• Hi, After many excercise , I got that on enable this plugin , website is loading like this screenshot # https://i.is.cc/1knk0OfE.png without loading css and scripts.

    When issue start , plugin add the following lines into .htacess file. After removing theses lines and keep WP default , it`s loading fine.

    Please guide me where is the issue and how can we fix it.

    =================================

    BEGIN WP Hide & Security Enhancer
    
    
    RewriteEngine On
    RewriteBase / RewriteRule .* - [E=WPH_REWRITE_1:f82d8005] RewriteCond %{REQUEST_URI} /+[^.]+$
    RewriteCond %{REQUEST_METHOD} !POST
    RewriteRule ^(.+[^/])$ %{REQUEST_URI}/ [R=301,END] RewriteRule ^dwklwe23/wsizxce.css /wp-content/plugins/wp-hide-security-enhancer-pro/router/file-process.php?action=style-clean&file_path=/wp-content/themes/generatepress/style.css&blog_id=1 [END,QSA] RewriteRule ^dwklwe23/wsizxce.css /wp-content/themes/generatepress/style.css [END,QSA] RewriteCond %{REQUEST_URI} ([^/]+)/(feed|rdf|rss|rss2|atom)/?$ [OR]
    RewriteCond %{REQUEST_URI} ^(feed|rdf|rss|rss2|atom)/?$
    RewriteRule . /index.php?wph-throw-404 [END] RewriteRule ^dwklwe23/(.+) /wp-content/themes/generatepress/$1 [END,QSA] RewriteRule ^hularec/(.+) "/wp-content/plugins/advanced-gutenberg/$1" [END,QSA]
    RewriteRule ^secomon/(.+) "/wp-content/plugins/custom-css-js/$1" [END,QSA]
    RewriteRule ^henotuv/(.+) "/wp-content/plugins/echo-knowledge-base/$1" [END,QSA]
    RewriteRule ^memujos/(.+) "/wp-content/plugins/generateblocks-pro/$1" [END,QSA]
    RewriteRule ^henohuv/(.+) "/wp-content/plugins/generateblocks/$1" [END,QSA]
    RewriteRule ^cutodig/(.+) "/wp-content/plugins/gp-premium/$1" [END,QSA]
    RewriteRule ^sdvxz54/(.+) "/wp-content/plugins/gtm-kit/$1" [END,QSA]
    RewriteRule ^sujosib/(.+) "/wp-content/plugins/happyforms/$1" [END,QSA]
    RewriteRule ^pomanob/(.+) "/wp-content/plugins/hostiko-domain-checker/$1" [END,QSA]
    RewriteRule ^gugibap/(.+) "/wp-content/plugins/html-after-url/$1" [END,QSA]
    RewriteRule ^yuohbf/(.+) "/wp-content/plugins/internal-links/$1" [END,QSA]
    RewriteRule ^pcsdfrwas/(.+) "/wp-content/plugins/livehelp/$1" [END,QSA]
    RewriteRule ^tejedam/(.+) "/wp-content/plugins/megamenu-pro/$1" [END,QSA]
    RewriteRule ^libedev/(.+) "/wp-content/plugins/megamenu/$1" [END,QSA]
    RewriteRule ^reswasdrthn/(.+) "/wp-content/plugins/seo-by-rank-math-pro/$1" [END,QSA]
    RewriteRule ^jkjdshk/(.+) "/wp-content/plugins/seo-by-rank-math/$1" [END,QSA]
    RewriteRule ^jugabab/(.+) "/wp-content/plugins/testimonial-slider-and-showcase/$1" [END,QSA]
    RewriteRule ^jweqiihd/(.+) "/wp-content/plugins/turn-rank-math-faq-block-to-accordion/$1" [END,QSA]
    RewriteRule ^gigumoq/(.+) "/wp-content/plugins/wp-rocket/$1" [END,QSA]
    RewriteRule ^ceevecix/(.+) /wp-content/plugins/$1 [END,QSA] RewriteRule ^wp-content/plugins(.+) /index.php?wph-throw-404 [END] RewriteRule ^iroogevu/(.+) /wp-includes/$1 [QSA,END] RewriteRule ^wp-includes(.+) /index.php?wph-throw-404 [END] RewriteRule ^eetchoth/(.+) /wp-content/uploads/$1 [L,QSA] RewriteRule ^wp-content/uploads/(.+) /eetchoth/$1 [R=301,END,QSA] RewriteRule ^wsgfhtjyghv /wp-activate.php [END,QSA] RewriteRule ^biguqef.php(.*) /wp-login.php$1 [END,QSA] RewriteRule ^wsfyuh /wp-signup.php [END,QSA] RewriteRule ^pagugid.php /xmlrpc.php [END,QSA] RewriteCond %{ENV:REDIRECT_STATUS} ^$
    RewriteRule ^wp-login.php /index.php?wph-throw-404 [END] RewriteCond %{HTTP_USER_AGENT} !^WordPress\/[0-9.\ ]+CFNetwork [NC]
    RewriteRule ^xmlrpc.php /index.php?wph-throw-404 [END] RewriteRule ^wp-register.php /index.php?wph-throw-404 [END] RewriteRule ^wp-signup.php /index.php?wph-throw-404 [END] RewriteCond %{REMOTE_ADDR} !^66.23.237.133$
    RewriteRule ^([_0-9a-zA-Z-]+/)?wp-cron.php /index.php?wph-throw-404 [END] RewriteRule ^wp-activate.php /index.php?wph-throw-404 [END] RewriteRule ^readme.html /index.php?wph-throw-404 [END] RewriteRule ^license.txt /index.php?wph-throw-404 [END] RewriteCond %{REQUEST_URI} !/wp-activate.php [NC]
    RewriteCond %{REQUEST_URI} !/wp-cron.php [NC]
    RewriteCond %{REQUEST_URI} !/wp-signup.php [NC]
    RewriteCond %{REQUEST_URI} !/wp-comments-post.php [NC]
    RewriteCond %{REQUEST_URI} !/wp-login.php [NC]
    RewriteRule ^wp-([a-z-])+.php /index.php?wph-throw-404 [END] RewriteCond %{REQUEST_URI} /manage$
    RewriteRule ^(.)$ /manage/ [R=301,END] RewriteRule ^manage(.) /wp-admin$1 [END,QSA] RewriteRule ^bileemsu.php /wp-comments-post.php [END,QSA] RewriteRule ^wp-comments-post.php /index.php?wph-throw-404 [END] RewriteCond %{ENV:REDIRECT_STATUS} ^$
    RewriteRule ^wp-admin(.+) /index.php?wph-throw-404 [L] RewriteRule ^eewhiloa/(.+) /wp-content/$1 [QSA,L] RewriteCond %{ENV:REDIRECT_STATUS} ^$
    RewriteRule ^wp-content/(.+) /index.php?wph-throw-404 [END]
    Header set X-XSS-Protection "1; mode=block" Header set X-Permitted-Cross-Domain-Policies "all" Header set X-Frame-Options "SAMEORIGIN" Header set X-Download-Options "noopen" Header set X-Content-Type-Options "nosniff" Header set Cross-Origin-Resource-Policy "cross-origin" Header set Cross-Origin-Opener-Policy "same-origin" Header set Cross-Origin-Embedder-Policy "require-corp" Header unset X-Powered-By Header unset X-Pingback END WP Hide & Security Enhancer BEGIN WordPress The directives (lines) between "BEGIN WordPress" and "END WordPress" are dynamically generated, and should only be modified via WordPress filters. Any changes to the directives between these markers will be overwritten. RewriteEngine On RewriteRule .* - [E=HTTP_AUTHORIZATION:%{HTTP:Authorization}] RewriteBase / RewriteRule ^index.php$ - [L] RewriteCond %{REQUEST_FILENAME} !-f RewriteCond %{REQUEST_FILENAME} !-d RewriteRule . /index.php [L] END WordPress

    Thanks Advance.

    The page I need help with: [log in to see the link]

Viewing 3 replies - 1 through 3 (of 3 total)
  • Plugin Contributor Maya

    (@tdgu)

    Hi,
    The plugin uses the rewrites to map the custom assets URLs to actual files. In your site print-screen, apparently the assets do not load anymore, meaning possible the rewrites do not work. Can you check with your host if the rewrites are active for your account ?

    What hosting type you run ? (e.g. apache, litespeed etc ).

    Can you make sure you cleared the site cache? What cache plugin you run ?

    I also suggest to disable the block default options ( e.g. WP Hide > Rewrites > WP Content, WP Hide > Rewrites > WP Includes etc ) until make sure the rewrites apply correctly. Also you could reset all options and use just a single customisation ( like WP Hide > Rewrites > WP Content ). If that works, everything else should apply just fine.

    Thanks

    Thread Starter WebHostingPeople

    (@webhostingpeople)

    Hi,

    Thanks for guide. Our VPS server is apache. I was tested withour cache plugin. I could not understand of your given all headers. But I created a sample setup for header. After that now everything is loading perfectly. But getting slow down the speed of Website at GTMetrix. After enable the WP Rocket Cache Plugin also.

    The current protection level is 83%
    Excelent

    Is sample setup is perfect ? I am not using your plugin firewall. server is nginx

    Please guide me about the headers which is the best related to all aspects.

    Plugin Contributor Maya

    (@tdgu)

    Hi,
    The Security Headers are a powerful layer of security for a site, still, they are difficult to master. Each of the sites uses its own configuration making the headers specific to each instance. While the sample set-up works for every install, it’s intended to be used as a starting point for further adjustments. I suggest checking with the header documentation to better understand what each does and how it can be used in conjunction with others. Then you should be able to make adjustments.
    You mentioned the firewall options, if you actually use WP Hide PRO, please consider contacting our support through the plugin website for fast and extended support.

    Thanks

Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘everyting block’ is closed to new replies.