WordPress uses those markers to put its rules between. I never have and never would put custom rules in there. Check out insert_with_markers() and save_mod_rewrite_rules() in wp-admin/includes/misc.php Most notably this comment block which answers your question: /** * Inserts an array of strings into a file (.htaccess ), placing it between * BEGIN and END … Read more
Solved it! // Register the variables that will be used as parameters on the url function add_my_var($public_query_vars) { $public_query_vars[] = ‘extra_slug’; return $public_query_vars; } add_filter(‘query_vars’, ‘add_my_var’); // Build the rewrite rules, for the extra parameter function do_rewrite() { add_rewrite_rule(‘(accommodation)/[/]?([^/]*)$’, ‘index.php?pagename=accommodation&extra_slug=$matches[2]’,’top’); } add_action(‘init’, ‘do_rewrite’); // The parameter is now accessible get_query_var(‘extra_slug’)
But if you protect wp-login.php, how would a hacker even get into the dashboard anyways? An attacker could try to hijack or forge a valid authentication cookie. Recently there was a possibly vulnerability which made it »easier« to forge such a cookie: CVE-2014-0166 It was fixed with Version 3.7.3/3.8.3 How does “Code A” compare to … Read more
My suggestion is: use the same standard .htaccess configuration for WordPress on a single domain in each WordPress directory. <IfModule mod_rewrite.c> RewriteEngine On RewriteBase / RewriteRule ^index\.php$ – [L] RewriteCond %{REQUEST_FILENAME} !-f RewriteCond %{REQUEST_FILENAME} !-d RewriteRule . /index.php [L] </IfModule> Along with it, add a small CODE to make sure users are redirected to the … Read more
another option – redirect /admin/ to wp-login.php with a parse_query action hook: function wpa53048_parse_query( $query ){ if( $query->query_vars[‘pagename’] == ‘admin’ ): wp_redirect( wp_login_url() ); exit; endif; } add_action( ‘parse_query’, ‘wpa53048_parse_query’ ); EDIT Well the above apparently only works with certain permalink structures. Here’s another method hooked to parse_request: function wpa53048_parse_request( $query ){ if( $query->request == … Read more
What I generally do Install WP in sub directory. Open permalink set required permalink. Open settings->general link Remove the sub directory name from ‘Site Address (URL)’ Cut the index.php and .htaccess files from sub directory and paste them to root change code in index.php as you did. Again access settings->permalink save the form Done. You … Read more
This appears to have to do with redirect_guess_404_permalink() called on line 96 of wp-includes/canonical.php. Just to test, I added a return false; to the first line of the redirect_guess_404_permalink() function, and that seemed to stop this odd behavior. I’m poking around a bit, but so far I don’t see a good way to fix this … Read more
How to redirect HTTPS to HTTP and www to non-www URL with .htaccess: First make sure HTTPS is working and valid. It’s easy (and free) to do with Let’s Encrypt these days. Note: Although you are redirecting HTTPS to HTTP, I’d recommend doing it the opposite, i.e. HTTP to HTTPS. Better for Security, SEO & … Read more
Personal Opinion: I had the same thing with (mt) mediatemple twice last year. They told me/us that it was a wordpress issue, but it wasn’t. I heard the same from dreamhost last year. So: don’t think about it too much, just remove the hack and blame your host (again). Anyway: You could read this thread. … Read more
Yahoo doesn’t allow users access to the htaccess file which means that you can’t the mod_rewrite rules needed for custom permlinks. The Only way around it that i’ve heard it works (never tried it myself) is to add /index.php/ to the beginning of your custom structure so: Go to Permalink Settings > Select Custom Structure. … Read more