Snelle en veilige WordPress website met plugins of .htaccess

# Gebruik caching van je bestanden
Header unset Pragma
FileETag None
Header unset ETag

<IfModule mod_expires.c>
ExpiresActive On
ExpiresByType image/ico “access 1 year”
ExpiresByType image/jpg “access 1 year”
ExpiresByType image/jpeg “access 1 year”
ExpiresByType image/gif “access 1 year”
ExpiresByType image/png “access 1 year”
ExpiresByType image/svg+xml “access 1 year”
ExpiresByType image/x-icon “access 1 year”
ExpiresByType text/css “access 1 month”
ExpiresByType text/html “access 1 month”
ExpiresByType video/ogg “access 1 year”
ExpiresByType audio/ogg “access 1 year”
ExpiresByType video/mp4 “access 1 year”
ExpiresByType video/webm “access 1 year”
ExpiresByType application/pdf “access 1 month”
ExpiresByType application/javascript “access 1 month”
ExpiresByType application/x-javascript “access 1 month”
ExpiresByType application/x-shockwave-flash “access 1 month”
ExpiresByType application/x-font-woff “access 1 year”
ExpiresByType application/vnd.ms-fontobject “access 1 month”
ExpiresByType application/atom+xml “access 1 month”
ExpiresByType application/json “access plus 0 seconds”
ExpiresByType application/ld+json “access plus 0 seconds”
ExpiresByType application/vnd.geo+json “access plus 0 seconds”
ExpiresByType application/xml “access plus 0 seconds”
ExpiresByType text/xml “access plus 0 seconds”
ExpiresDefault “access 10 days”
</IfModule>

# gZIP compressie
<IfModule mod_deflate.c>
AddOutputFilterByType DEFLATE text/plain
AddOutputFilterByType DEFLATE text/html
AddOutputFilterByType DEFLATE text/xml
AddOutputFilterByType DEFLATE text/css
AddOutputFilterByType DEFLATE application/xml
AddOutputFilterByType DEFLATE application/xhtml+xml
AddOutputFilterByType DEFLATE application/rss+xml
AddOutputFilterByType DEFLATE application/javascript
AddOutputFilterByType DEFLATE application/x-javascript
</IfModule>

# Houd de verbinding open
<IfModule mod_headers.c>
Header set Connection keep-alive
</IfModule>

# Blokkeer toegang tot belangrijke wordpress files

RewriteEngine On
RewriteBase /
RewriteRule ^wp-admin/includes/ – [F,L] RewriteRule !^wp-includes/ – [S=3] RewriteRule ^wp-includes/[^/]+\.php$ – [F,L] RewriteRule ^wp-includes/js/tinymce/langs/.+\.php – [F,L] RewriteRule ^wp-includes/theme-compat/ – [F,L]

order allow,deny
deny from all

order allow,deny
deny from all

# Blokkeer XML-RPC wanneer je geen remote toegang tot WP nodig hebt

Order Allow,Deny
deny from all

Require all denied


Order allow,deny
Deny from all

# Zorg dat mensen je folders niet kunnen zien
Options All -Indexes

# Stop spam

RewriteEngine On

# Reduce Comment Spam – Security > Settings > WordPress Tweaks > Comment Spam
RewriteCond %{REQUEST_METHOD} POST
RewriteCond %{REQUEST_URI} /wp-comments-post\.php$
RewriteCond %{HTTP_USER_AGENT} ^$ [OR] RewriteCond %{HTTP_REFERER} !^https?://(([^/]+\.)?obesitaszorgvragenlijsten\.nl|jetpack\.wordpress\.com/jetpack-comment)(/|$) [NC] RewriteRule ^.* – [F]