Beschrijving

By using Salt Shaker plugin, you’ll be able to harden your WordPress security. It allows you to change the salt keys either manually or automatically.

Try it out on a free dummy site:
Click here and you’ll get the chance to see it in action → https://demo.tastewp.com/salt-shaker

Why Use SALT Keys in WordPress?

When you log in to WordPress, you have the option to remain logged in long-term. To achieve this, WordPress stores your login data in cookies instead of in a PHP session. Malicious individuals can hijack your cookies through various means, leaving your website vulnerable.

To make it harder for attackers to use cookie data, you can take advantage of SALT keys. WordPress SALT keys encrypt your password, making it harder to guess. What’s more, it’s next to impossible for hackers to simply ‘unscramble’ the result in order to get at the original password.

Schermafdrukken

Plugin instellingen

Installatie

Upload de salt-shaker folder naar de /wp-content/plugins/map.
Activeer de plugin via het Plugins menu in WordPress.
Ga naar het Tools > Salt Shaker menu om de plugin te configureren.

FAQ

Nothing happens?

Make sure that wp-config.php file has the salt keys. If for any reason the keys aren’t there; you can always generate a set of keys from this link https://api.wordpress.org/secret-key/1.1/salt/ and add it to your wp-config.php file. Once that’s done, the plugin will be able to shake them based on your settings.

Plugin werkt niet of hapert?

Omschrijf het probleem gedetailleerd op het support forum en wij gaan aan de slag om het op te lossen.

Custom wp-config.php location?

You can use this filter to define the file location salt_shaker_salts_file. Example:
In this example, the new location of the config file is in a folder that’s outside WordPress location in a folder called wpsecret. Make sure to replace it with your secret location 😉

function salt_shaker_new_file($salts_file_name) {
    $salts_file_name = '../wpsecret/wp-config';
    return $salts_file_name;
}

add_filter('salt_shaker_salts_file', 'salt_shaker_new_file');

Beoordelingen

now4dw 9 maart 2023

This is a simple, elegant and yet powerful addition to any security you might already have on your site/sites. I have been the victim of cookie hijacking. It wasn't a pleasant experience! This plugin ensures you and your team log out according to a fixed schedule resulting in a fresh cookie when you log back in. Indispensable!

gopalb123 28 februari 2023

This plugin (Salt Shaker) is amazing, and every WP website needs it. Use this plugin to keep your website secure.<gwmw style="display:none;"></gwmw>

Tawfiq Makhamreh 12 januari 2023

this is great plugin, each site should have it. you will not have it with other plugins, keep your site safe

saadezz 28 juni 2022

The plugin works fine

Breinbrouwsels 14 september 2021 2 reacties

This plugin left me with a white screen

Md. Redwan Hossain 14 juni 2021 5 reacties

Great plugin.

Lees alle 23 beoordelingen

Bijdragers & ontwikkelaars

“Salt Shaker” is open source software. De volgende personen hebben bijgedragen aan deze plugin.

“Salt Shaker” is vertaald in 5 talen. Dank voor de vertalers voor hun bijdragen.

Vertaal “Salt Shaker” naar jouw taal.

Interesse in ontwikkeling?

Bekijk de code, haal de SVN repository op, of abonneer je op het ontwikkellog via RSS.

Changelog

1.4.0

WordPress 6.2 compatibility.
Support for wp-salt files.
Introducing Salt Shaker PRO.

1.3.2

WordPress 6.1 compatibility.

1.3.1

WordPress 6.0 compatibility.
Fix an issue with the AUTH_KEY and AUTH_SALT keys not being changed.

1.3.0

Tested with WordPress 5.9.

1.2.9

WordPress 5.8 compatibility.

1.2.8

WordPress 5.7 compatibility.

1.2.7

WordPress 5.5 compatibility.

1.2.6

WordPress 5.4 compatibility.
Replacing some functions with standard WP functions.

1.2.5

Enhanced internationalization.
Compatibel met WordPress 5.3

1.2.4

Keeping the original permissions of the config file.
Performance improvement

1.2.3

Changing the config permission to 0640
Added: filters for additional salts

1.2.2

Getest met WordPress 5.1
Added: link to the settings page from the plugins page.
Added: redirect to the login page after the immediate change action.
Added: check if wp-config.php is writable. How the heck this was missing?!
Added: Filter to define a custom salts file. salt_shaker_salts_file

1.2.1

Tested with the upcoming WordPress 5.0
#11 – Added more interval times, quarterly and bianually.
Fixed an issue with wp-config being in outside the root directory.
Fout hersteld in updaten cron-taak. Oude (vorige) cron-taak wordt nu verwijderd.

1.2

Getest met WordPress 4.9
#9 – Wijzig salts als wp-config.php één niveau boven de document root wordt verplaatst
Rechten voor wp-config.php goed instellen na wijziging van de salts overeenkomstig aanbevelingen in de Codex.

1.1.6

#8 – Regeleindes veranderen in LF

1.1.5

Beveiliging verbeterd

1.1.4

Improvements:
** Ensure the user is administrator before processing AJAX requets
** Escape attributes using esc_attr_e

1.1.3

Compatibiliteit met WordPress 4.8.

1.1.2

Compatibiliteit met WordPress 4.7.

1.1.1

Arabische vertaling bewerkt.

1.1

Enkele verbeteringen
Klaar voor meertaligheid

1.0

Initiële versie