this one? See 25 Ways to Improve WordPress Security  

Sign Up for New Content

/1 Comment/by
You might also like
Image: Dont Use Admin As Your Username Don't Use Admin As Your Username
WordPress Security Tips 25 Ways To Improve WordPress Security
Cover Image: XML RPC Article Disable XML-RPC API in WordPress
Image: WordPress Database Table Prefix How to Change the WordPress Database Prefix
Password Protect WordPress Login Password Protect Your WordPress Login Page
Two-Factor Authentication Use Two-Factor Authentication to Bulletproof your WordPress Login
Image for Hide the WordPress Login URL Article Hide the WordPress Login URL - The Best Plugins
Limit Login Attempts Limit Login Attempts on Your WordPress Site