Disable Error Reporting

WordPress Security: Secure Your Site Against Hackers Extra WordPress Security Tasks – Really Lock Down Your Site
4 minutes
Share the link to this page
Copied
  Completed
You need to have access to the item to view this lesson.
One-time Fee
$69.99
List Price:  $99.99
You save:  $30
€67.09
List Price:  €95.85
You save:  €28.75
£55.67
List Price:  £79.54
You save:  £23.86
CA$100.61
List Price:  CA$143.73
You save:  CA$43.12
A$111.94
List Price:  A$159.93
You save:  A$47.98
S$94.87
List Price:  S$135.54
You save:  S$40.66
HK$544.46
List Price:  HK$777.83
You save:  HK$233.37
CHF 62.54
List Price:  CHF 89.34
You save:  CHF 26.80
NOK kr792.28
List Price:  NOK kr1,131.88
You save:  NOK kr339.60
DKK kr500.54
List Price:  DKK kr715.08
You save:  DKK kr214.54
NZ$123.72
List Price:  NZ$176.75
You save:  NZ$53.03
د.إ257.07
List Price:  د.إ367.26
You save:  د.إ110.19
৳8,361.37
List Price:  ৳11,945.33
You save:  ৳3,583.95
₹5,945.38
List Price:  ₹8,493.77
You save:  ₹2,548.38
RM315.51
List Price:  RM450.75
You save:  RM135.24
₦108,452.30
List Price:  ₦154,938.50
You save:  ₦46,486.20
₨19,476.23
List Price:  ₨27,824.38
You save:  ₨8,348.15
฿2,393.75
List Price:  ฿3,419.79
You save:  ฿1,026.04
₺2,463.20
List Price:  ₺3,519.01
You save:  ₺1,055.81
B$425.95
List Price:  B$608.53
You save:  B$182.58
R1,281.50
List Price:  R1,830.80
You save:  R549.29
Лв131.12
List Price:  Лв187.32
You save:  Лв56.20
₩101,234.93
List Price:  ₩144,627.53
You save:  ₩43,392.60
₪255.76
List Price:  ₪365.39
You save:  ₪109.63
₱4,117.86
List Price:  ₱5,882.91
You save:  ₱1,765.05
¥10,950.28
List Price:  ¥15,643.93
You save:  ¥4,693.65
MX$1,405.25
List Price:  MX$2,007.58
You save:  MX$602.33
QR255.07
List Price:  QR364.41
You save:  QR109.33
P967.09
List Price:  P1,381.63
You save:  P414.53
KSh9,046.20
List Price:  KSh12,923.70
You save:  KSh3,877.50
E£3,561.31
List Price:  E£5,087.81
You save:  E£1,526.49
ብር8,934.81
List Price:  ብር12,764.56
You save:  ብር3,829.75
Kz64,250.82
List Price:  Kz91,790.82
You save:  Kz27,540
CLP$69,230.60
List Price:  CLP$98,905.10
You save:  CLP$29,674.50
CN¥510.67
List Price:  CN¥729.56
You save:  CN¥218.89
RD$4,260.81
List Price:  RD$6,087.13
You save:  RD$1,826.32
DA9,439.27
List Price:  DA13,485.25
You save:  DA4,045.98
FJ$162.13
List Price:  FJ$231.62
You save:  FJ$69.49
Q539.13
List Price:  Q770.23
You save:  Q231.09
GY$14,638.94
List Price:  GY$20,913.67
You save:  GY$6,274.72
ISK kr9,737.70
List Price:  ISK kr13,911.60
You save:  ISK kr4,173.90
DH704.21
List Price:  DH1,006.07
You save:  DH301.85
L1,285.64
List Price:  L1,836.70
You save:  L551.06
ден4,129.86
List Price:  ден5,900.06
You save:  ден1,770.19
MOP$560.15
List Price:  MOP$800.26
You save:  MOP$240.10
N$1,288.20
List Price:  N$1,840.36
You save:  N$552.16
C$2,574.79
List Price:  C$3,678.42
You save:  C$1,103.63
रु9,517.84
List Price:  रु13,597.49
You save:  रु4,079.65
S/260.55
List Price:  S/372.23
You save:  S/111.68
K283.74
List Price:  K405.36
You save:  K121.62
SAR262.92
List Price:  SAR375.62
You save:  SAR112.69
ZK1,936.44
List Price:  ZK2,766.46
You save:  ZK830.02
L333.95
List Price:  L477.10
You save:  L143.14
Kč1,686.22
List Price:  Kč2,408.98
You save:  Kč722.76
Ft27,781.13
List Price:  Ft39,689.03
You save:  Ft11,907.90
SEK kr772.16
List Price:  SEK kr1,103.13
You save:  SEK kr330.97
ARS$71,509.21
List Price:  ARS$102,160.40
You save:  ARS$30,651.18
Bs483.51
List Price:  Bs690.76
You save:  Bs207.25
COP$305,137.08
List Price:  COP$435,928.80
You save:  COP$130,791.72
₡35,302.85
List Price:  ₡50,434.81
You save:  ₡15,131.95
L1,776.18
List Price:  L2,537.51
You save:  L761.33
₲545,595.73
List Price:  ₲779,455.88
You save:  ₲233,860.15
$U3,131.93
List Price:  $U4,474.38
You save:  $U1,342.44
zł286.05
List Price:  zł408.66
You save:  zł122.61
Already have an account? Log In

Transcript

A really important thing that you can do is to disable PHP Error Reporting or Error Reporting in WordPress. Now, this is where there is a site error, and the server reports the error. And helpfully it's trying to be helpful to the website owner and gives him or her more information about the error. However, this is also very helpful to hackers and attackers, because it gives them information about the website that you don't want them to know. Now I've done a Google image search here on WordPress, PHP error reporting. And here is one saying that there's an error in the theme index php file on line one, but look, it shows the file path to the websites.

The user name of the websites is in there. You don't want people to see that. Again, they've got half of the information to be able to access your site's back end. You might have seen many of these while surfing around the web. This is not what you want people to see. It is handy, but I can show you how to turn it on and turn it off.

And this is another edit that you need to do in the WP hyphen config dot php file. And I'll show you how to do that now. So again, I have cPanel and that's how I'm going to access my WP config file. You can use an FTP program such as file Zilla to do this, but I'm going to be using cPanel so let's go into file manager and in public underscore HTML, this is where your WP config dot php file lives. You go edit that and you want to put this right at the top after The opening PHP tag and in there just put error underscore reporting open brackets zero, closed brackets colon. Now, if you have an error with any PHP, any plug in any theme in your site, nobody can see the site's username, or get any other valuable information in order to hack your site.

So we'll save changes. Now the first thing you should do after you have disabled Error Reporting in WordPress is to find out if there isn't any error reporting on the actual server itself. Maybe your host has error reporting. So the best way to do this is to test it. So the way to test if your error reporting is disabled, is to get rid of the index. php.

We would like to access our files via the FTP manager file Zilla. This is the safest way as long as You connect with your address usually the IP address username and password via SFTP that is secure File Transfer Protocol. That's the way to access your files. So we've accessed the files and here is the root of the server. Remember we get those three folders WP admin WP content WP includes and all the other familiar WP PHP files. So in amongst that we will find the index dot php.

And what we want to do is, of course, we want to copy it or download it first to our computer before we delete it. And remember, don't do this, if you're not absolutely sure what you're doing. If you're not sure what you're doing, then just contact the host and ask them if error reporting is disabled. So we'll go to the website now and refresh. And this is what we want to see. It isn't an error report.

As such, it's saying you don't have permission to access this server. And additionally, a forbidden error was encountered while trying to use an error document to handle the request. That's exactly what we want to see. There is no interesting information helpful information on this page to know why we can't access this site. And the reason for this is Error Reporting has been correctly disabled on this site, due to me performing that WordPress function as well as my host doing what they did at their end. So remember to disable Error Reporting in WordPress test and make sure your host has Error Reporting disabled.

My name is Rob carbon. I'll see you in the next video.

Sign Up

Share

Share with friends, get 20% off
Invite your friends to LearnDesk learning marketplace. For each purchase they make, you get 20% off (upto $10) on your next purchase.