{"id":751,"date":"2012-09-09T23:54:38","date_gmt":"2012-09-10T05:54:38","guid":{"rendered":"http:\/\/blog.supportpro.com\/?p=751"},"modified":"2026-03-26T04:30:34","modified_gmt":"2026-03-26T10:30:34","slug":"how-to-prevent-htaccess-hacks-in-a-wordpress-site","status":"publish","type":"post","link":"https:\/\/www.supportpro.com\/blog\/how-to-prevent-htaccess-hacks-in-a-wordpress-site\/","title":{"rendered":"How to Prevent .htaccess Hacks in a wordpress site?"},"content":{"rendered":"\n<div id=\"_mcePaste\" style=\"position: absolute; left: -10000px; top: 0px; width: 1px; height: 1px; overflow: hidden;\">.htaccess (hypertext access) is the default name of directory-level configuration file that provides decentralized management of configuration while inside your web tree. .htaccess files are often used for security restrictions on a particular directory. So it is very important to secure .htaccess.<\/div>\n\n\n\n<div id=\"_mcePaste\" style=\"position: absolute; left: -10000px; top: 0px; width: 1px; height: 1px; overflow: hidden;\">1. Add the following code into the .htaccess files.<\/div>\n\n\n\n<div id=\"_mcePaste\" style=\"position: absolute; left: -10000px; top: 0px; width: 1px; height: 1px; overflow: hidden;\"># STRONG HTACCESS PROTECTION<\/div>\n\n\n\n<div id=\"_mcePaste\" style=\"position: absolute; left: -10000px; top: 0px; width: 1px; height: 1px; overflow: hidden;\">order allow,deny<\/div>\n\n\n\n<div id=\"_mcePaste\" style=\"position: absolute; left: -10000px; top: 0px; width: 1px; height: 1px; overflow: hidden;\">deny from all<\/div>\n\n\n\n<div id=\"_mcePaste\" style=\"position: absolute; left: -10000px; top: 0px; width: 1px; height: 1px; overflow: hidden;\">satisfy all<\/div>\n\n\n\n<div id=\"_mcePaste\" style=\"position: absolute; left: -10000px; top: 0px; width: 1px; height: 1px; overflow: hidden;\">2. Secure your config.php by adding the follwoing<\/div>\n\n\n\n<div id=\"_mcePaste\" style=\"position: absolute; left: -10000px; top: 0px; width: 1px; height: 1px; overflow: hidden;\"># protect wp-config.php<\/div>\n\n\n\n<div id=\"_mcePaste\" style=\"position: absolute; left: -10000px; top: 0px; width: 1px; height: 1px; overflow: hidden;\">Order deny,allow<\/div>\n\n\n\n<div id=\"_mcePaste\" style=\"position: absolute; left: -10000px; top: 0px; width: 1px; height: 1px; overflow: hidden;\">Deny from all<\/div>\n\n\n\n<div id=\"_mcePaste\" style=\"position: absolute; left: -10000px; top: 0px; width: 1px; height: 1px; overflow: hidden;\">3. Prevent hacker from browsing your directory by adding the code<\/div>\n\n\n\n<div id=\"_mcePaste\" style=\"position: absolute; left: -10000px; top: 0px; width: 1px; height: 1px; overflow: hidden;\"># disable directory browsing<\/div>\n\n\n\n<div id=\"_mcePaste\" style=\"position: absolute; left: -10000px; top: 0px; width: 1px; height: 1px; overflow: hidden;\">Options All -Indexes<\/div>\n\n\n\n<div id=\"_mcePaste\" style=\"position: absolute; left: -10000px; top: 0px; width: 1px; height: 1px; overflow: hidden;\">4. Prevent script injections.<\/div>\n\n\n\n<div id=\"_mcePaste\" style=\"position: absolute; left: -10000px; top: 0px; width: 1px; height: 1px; overflow: hidden;\"># protect from sql injection<\/div>\n\n\n\n<div id=\"_mcePaste\" style=\"position: absolute; left: -10000px; top: 0px; width: 1px; height: 1px; overflow: hidden;\">Options +FollowSymLinks<\/div>\n\n\n\n<div id=\"_mcePaste\" style=\"position: absolute; left: -10000px; top: 0px; width: 1px; height: 1px; overflow: hidden;\">RewriteEngine On<\/div>\n\n\n\n<div id=\"_mcePaste\" style=\"position: absolute; left: -10000px; top: 0px; width: 1px; height: 1px; overflow: hidden;\">RewriteCond %{QUERY_STRING} (\\&lt;|%3C).*script.*(\\&gt;|%3E) [NC,OR]<\/div>\n\n\n\n<div id=\"_mcePaste\" style=\"position: absolute; left: -10000px; top: 0px; width: 1px; height: 1px; overflow: hidden;\">RewriteCond %{QUERY_STRING} GLOBALS(=|\\[|\\%[0-9A-Z]{0,2}) [OR]<\/div>\n\n\n\n<div id=\"_mcePaste\" style=\"position: absolute; left: -10000px; top: 0px; width: 1px; height: 1px; overflow: hidden;\">RewriteCond %{QUERY_STRING} _REQUEST(=|\\[|\\%[0-9A-Z]{0,2})<\/div>\n\n\n\n<div id=\"_mcePaste\" style=\"position: absolute; left: -10000px; top: 0px; width: 1px; height: 1px; overflow: hidden;\">RewriteRule ^(.*)$ index.php [F,L]<\/div>\n\n\n\n<div id=\"_mcePaste\" style=\"position: absolute; left: -10000px; top: 0px; width: 1px; height: 1px; overflow: hidden;\">5. Limit access to the wp-content directory by creating a .htaccess in the wp-content folder .<\/div>\n\n\n\n<div id=\"_mcePaste\" style=\"position: absolute; left: -10000px; top: 0px; width: 1px; height: 1px; overflow: hidden;\">Order deny,allow<\/div>\n\n\n\n<div id=\"_mcePaste\" style=\"position: absolute; left: -10000px; top: 0px; width: 1px; height: 1px; overflow: hidden;\">Deny from all<\/div>\n\n\n\n<div id=\"_mcePaste\" style=\"position: absolute; left: -10000px; top: 0px; width: 1px; height: 1px; overflow: hidden;\">Allow from all<\/div>\n\n\n\n<div id=\"_mcePaste\" style=\"position: absolute; left: -10000px; top: 0px; width: 1px; height: 1px; overflow: hidden;\">6. If you have a static Ip, it is better to create an .htaccess in wp-admin folder.<\/div>\n\n\n\n<div id=\"_mcePaste\" style=\"position: absolute; left: -10000px; top: 0px; width: 1px; height: 1px; overflow: hidden;\"># deny access to wp admin<\/div>\n\n\n\n<div id=\"_mcePaste\" style=\"position: absolute; left: -10000px; top: 0px; width: 1px; height: 1px; overflow: hidden;\">order deny,allow<\/div>\n\n\n\n<div id=\"_mcePaste\" style=\"position: absolute; left: -10000px; top: 0px; width: 1px; height: 1px; overflow: hidden;\">allow from xx.xx.xx.xx<\/div>\n\n\n\n<div id=\"_mcePaste\" style=\"position: absolute; left: -10000px; top: 0px; width: 1px; height: 1px; overflow: hidden;\">deny from allThe <code>.htaccess<\/code> file plays a critical role in securing a WordPress website. When configured correctly, it can help prevent unauthorized access, reduce attack surfaces, and add an extra layer of protection at the server level. However, <strong>outdated or incorrect rules can break your site or create a false sense of security<\/strong>.<\/div>\n\n\n\n<p class=\"wp-block-paragraph\">Securing your WordPress website starts at the server level. One of the most effective ways to improve security on Apache servers is by properly configuring the <strong data-start=\"385\" data-end=\"398\">.htaccess<\/strong> file. This guide explains modern, Apache 2.4\u2013compatible methods to harden WordPress using safe and tested .htaccess rules.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">What Is .htaccess and Why It Matters for WordPress Security<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">The <strong data-start=\"596\" data-end=\"609\">.htaccess<\/strong> file (short for hypertext access) is a configuration file used by Apache web servers. It allows you to control how your website behaves at the directory level.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">With .htaccess, you can:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><p data-start=\"799\" data-end=\"835\">Restrict access to sensitive files<\/p><\/li>\n\n\n\n<li><p data-start=\"838\" data-end=\"866\">Disable directory browsing<\/p><\/li>\n\n\n\n<li><p data-start=\"869\" data-end=\"898\">Protect configuration files<\/p><\/li>\n\n\n\n<li><p data-start=\"901\" data-end=\"938\">Improve basic server-level security<\/p><\/li>\n\n\n\n<li><p data-start=\"941\" data-end=\"963\">Manage URL rewriting<\/p><br><\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\">Since WordPress relies heavily on Apache rewrite rules, incorrect changes to .htaccess can break your website. Always use updated and verified rules.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Before You Begin: Important Precautions<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">Before making changes:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><p data-start=\"1176\" data-end=\"1227\">Take a full backup of the existing .htaccess file<\/p><\/li>\n\n\n\n<li><p data-start=\"1230\" data-end=\"1276\">Confirm your server runs Apache 2.4 or newer<\/p><\/li>\n\n\n\n<li><p data-start=\"1279\" data-end=\"1333\">Avoid copying outdated security rules from old blogs<\/p><\/li>\n<\/ul>\n\n\n\n<h2 class=\"wp-block-heading\">1. Protect the .htaccess File<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">Your .htaccess file should not be publicly accessible.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>Recommended (Apache 2.4):<\/strong><\/p>\n\n\n\n<div class=\"cm-editor \u037c1 \u037c2 \u037c4 \u037cro \u037cr9\" contenteditable=\"false\" data-is-code-block-view=\"true\">\n<div class=\"cm-announced\" aria-live=\"polite\">&nbsp;<\/div>\n<div class=\"cm-scroller\" tabindex=\"-1\">\n<div class=\"cm-content\" role=\"textbox\" contenteditable=\"true\" spellcheck=\"false\" translate=\"no\" aria-multiline=\"true\">\n<blockquote><div class=\"cm-line\">&lt;Files .htaccess&gt;<\/div><div class=\"cm-line\">Require all denied<\/div><div class=\"cm-line\">&lt;\/Files&gt;<\/div><\/blockquote>\n<\/div>\n<div class=\"cm-layer cm-layer-above cm-cursorLayer\" aria-hidden=\"true\">\n<div class=\"cm-cursor cm-cursor-primary\">&nbsp;<\/div>\n<\/div>\n<div class=\"cm-layer cm-selectionLayer\" aria-hidden=\"true\">&nbsp;<\/div>\n<\/div>\n<\/div>\n\n\n\n<p class=\"wp-block-paragraph\">This blocks direct access to the file and ensures attackers cannot read or manipulate your server rules.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">2. Secure wp-config.php<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">The wp-config.php file contains your database credentials and security keys. It must be protected.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Add:<\/p>\n\n\n\n<div class=\"cm-editor \u037c1 \u037c2 \u037c4 \u037crp \u037crb\" contenteditable=\"false\" data-is-code-block-view=\"true\">\n<div class=\"cm-announced\" aria-live=\"polite\">&nbsp;<\/div>\n<div class=\"cm-scroller\" tabindex=\"-1\">\n<div class=\"cm-content\" role=\"textbox\" contenteditable=\"true\" spellcheck=\"false\" translate=\"no\" aria-multiline=\"true\">\n<blockquote><div class=\"cm-line\">&lt;Files wp-config.php&gt;<\/div><div class=\"cm-line\">Require all denied<\/div><div class=\"cm-line\">&lt;\/Files&gt;<\/div><\/blockquote>\n<\/div>\n<div class=\"cm-layer cm-layer-above cm-cursorLayer\" aria-hidden=\"true\">\n<div class=\"cm-cursor cm-cursor-primary\">&nbsp;<\/div>\n<\/div>\n<div class=\"cm-layer cm-selectionLayer\" aria-hidden=\"true\">&nbsp;<\/div>\n<\/div>\n<\/div>\n\n\n\n<p class=\"wp-block-paragraph\">This is one of the <strong>most important WordPress hardening steps<\/strong>.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">3. Disable Directory Listing<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">Directory browsing can expose internal file structures.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Add:<\/p>\n\n\n\n<div class=\"cm-editor \u037c1 \u037c2 \u037c4 \u037crq \u037crd\" contenteditable=\"false\" data-is-code-block-view=\"true\">\n<div class=\"cm-announced\" aria-live=\"polite\">&nbsp;<\/div>\n<div class=\"cm-scroller\" tabindex=\"-1\">\n<div class=\"cm-content\" role=\"textbox\" contenteditable=\"true\" spellcheck=\"false\" translate=\"no\" aria-multiline=\"true\">\n<blockquote><div class=\"cm-line\">Options -Indexes<\/div><\/blockquote>\n<\/div>\n<div class=\"cm-layer cm-layer-above cm-cursorLayer\" aria-hidden=\"true\">\n<div class=\"cm-cursor cm-cursor-primary\">&nbsp;<\/div>\n<\/div>\n<div class=\"cm-layer cm-selectionLayer\" aria-hidden=\"true\">&nbsp;<\/div>\n<\/div>\n<\/div>\n\n\n\n<p class=\"wp-block-paragraph\">This prevents attackers from listing files in directories that lack an index file.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">4. Block PHP Execution in the Uploads Folder<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">Many WordPress attacks attempt to execute malicious PHP files inside the uploads directory.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Create a separate .htaccess file inside:<\/p>\n\n\n\n<div class=\"contain-inline-size rounded-2xl corner-superellipse\/1.1 relative bg-token-sidebar-surface-primary\">\n<div class=\"sticky top-[calc(var(--sticky-padding-top)+9*var(--spacing))]\">\n<div class=\"absolute end-0 bottom-0 flex h-9 items-center pe-2\">\n<blockquote><div class=\"bg-token-bg-elevated-secondary text-token-text-secondary flex items-center gap-4 rounded-sm px-2 font-sans text-xs\">\/wp-content\/uploads\/<\/div><\/blockquote>\n<\/div>\n<\/div>\n<\/div>\n\n\n\n<p class=\"wp-block-paragraph\">Add:<\/p>\n\n\n\n<div class=\"contain-inline-size rounded-2xl corner-superellipse\/1.1 relative bg-token-sidebar-surface-primary\">\n<div class=\"sticky top-[calc(var(--sticky-padding-top)+9*var(--spacing))]\">\n<div class=\"absolute end-0 bottom-0 flex h-9 items-center pe-2\">\n<div class=\"bg-token-bg-elevated-secondary text-token-text-secondary flex items-center gap-4 rounded-sm px-2 font-sans text-xs\">&nbsp;<\/div>\n<\/div>\n<\/div>\n<blockquote><div class=\"overflow-y-auto p-4\" dir=\"ltr\">&lt;Files *.php&gt;<br>Require all denied<br>&lt;\/Files&gt;<\/div><\/blockquote>\n<\/div>\n\n\n\n<p class=\"wp-block-paragraph\">This allows images and media files but blocks PHP execution.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">5. Restrict Access to wp-admin (Optional)<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">If you use a static IP address, you can restrict access to the WordPress admin area.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Inside <code data-start=\"2507\" data-end=\"2528\">\/wp-admin\/.htaccess<\/code>:<\/p>\n\n\n\n<div class=\"contain-inline-size rounded-2xl corner-superellipse\/1.1 relative bg-token-sidebar-surface-primary\">\n<div class=\"sticky top-[calc(var(--sticky-padding-top)+9*var(--spacing))]\">\n<div class=\"absolute end-0 bottom-0 flex h-9 items-center pe-2\">\n<div class=\"bg-token-bg-elevated-secondary text-token-text-secondary flex items-center gap-4 rounded-sm px-2 font-sans text-xs\">&nbsp;<\/div>\n<\/div>\n<\/div>\n<blockquote><div class=\"overflow-y-auto p-4\" dir=\"ltr\">&lt;RequireAll&gt;<br>Require all denied<br>Require ip xx.xx.xx.xx<br>&lt;\/RequireAll&gt;<\/div><\/blockquote>\n<\/div>\n\n\n\n<p class=\"wp-block-paragraph\">Replace the IP with your own.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Do not use this method if your IP address changes frequently.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">6. Disable XML-RPC If Not Needed<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">The xmlrpc.php file is often targeted in brute-force attacks.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">If you do not use remote publishing or mobile apps, disable it:<\/p>\n\n\n\n<div class=\"cm-editor \u037c1 \u037c2 \u037c4 \u037cru \u037crl\" contenteditable=\"false\" data-is-code-block-view=\"true\">\n<div class=\"cm-announced\" aria-live=\"polite\">&nbsp;<\/div>\n<div class=\"cm-scroller\" tabindex=\"-1\">\n<div class=\"cm-content\" role=\"textbox\" contenteditable=\"true\" spellcheck=\"false\" translate=\"no\" aria-multiline=\"true\">\n<blockquote><div class=\"cm-line\">&lt;Files xmlrpc.php&gt;<\/div><div class=\"cm-line\">Require all denied<\/div><div class=\"cm-line\">&lt;\/Files&gt;<\/div><\/blockquote>\n<\/div>\n<div class=\"cm-layer cm-layer-above cm-cursorLayer\" aria-hidden=\"true\">\n<div class=\"cm-cursor cm-cursor-primary\">&nbsp;<\/div>\n<\/div>\n<div class=\"cm-layer cm-selectionLayer\" aria-hidden=\"true\">&nbsp;<\/div>\n<\/div>\n<\/div>\n\n\n\n<h2 class=\"wp-block-heading\">Important: .htaccess Cannot Stop SQL Injection<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">Some older tutorials claim that .htaccess rules can block SQL injection. This is outdated information.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">.htaccess cannot:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><p data-start=\"3114\" data-end=\"3151\">Detect modern SQL injection attacks<\/p><\/li>\n\n\n\n<li><p data-start=\"3154\" data-end=\"3182\">Fix plugin vulnerabilities<\/p><\/li>\n\n\n\n<li><p data-start=\"3185\" data-end=\"3221\">Replace application-level security<\/p><\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\">Instead, you should:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><p data-start=\"3247\" data-end=\"3297\">Keep WordPress core, themes, and plugins updated<\/p><\/li>\n\n\n\n<li><p data-start=\"3300\" data-end=\"3338\">Use a Web Application Firewall (WAF)<\/p><\/li>\n\n\n\n<li><p data-start=\"3341\" data-end=\"3376\">Install a trusted security plugin<\/p><\/li>\n<\/ul>\n\n\n\n<h2 class=\"wp-block-heading\">Additional WordPress Security Best Practices<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">.htaccess hardening should be part of a layered security approach:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><p data-start=\"3502\" data-end=\"3524\">Use strong passwords<\/p><\/li>\n\n\n\n<li><p data-start=\"3527\" data-end=\"3567\">Enable two-factor authentication (2FA)<\/p><\/li>\n\n\n\n<li><p data-start=\"3570\" data-end=\"3601\">Perform regular malware scans<\/p><\/li>\n\n\n\n<li><p data-start=\"3604\" data-end=\"3628\">Keep automated backups<\/p><\/li>\n\n\n\n<li><p data-start=\"3631\" data-end=\"3665\">Limit user roles and permissions<\/p><\/li>\n<\/ul>\n\n\n\n<h2 class=\"wp-block-heading\">Common Mistakes to Avoid<\/h2>\n\n\n\n<ul class=\"wp-block-list\">\n<li><p data-start=\"3703\" data-end=\"3750\">Using Apache 2.2 syntax on Apache 2.4 servers<\/p><\/li>\n\n\n\n<li><p data-start=\"3753\" data-end=\"3791\">Blocking entire critical directories<\/p><\/li>\n\n\n\n<li><p data-start=\"3794\" data-end=\"3828\">Copying unverified code snippets<\/p><\/li>\n\n\n\n<li><p data-start=\"3831\" data-end=\"3865\">Editing .htaccess without backup<\/p><\/li>\n\n\n\n<li><p data-start=\"3868\" data-end=\"3913\">Relying only on .htaccess for full security<\/p><br><\/li>\n<\/ul>\n\n\n\n<h2 class=\"wp-block-heading\">Final Thoughts<\/h2>\n\n\n\n<div class=\"flex flex-col text-sm pb-25\">\n<article class=\"text-token-text-primary w-full focus:outline-none [--shadow-height:45px] has-data-writing-block:pointer-events-none has-data-writing-block:-mt-(--shadow-height) has-data-writing-block:pt-(--shadow-height) [&amp;:has([data-writing-block])&gt;*]:pointer-events-auto scroll-mt-[calc(var(--header-height)+min(200px,max(70px,20svh)))]\" dir=\"auto\" tabindex=\"-1\" data-turn-id=\"request-WEB:4136eb89-9cf1-4e90-929f-0e16d6cfbcbc-5\" data-testid=\"conversation-turn-12\" data-scroll-anchor=\"true\" data-turn=\"assistant\">\n<div class=\"text-base my-auto mx-auto pb-10 [--thread-content-margin:--spacing(4)] @w-sm\/main:[--thread-content-margin:--spacing(6)] @w-lg\/main:[--thread-content-margin:--spacing(16)] px-(--thread-content-margin)\">\n<div class=\"[--thread-content-max-width:40rem] @w-lg\/main:[--thread-content-max-width:48rem] mx-auto max-w-(--thread-content-max-width) flex-1 group\/turn-messages focus-visible:outline-hidden relative flex w-full min-w-0 flex-col agent-turn\" tabindex=\"-1\">\n<div class=\"flex max-w-full flex-col grow\">\n<div class=\"min-h-8 text-message relative flex w-full flex-col items-end gap-2 text-start break-words whitespace-normal [.text-message+&amp;]:mt-1\" dir=\"auto\" data-message-author-role=\"assistant\" data-message-id=\"6ec56512-1114-4d2b-9b26-98037023bafa\" data-message-model-slug=\"gpt-5-2\">\n<div class=\"flex w-full flex-col gap-1 empty:hidden first:pt-[1px]\">\n<div class=\"markdown prose dark:prose-invert w-full wrap-break-word light markdown-new-styling\">\n<p data-start=\"3939\" data-end=\"4237\">When configured correctly, .htaccess is a powerful tool for improving WordPress security. However, modern threats require a layered security strategy. Use .htaccess for access control and server-level hardening, but combine it with regular updates, monitoring, and professional security management.<\/p>\n<p data-start=\"4239\" data-end=\"4414\">If you need help securing your WordPress site, removing malware, or implementing advanced server security, the experts at <a href=\"https:\/\/www.supportpro.com\/requestquote.php\"> SupportPRO Server Admin<\/a> are available 24\/7 to assist.<\/p>\n<p data-start=\"4416\" data-end=\"4467\" data-is-last-node=\"\" data-is-only-node=\"\">Secure smart. Secure modern. Secure professionally.<\/p>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n<\/article>\n<\/div>\n\n\n\n<div class=\"pointer-events-none h-px w-px absolute bottom-0\" aria-hidden=\"true\" data-edge=\"true\">&nbsp;<\/div>\n\n\n\n<div class=\"wp-block-media-text alignwide has-media-on-the-right is-stacked-on-mobile is-vertically-aligned-center has-white-background-color has-background\"><div class=\"wp-block-media-text__content\">\n<p class=\"has-large-font-size wp-block-paragraph\">Facing issues? <\/p>\n\n\n\n<p class=\"has-large-font-size wp-block-paragraph\">Our technical support<br>engineers can solve it. <\/p>\n\n\n\n<!--HubSpot Call-to-Action Code --><span class=\"hs-cta-wrapper\" id=\"hs-cta-wrapper-3350a795-db50-482f-9911-301930d1b1be\"><span class=\"hs-cta-node hs-cta-3350a795-db50-482f-9911-301930d1b1be\" id=\"hs-cta-3350a795-db50-482f-9911-301930d1b1be\"><!--[if lte IE 8]><div id=\"hs-cta-ie-element\"><\/div><![endif]--><a href=\"https:\/\/cta-redirect.hubspot.com\/cta\/redirect\/2725694\/3350a795-db50-482f-9911-301930d1b1be\" ><img decoding=\"async\" class=\"hs-cta-img\" id=\"hs-cta-img-3350a795-db50-482f-9911-301930d1b1be\" style=\"border-width:0px;\" src=\"https:\/\/no-cache.hubspot.com\/cta\/default\/2725694\/3350a795-db50-482f-9911-301930d1b1be.png\"  alt=\"Contact Us today!\"\/><\/a><\/span><script charset=\"utf-8\" src=\"https:\/\/js.hscta.net\/cta\/current.js\"><\/script><script type=\"text\/javascript\"> hbspt.cta.load(2725694, '3350a795-db50-482f-9911-301930d1b1be', {\"useNewLoader\":\"true\",\"region\":\"na1\"}); <\/script><\/span><!-- end HubSpot Call-to-Action Code -->\n<\/div><figure class=\"wp-block-media-text__media\"><img fetchpriority=\"high\" decoding=\"async\" width=\"904\" height=\"931\" src=\"https:\/\/www.supportpro.com\/blog\/wp-content\/uploads\/2022\/09\/Free-server-checkup.png\" alt=\"guy server checkup\" class=\"wp-image-12943 size-full\" srcset=\"https:\/\/www.supportpro.com\/blog\/wp-content\/uploads\/2022\/09\/Free-server-checkup.png 904w, https:\/\/www.supportpro.com\/blog\/wp-content\/uploads\/2022\/09\/Free-server-checkup-291x300.png 291w, https:\/\/www.supportpro.com\/blog\/wp-content\/uploads\/2022\/09\/Free-server-checkup-768x791.png 768w, https:\/\/www.supportpro.com\/blog\/wp-content\/uploads\/2022\/09\/Free-server-checkup-585x602.png 585w\" sizes=\"(max-width: 904px) 100vw, 904px\" \/><\/figure><\/div>\n","protected":false},"excerpt":{"rendered":"<p>.htaccess (hypertext access) is the default name of directory-level configuration file that provides decentralized management of configuration while inside your web tree. .htaccess files are often used for security restrictions&hellip;<\/p>\n","protected":false},"author":4,"featured_media":15217,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_lmt_disableupdate":"","_lmt_disable":"","footnotes":""},"categories":[1],"tags":[],"class_list":["post-751","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-miscellaneous"],"aioseo_notices":[],"aioseo_head":"\n\t\t<!-- All in One SEO Pro 4.9.9 - aioseo.com -->\n\t<meta name=\"description\" content=\"Protect your WordPress site from .htaccess hacks using modern Apache rules, proven security practices, and expert hardening tips from SupportPRO.\" \/>\n\t<meta name=\"robots\" content=\"max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n\t<meta name=\"author\" content=\"SupportPRO Admin\"\/>\n\t<link rel=\"canonical\" href=\"https:\/\/www.supportpro.com\/blog\/how-to-prevent-htaccess-hacks-in-a-wordpress-site\/\" \/>\n\t<meta name=\"generator\" content=\"All in One SEO Pro (AIOSEO) 4.9.9\" \/>\n\t\t<meta property=\"og:locale\" content=\"en_US\" \/>\n\t\t<meta property=\"og:site_name\" content=\"Server Management Tips | SupportPRO Blog\" \/>\n\t\t<meta property=\"og:type\" content=\"article\" \/>\n\t\t<meta property=\"og:title\" content=\"How to Prevent .htaccess Hacks in WordPress | SupportPro\" \/>\n\t\t<meta property=\"og:description\" content=\"Protect your WordPress site from .htaccess hacks using modern Apache rules, proven security practices, and expert hardening tips from SupportPRO.\" \/>\n\t\t<meta property=\"og:url\" content=\"https:\/\/www.supportpro.com\/blog\/how-to-prevent-htaccess-hacks-in-a-wordpress-site\/\" \/>\n\t\t<meta property=\"og:image\" content=\"https:\/\/www.supportpro.com\/blog\/wp-content\/uploads\/2012\/09\/88807-1-1.jpg\" \/>\n\t\t<meta property=\"og:image:secure_url\" content=\"https:\/\/www.supportpro.com\/blog\/wp-content\/uploads\/2012\/09\/88807-1-1.jpg\" \/>\n\t\t<meta property=\"og:image:width\" content=\"1000\" \/>\n\t\t<meta property=\"og:image:height\" content=\"563\" \/>\n\t\t<meta property=\"article:published_time\" content=\"2012-09-10T05:54:38+00:00\" \/>\n\t\t<meta property=\"article:modified_time\" content=\"2026-03-26T10:30:34+00:00\" \/>\n\t\t<meta name=\"twitter:card\" content=\"summary\" \/>\n\t\t<meta name=\"twitter:title\" content=\"How to Prevent .htaccess Hacks in WordPress | SupportPro\" \/>\n\t\t<meta name=\"twitter:description\" content=\"Protect your WordPress site from .htaccess hacks using modern Apache rules, proven security practices, and expert hardening tips from SupportPRO.\" \/>\n\t\t<meta name=\"twitter:image\" content=\"https:\/\/www.supportpro.com\/blog\/wp-content\/uploads\/2012\/09\/88807-1-1.jpg\" \/>\n\t\t<script type=\"application\/ld+json\" class=\"aioseo-schema\">\n\t\t\t{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.supportpro.com\\\/blog\\\/how-to-prevent-htaccess-hacks-in-a-wordpress-site\\\/#article\",\"name\":\"How to Prevent .htaccess Hacks in WordPress | SupportPro\",\"headline\":\"How to Prevent .htaccess Hacks in a wordpress site?\",\"author\":{\"@id\":\"https:\\\/\\\/www.supportpro.com\\\/blog\\\/author\\\/managementadmin\\\/#author\"},\"publisher\":{\"@id\":\"https:\\\/\\\/www.supportpro.com\\\/blog\\\/#organization\"},\"image\":{\"@type\":\"ImageObject\",\"url\":\"https:\\\/\\\/www.supportpro.com\\\/blog\\\/wp-content\\\/uploads\\\/2012\\\/09\\\/88807-1-1.jpg\",\"width\":1000,\"height\":563},\"datePublished\":\"2012-09-09T23:54:38-06:00\",\"dateModified\":\"2026-03-26T04:30:34-06:00\",\"inLanguage\":\"en-US\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.supportpro.com\\\/blog\\\/how-to-prevent-htaccess-hacks-in-a-wordpress-site\\\/#webpage\"},\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.supportpro.com\\\/blog\\\/how-to-prevent-htaccess-hacks-in-a-wordpress-site\\\/#webpage\"},\"articleSection\":\"Miscellaneous\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.supportpro.com\\\/blog\\\/how-to-prevent-htaccess-hacks-in-a-wordpress-site\\\/#breadcrumblist\",\"itemListElement\":[{\"@type\":\"ListItem\",\"@id\":\"https:\\\/\\\/www.supportpro.com\\\/blog#listItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.supportpro.com\\\/blog\",\"nextItem\":{\"@type\":\"ListItem\",\"@id\":\"https:\\\/\\\/www.supportpro.com\\\/blog\\\/category\\\/miscellaneous\\\/#listItem\",\"name\":\"Miscellaneous\"}},{\"@type\":\"ListItem\",\"@id\":\"https:\\\/\\\/www.supportpro.com\\\/blog\\\/category\\\/miscellaneous\\\/#listItem\",\"position\":2,\"name\":\"Miscellaneous\",\"item\":\"https:\\\/\\\/www.supportpro.com\\\/blog\\\/category\\\/miscellaneous\\\/\",\"nextItem\":{\"@type\":\"ListItem\",\"@id\":\"https:\\\/\\\/www.supportpro.com\\\/blog\\\/how-to-prevent-htaccess-hacks-in-a-wordpress-site\\\/#listItem\",\"name\":\"How to Prevent .htaccess Hacks in a wordpress site?\"},\"previousItem\":{\"@type\":\"ListItem\",\"@id\":\"https:\\\/\\\/www.supportpro.com\\\/blog#listItem\",\"name\":\"Home\"}},{\"@type\":\"ListItem\",\"@id\":\"https:\\\/\\\/www.supportpro.com\\\/blog\\\/how-to-prevent-htaccess-hacks-in-a-wordpress-site\\\/#listItem\",\"position\":3,\"name\":\"How to Prevent .htaccess Hacks in a wordpress site?\",\"previousItem\":{\"@type\":\"ListItem\",\"@id\":\"https:\\\/\\\/www.supportpro.com\\\/blog\\\/category\\\/miscellaneous\\\/#listItem\",\"name\":\"Miscellaneous\"}}]},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.supportpro.com\\\/blog\\\/#organization\",\"name\":\"SupportPRO\",\"description\":\"SupportPRO Blog\",\"url\":\"https:\\\/\\\/www.supportpro.com\\\/blog\\\/\",\"telephone\":\"+18476076123\"},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.supportpro.com\\\/blog\\\/author\\\/managementadmin\\\/#author\",\"url\":\"https:\\\/\\\/www.supportpro.com\\\/blog\\\/author\\\/managementadmin\\\/\",\"name\":\"SupportPRO Admin\",\"image\":{\"@type\":\"ImageObject\",\"@id\":\"https:\\\/\\\/www.supportpro.com\\\/blog\\\/how-to-prevent-htaccess-hacks-in-a-wordpress-site\\\/#authorImage\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/13d2f63048d631e03a432375448be5eb7861069df4fef10f0cb1c7b36554c225?s=96&d=mm&r=g\",\"width\":96,\"height\":96,\"caption\":\"SupportPRO Admin\"}},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.supportpro.com\\\/blog\\\/how-to-prevent-htaccess-hacks-in-a-wordpress-site\\\/#webpage\",\"url\":\"https:\\\/\\\/www.supportpro.com\\\/blog\\\/how-to-prevent-htaccess-hacks-in-a-wordpress-site\\\/\",\"name\":\"How to Prevent .htaccess Hacks in WordPress | SupportPro\",\"description\":\"Protect your WordPress site from .htaccess hacks using modern Apache rules, proven security practices, and expert hardening tips from SupportPRO.\",\"inLanguage\":\"en-US\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.supportpro.com\\\/blog\\\/#website\"},\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.supportpro.com\\\/blog\\\/how-to-prevent-htaccess-hacks-in-a-wordpress-site\\\/#breadcrumblist\"},\"author\":{\"@id\":\"https:\\\/\\\/www.supportpro.com\\\/blog\\\/author\\\/managementadmin\\\/#author\"},\"creator\":{\"@id\":\"https:\\\/\\\/www.supportpro.com\\\/blog\\\/author\\\/managementadmin\\\/#author\"},\"image\":{\"@type\":\"ImageObject\",\"url\":\"https:\\\/\\\/www.supportpro.com\\\/blog\\\/wp-content\\\/uploads\\\/2012\\\/09\\\/88807-1-1.jpg\",\"@id\":\"https:\\\/\\\/www.supportpro.com\\\/blog\\\/how-to-prevent-htaccess-hacks-in-a-wordpress-site\\\/#mainImage\",\"width\":1000,\"height\":563},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.supportpro.com\\\/blog\\\/how-to-prevent-htaccess-hacks-in-a-wordpress-site\\\/#mainImage\"},\"datePublished\":\"2012-09-09T23:54:38-06:00\",\"dateModified\":\"2026-03-26T04:30:34-06:00\"},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.supportpro.com\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/www.supportpro.com\\\/blog\\\/\",\"name\":\"Server Management Tips\",\"description\":\"SupportPRO Blog\",\"inLanguage\":\"en-US\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.supportpro.com\\\/blog\\\/#organization\"}}]}\n\t\t<\/script>\n\t\t<!-- All in One SEO Pro -->\r\n\t\t<title>How to Prevent .htaccess Hacks in WordPress | SupportPro<\/title>\n\n","aioseo_head_json":{"title":"How to Prevent .htaccess Hacks in WordPress | SupportPro","description":"Protect your WordPress site from .htaccess hacks using modern Apache rules, proven security practices, and expert hardening tips from SupportPRO.","canonical_url":"https:\/\/www.supportpro.com\/blog\/how-to-prevent-htaccess-hacks-in-a-wordpress-site\/","robots":"max-snippet:-1, max-image-preview:large, max-video-preview:-1","keywords":"","webmasterTools":{"miscellaneous":""},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.supportpro.com\/blog\/how-to-prevent-htaccess-hacks-in-a-wordpress-site\/#article","name":"How to Prevent .htaccess Hacks in WordPress | SupportPro","headline":"How to Prevent .htaccess Hacks in a wordpress site?","author":{"@id":"https:\/\/www.supportpro.com\/blog\/author\/managementadmin\/#author"},"publisher":{"@id":"https:\/\/www.supportpro.com\/blog\/#organization"},"image":{"@type":"ImageObject","url":"https:\/\/www.supportpro.com\/blog\/wp-content\/uploads\/2012\/09\/88807-1-1.jpg","width":1000,"height":563},"datePublished":"2012-09-09T23:54:38-06:00","dateModified":"2026-03-26T04:30:34-06:00","inLanguage":"en-US","mainEntityOfPage":{"@id":"https:\/\/www.supportpro.com\/blog\/how-to-prevent-htaccess-hacks-in-a-wordpress-site\/#webpage"},"isPartOf":{"@id":"https:\/\/www.supportpro.com\/blog\/how-to-prevent-htaccess-hacks-in-a-wordpress-site\/#webpage"},"articleSection":"Miscellaneous"},{"@type":"BreadcrumbList","@id":"https:\/\/www.supportpro.com\/blog\/how-to-prevent-htaccess-hacks-in-a-wordpress-site\/#breadcrumblist","itemListElement":[{"@type":"ListItem","@id":"https:\/\/www.supportpro.com\/blog#listItem","position":1,"name":"Home","item":"https:\/\/www.supportpro.com\/blog","nextItem":{"@type":"ListItem","@id":"https:\/\/www.supportpro.com\/blog\/category\/miscellaneous\/#listItem","name":"Miscellaneous"}},{"@type":"ListItem","@id":"https:\/\/www.supportpro.com\/blog\/category\/miscellaneous\/#listItem","position":2,"name":"Miscellaneous","item":"https:\/\/www.supportpro.com\/blog\/category\/miscellaneous\/","nextItem":{"@type":"ListItem","@id":"https:\/\/www.supportpro.com\/blog\/how-to-prevent-htaccess-hacks-in-a-wordpress-site\/#listItem","name":"How to Prevent .htaccess Hacks in a wordpress site?"},"previousItem":{"@type":"ListItem","@id":"https:\/\/www.supportpro.com\/blog#listItem","name":"Home"}},{"@type":"ListItem","@id":"https:\/\/www.supportpro.com\/blog\/how-to-prevent-htaccess-hacks-in-a-wordpress-site\/#listItem","position":3,"name":"How to Prevent .htaccess Hacks in a wordpress site?","previousItem":{"@type":"ListItem","@id":"https:\/\/www.supportpro.com\/blog\/category\/miscellaneous\/#listItem","name":"Miscellaneous"}}]},{"@type":"Organization","@id":"https:\/\/www.supportpro.com\/blog\/#organization","name":"SupportPRO","description":"SupportPRO Blog","url":"https:\/\/www.supportpro.com\/blog\/","telephone":"+18476076123"},{"@type":"Person","@id":"https:\/\/www.supportpro.com\/blog\/author\/managementadmin\/#author","url":"https:\/\/www.supportpro.com\/blog\/author\/managementadmin\/","name":"SupportPRO Admin","image":{"@type":"ImageObject","@id":"https:\/\/www.supportpro.com\/blog\/how-to-prevent-htaccess-hacks-in-a-wordpress-site\/#authorImage","url":"https:\/\/secure.gravatar.com\/avatar\/13d2f63048d631e03a432375448be5eb7861069df4fef10f0cb1c7b36554c225?s=96&d=mm&r=g","width":96,"height":96,"caption":"SupportPRO Admin"}},{"@type":"WebPage","@id":"https:\/\/www.supportpro.com\/blog\/how-to-prevent-htaccess-hacks-in-a-wordpress-site\/#webpage","url":"https:\/\/www.supportpro.com\/blog\/how-to-prevent-htaccess-hacks-in-a-wordpress-site\/","name":"How to Prevent .htaccess Hacks in WordPress | SupportPro","description":"Protect your WordPress site from .htaccess hacks using modern Apache rules, proven security practices, and expert hardening tips from SupportPRO.","inLanguage":"en-US","isPartOf":{"@id":"https:\/\/www.supportpro.com\/blog\/#website"},"breadcrumb":{"@id":"https:\/\/www.supportpro.com\/blog\/how-to-prevent-htaccess-hacks-in-a-wordpress-site\/#breadcrumblist"},"author":{"@id":"https:\/\/www.supportpro.com\/blog\/author\/managementadmin\/#author"},"creator":{"@id":"https:\/\/www.supportpro.com\/blog\/author\/managementadmin\/#author"},"image":{"@type":"ImageObject","url":"https:\/\/www.supportpro.com\/blog\/wp-content\/uploads\/2012\/09\/88807-1-1.jpg","@id":"https:\/\/www.supportpro.com\/blog\/how-to-prevent-htaccess-hacks-in-a-wordpress-site\/#mainImage","width":1000,"height":563},"primaryImageOfPage":{"@id":"https:\/\/www.supportpro.com\/blog\/how-to-prevent-htaccess-hacks-in-a-wordpress-site\/#mainImage"},"datePublished":"2012-09-09T23:54:38-06:00","dateModified":"2026-03-26T04:30:34-06:00"},{"@type":"WebSite","@id":"https:\/\/www.supportpro.com\/blog\/#website","url":"https:\/\/www.supportpro.com\/blog\/","name":"Server Management Tips","description":"SupportPRO Blog","inLanguage":"en-US","publisher":{"@id":"https:\/\/www.supportpro.com\/blog\/#organization"}}]},"og:locale":"en_US","og:site_name":"Server Management Tips | SupportPRO Blog","og:type":"article","og:title":"How to Prevent .htaccess Hacks in WordPress | SupportPro","og:description":"Protect your WordPress site from .htaccess hacks using modern Apache rules, proven security practices, and expert hardening tips from SupportPRO.","og:url":"https:\/\/www.supportpro.com\/blog\/how-to-prevent-htaccess-hacks-in-a-wordpress-site\/","og:image":"https:\/\/www.supportpro.com\/blog\/wp-content\/uploads\/2012\/09\/88807-1-1.jpg","og:image:secure_url":"https:\/\/www.supportpro.com\/blog\/wp-content\/uploads\/2012\/09\/88807-1-1.jpg","og:image:width":1000,"og:image:height":563,"article:published_time":"2012-09-10T05:54:38+00:00","article:modified_time":"2026-03-26T10:30:34+00:00","twitter:card":"summary","twitter:title":"How to Prevent .htaccess Hacks in WordPress | SupportPro","twitter:description":"Protect your WordPress site from .htaccess hacks using modern Apache rules, proven security practices, and expert hardening tips from SupportPRO.","twitter:image":"https:\/\/www.supportpro.com\/blog\/wp-content\/uploads\/2012\/09\/88807-1-1.jpg"},"aioseo_meta_data":{"post_id":"751","title":"How to Prevent .htaccess Hacks in WordPress | SupportPro","description":"Protect your WordPress site from .htaccess hacks using modern Apache rules, proven security practices, and expert hardening tips from SupportPRO.","keywords":null,"keyphrases":{"focus":{"keyphrase":"","score":0,"analysis":{"keyphraseInTitle":{"score":0,"maxScore":9,"error":1}}},"additional":[]},"primary_term":null,"canonical_url":null,"og_title":null,"og_description":null,"og_object_type":"default","og_image_type":"default","og_image_url":null,"og_image_width":null,"og_image_height":null,"og_image_custom_url":null,"og_image_custom_fields":null,"og_video":"","og_custom_url":null,"og_article_section":null,"og_article_tags":null,"twitter_use_og":false,"twitter_card":"default","twitter_image_type":"default","twitter_image_url":null,"twitter_image_custom_url":null,"twitter_image_custom_fields":null,"twitter_title":null,"twitter_description":null,"schema":{"blockGraphs":[],"customGraphs":[],"default":{"data":{"Article":[],"Course":[],"Dataset":[],"FAQPage":[],"Movie":[],"Person":[],"Product":[],"ProductReview":[],"Car":[],"Recipe":[],"Service":[],"SoftwareApplication":[],"WebPage":[]},"graphName":"Article","isEnabled":true},"graphs":[]},"schema_type":"default","schema_type_options":null,"pillar_content":false,"robots_default":true,"robots_noindex":false,"robots_noarchive":false,"robots_nosnippet":false,"robots_nofollow":false,"robots_noimageindex":false,"robots_noodp":false,"robots_notranslate":false,"robots_max_snippet":"-1","robots_max_videopreview":"-1","robots_max_imagepreview":"large","priority":null,"frequency":"default","local_seo":null,"seo_analyzer_scan_date":"2026-03-26 11:05:35","breadcrumb_settings":null,"limit_modified_date":false,"open_ai":null,"ai":{"faqs":[],"keyPoints":[],"titles":[],"descriptions":[],"socialPosts":{"email":[],"linkedin":[],"twitter":[],"facebook":[],"instagram":[]}},"created":"2021-12-10 16:18:04","updated":"2026-06-30 23:43:11"},"aioseo_breadcrumb":"<div class=\"aioseo-breadcrumbs\"><span class=\"aioseo-breadcrumb\">\n\t<a href=\"https:\/\/www.supportpro.com\/blog\" title=\"Home\">Home<\/a>\n<\/span><span class=\"aioseo-breadcrumb-separator\">&raquo;<\/span><span class=\"aioseo-breadcrumb\">\n\t<a href=\"https:\/\/www.supportpro.com\/blog\/category\/miscellaneous\/\" title=\"Miscellaneous\">Miscellaneous<\/a>\n<\/span><span class=\"aioseo-breadcrumb-separator\">&raquo;<\/span><span class=\"aioseo-breadcrumb\">\n\tHow to Prevent .htaccess Hacks in a wordpress site?\n<\/span><\/div>","aioseo_breadcrumb_json":[{"label":"Home","link":"https:\/\/www.supportpro.com\/blog"},{"label":"Miscellaneous","link":"https:\/\/www.supportpro.com\/blog\/category\/miscellaneous\/"},{"label":"How to Prevent .htaccess Hacks in a wordpress site?","link":"https:\/\/www.supportpro.com\/blog\/how-to-prevent-htaccess-hacks-in-a-wordpress-site\/"}],"_links":{"self":[{"href":"https:\/\/www.supportpro.com\/blog\/wp-json\/wp\/v2\/posts\/751","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.supportpro.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.supportpro.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.supportpro.com\/blog\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/www.supportpro.com\/blog\/wp-json\/wp\/v2\/comments?post=751"}],"version-history":[{"count":13,"href":"https:\/\/www.supportpro.com\/blog\/wp-json\/wp\/v2\/posts\/751\/revisions"}],"predecessor-version":[{"id":16661,"href":"https:\/\/www.supportpro.com\/blog\/wp-json\/wp\/v2\/posts\/751\/revisions\/16661"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.supportpro.com\/blog\/wp-json\/wp\/v2\/media\/15217"}],"wp:attachment":[{"href":"https:\/\/www.supportpro.com\/blog\/wp-json\/wp\/v2\/media?parent=751"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.supportpro.com\/blog\/wp-json\/wp\/v2\/categories?post=751"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.supportpro.com\/blog\/wp-json\/wp\/v2\/tags?post=751"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}