Lewati ke konten
WordPress.org

Indonesia

  • Tema
  • Plugin
  • Berita
  • Bantuan
  • Tentang
  • Komunitas
  • Poliglot
  • Gunakan WordPress
Gunakan WordPress
WordPress.org

Plugin Directory

XO Security

  • Kirim plugin
  • Favorit saya
  • Login
  • Kirim plugin
  • Favorit saya
  • Login

XO Security

Oleh ishitaka
Unduh
  • Detail
  • Ulasan
  • Instalasi
  • Pengembangan
Bantuan

Deskripsi

XO Security is a plugin to enhance login related security.
This plugin does not write to .htaccess file. Besides Apache, LiteSpeed, Nginx and IIS also work.

Functions

  • Record login log.
  • Limit login attempts.
  • Add Captcha to the login form and comment form.
  • Change the URL of the login page.
  • Enable two-factor authentication (2FA) for login.
  • Login Alert.
  • Disable login by mail address.
  • Disable login by user name.
  • Change login error message.
  • Disable XML-RPC and XML-RPC Pingback.
  • Disable REST API.
  • Disable author archive page.
  • Remove comment author class of comments list.
  • Remove the username from the oEmbed response data.
  • WooCommerce login page protection.
  • Anti-spam comment.
  • Hide WordPress version information.
  • Edit the author slug.
  • Disable RSS and Atom feeds.
  • Activate maintenance mode.
  • Delete the readme.html file.

WordPress multisite considerations

If you set the login page separately for the main site and the subsite, you will not be able to use the password loss function of the subsite. We recommend that you set the login page to be common to all sites.

Tangkapan Layar

Login log page.
Login log page.
Status page.
Status page.
Login setting page.
Login setting page.
Profile page.
Profile page.

Instalasi

  1. Upload the XO-Security folder to the /wp-content/plugins/ directory.
  2. Activate the plugin through the Plugins menu in WordPress.
  3. Go to “Settings” -> “XO Security” and customize behaviour as needed.

Tanya Jawab

Login page is not displayed.

Please initialize the settings.

  • In wp_options table, the value of the option_name field (column) is to remove the record of “xo_security_options”.
  • If you have set the login page, please delete the file.

The CAPTCHA is not displayed.

Please install mbstring and GD module.

Ulasan

Awesome!

imawc 7 Februari 2026
This plugin is lightweight and easy to use, so I recommend it.

What a great plugin!

まーちゅう 25 Desember 2025
It’s my top recommendation for security plugins on WordPress sites.It includes all the security features I need.

基本的なセキュリティ機能が揃っています

altmmc 4 November 2023
タイトル通りです。AIOS等の定番プラグインと比べると機能は少ないですが、必要最低限の対策が揃っており設定が非常にわかりやすいので使いやすいです。これだけでは不安という人はBBQ Firewallを併用すると良いです。

This one is all you need !

Katsushi Kawamori 8 April 2023
This one plugin completes my security measures. Thanks !!

Great useful and easy to use!

Anonymous User 20656096 25 Oktober 2022
I recommend for those looking for a simple and reliable security plugin.

awesome

ulafox 19 Agustus 2021
This plugin has become one of my favorite plugins, it protects my website from malicious users, and the development team provides support very quickly! Thanks!
Baca semua 11 ulasan

Kontributor & Pengembang

“XO Security” adalah perangkat lunak open source. Berikut ini mereka yang sudah berkontribusi pada plugin ini.

Kontributor
  • ishitaka

“XO Security” telah diterjemahkan dalam 1 bahasa. Terima kasih kepada para penerjemah untuk kontribusi-nya.

Terjemahkan “XO Security” dalam bahasa Anda.

Tertarik mengembangkan?

Lihat kode, periksa repositori SVN , atau mendaftar ke log pengembangan melalui RSS.

Log Perubahan

3.11.0

  • Fixed a vulnerability that allowed two-factor authentication to be bypass.
  • Update minimum WordPress version to 6.0.
  • Update minimum PHP version to 7.2.

3.10.9

  • Supported WordPress 7.0.

3.10.8

  • Fixed a bug that sometimes prevented access to the login page.

3.10.7

  • Fixed a mistake in version 3.10.6.

3.10.6

  • Fixed an issue where the URL in the email sent when resetting a password was incorrect when changing the login page.

3.10.5

  • Supported WordPress 6.9.
  • Fixed a bug that sometimes prevented access to the login page.

3.10.4

  • Supported WordPress 6.6.

3.10.3

  • Supported CAPTCHA for login form using ajax.

3.10.2

  • Fixed a mistake in version 3.10.1.

3.10.1

  • Fixed a bug that sometimes prevented login with two-factor authentication.
  • Enhanced the judgment of comment bots.

3.10.0

  • Added option to change author base.
  • Added option to select CAPTCHA type.
  • Enhanced the judgment of comment bots.

See the previous changelogs here

Meta

  • Versi 3.11.0
  • Diperbarui 7 jam yang lalu
  • Instalasi Aktif 30,000+
  • Versi WordPress 6.0 atau yang terbaru
  • Diuji hingga 7.0.2
  • Versi PHP 7.2 atau yang terbaru
  • Bahasa

    English (US) dan Japanese.

    Terjemahkan dalam bahasa Anda

  • Tag
    Brute Forceloginmaintenancesecuritytwo factor
  • Tampilan lanjut

Rating

5 dari 5 bintang.
  • 11 ulasan 5-bintang 5 bintang 11
  • 0 ulasan 4-bintang 4 bintang 0
  • 0 ulasan 3-bintang 3 bintang 0
  • 0 ulasan 2-bintang 2 bintang 0
  • 0 ulasan 1-bintang 1 bintang 0

Your review

Lihat semua ulasan

Kontributor

  • ishitaka

Bantuan

Ada yang ingin dikatakan? Butuh bantuan?

Lihat forum bantuan

  • Tentang
  • Berita
  • Hosting
  • Privasi
  • Tampilan
  • Tema
  • Plugin
  • Pola
  • Belajar
  • Bantuan
  • Developer
  • WordPress.tv ↗
  • Terlibat
  • Kegiatan
  • Donasi ↗
  • Five for the Future
  • WordPress.com ↗
  • Matt ↗
  • bbPress ↗
  • BuddyPress ↗
WordPress.org
WordPress.org

Indonesia

  • Kunjungi akun X (sebelumnya Twitter) kami
  • Visit our Bluesky account
  • Kunjungi akun Mastodon kami
  • Visit our Threads account
  • Kunjungi halaman Facebook kami
  • Kunjungi akun Instagram kami
  • Kunjungi akun LinkedIn kami
  • Visit our TikTok account
  • Kunjungi channel YouTube kami
  • Visit our Tumblr account
Kode adalah Puisi.
The WordPress® trademark is the intellectual property of the WordPress Foundation.