{"id":17608,"date":"2011-03-01T19:59:47","date_gmt":"2011-03-01T14:29:47","guid":{"rendered":"https:\/\/www.quickonlinetips.com\/archives\/?p=17608"},"modified":"2020-05-24T10:07:29","modified_gmt":"2020-05-24T04:37:29","slug":"wordpress-secret-keys-better-wordpress-security","status":"publish","type":"post","link":"https:\/\/www.quickonlinetips.com\/archives\/2011\/03\/wordpress-secret-keys-better-wordpress-security\/","title":{"rendered":"Update WordPress Secret Keys for Better WordPress Security"},"content":{"rendered":"<p>Over the years, <strong>WordPress secret keys <\/strong>have added to WordPress security. Update your WordPress secure keys and log out all users to enhance your WordPress security.<\/p>\n<h3>WordPress Security Keys<\/h3>\n<p>I had an opportunity to check some old WordPress blogs and they had outdated incomplete WordPress secret keys. WordPress Secret Keys was a WordPress security feature introduced <a href=\"https:\/\/www.quickonlinetips.com\/archives\/2008\/04\/wordpress-secret-key-for-secure-cookies\/\">3 years back<\/a> in WordPress 2.5 for better\u00a0cookie security.<\/p>\n<p>While earlier the WordPress secret key was one line of extra long random code, over the years it is now 8 lines of complex random code. This is what it looks like in current <code>wp-config.php<\/code> files.<\/p>\n<p><img decoding=\"async\" class=\"alignnone size-full wp-image-17609\" title=\"wordpress-secret-keys\" src=\"https:\/\/www.quickonlinetips.com\/archives\/wp-content\/uploads\/wordpress-secret-keys.png\" alt=\"wordpress secret keys\" width=\"500\" height=\"88\" srcset=\"https:\/\/www.quickonlinetips.com\/archives\/wp-content\/uploads\/wordpress-secret-keys.png 500w, https:\/\/www.quickonlinetips.com\/archives\/wp-content\/uploads\/wordpress-secret-keys-150x26.png 150w, https:\/\/www.quickonlinetips.com\/archives\/wp-content\/uploads\/wordpress-secret-keys-300x52.png 300w\" sizes=\"(max-width: 500px) 100vw, 500px\" \/><\/p>\n<p>The 8 security keys are AUTH_KEY, SECURE_AUTH_KEY, LOGGED_IN_KEY, NONCE_KEY; with corresponding salts: AUTH_SALT, SECURE_AUTH_SALT, LOGGED_IN_SALT, and NONCE_SALT will ensure your site is harder to hack and crack by WordPress hackers.<\/p>\n<h3>WordPress Secret Key Generator<\/h3>\n<p>So how do you create that kind of random code? The <a href=\"http:\/\/api.wordpress.org\/secret-key\/1.1\/\" rel=\"noopener\">old secret key generator<\/a> created only 4 lines of code, but the <a href=\"https:\/\/api.wordpress.org\/secret-key\/1.1\/salt\/\" rel=\"noopener\">new secret code generator<\/a> will create 8 lines of code for you to cut and paste into your WordPress wp-config.php file.<\/p>\n<p>Remember to use a simple text editor (I use Notepad++) else you might mess up your most important wp-config.php file. \u00a0Remember changing these values will invalidate all existing cookies and logout all WordPress users on your site.<\/p>\n<p>Check your WordPress wp-config.php in your WordPress installation directory now and confirm if 8 lines of secret keys exist. Anyway it is a good idea to change it sometimes and logout all users, just incase some hacker is secretly logged in. Good luck.<\/p>\n<p><em>NB &#8211; <span style=\"color: #ff0000;\">Edit wp-config.php only if you know what you are doing<\/span>, else your site could go offline easily. Try at your own risk or seek professional WordPress help.<\/em><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Over the years, WordPress secret keys have added to WordPress security. Update your WordPress secure keys and log out all&#8230;<\/p>\n","protected":false},"author":4,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_kad_post_transparent":"","_kad_post_title":"","_kad_post_layout":"","_kad_post_sidebar_id":"","_kad_post_content_style":"","_kad_post_vertical_padding":"","_kad_post_feature":"","_kad_post_feature_position":"","_kad_post_header":false,"_kad_post_footer":false,"_kad_post_classname":"","footnotes":""},"categories":[6,7],"tags":[49,17],"class_list":["post-17608","post","type-post","status-publish","format-standard","hentry","category-blogging","category-security","tag-tutorials","tag-wordpress"],"_links":{"self":[{"href":"https:\/\/www.quickonlinetips.com\/archives\/wp-json\/wp\/v2\/posts\/17608","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.quickonlinetips.com\/archives\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.quickonlinetips.com\/archives\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.quickonlinetips.com\/archives\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/www.quickonlinetips.com\/archives\/wp-json\/wp\/v2\/comments?post=17608"}],"version-history":[{"count":0,"href":"https:\/\/www.quickonlinetips.com\/archives\/wp-json\/wp\/v2\/posts\/17608\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.quickonlinetips.com\/archives\/wp-json\/wp\/v2\/media?parent=17608"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.quickonlinetips.com\/archives\/wp-json\/wp\/v2\/categories?post=17608"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.quickonlinetips.com\/archives\/wp-json\/wp\/v2\/tags?post=17608"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}