From fda41f1571b335f296f49563fadbf5c0c87d171e Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Holger=20Ko=CC=88nemann?= <office@holgerkoenemann.de>
Date: Sun, 15 May 2016 20:37:34 +0200
Subject: [PATCH] Adding basic security to theme
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Adding security.php to /inc folder with some basic security stuff. For
example: Removing „Generator“ info from markup and other WP specific
markup which is used by hackers to identify weak WP installs
---
 inc/security.php | 29 +++++++++++++++++++++++++++++
 1 file changed, 29 insertions(+)
 create mode 100644 inc/security.php

diff --git a/inc/security.php b/inc/security.php
new file mode 100644
index 0000000..03036d6
--- /dev/null
+++ b/inc/security.php
@@ -0,0 +1,29 @@
+<?php
+/* Inspired by Simon Bradburys cleanup.php fromb4st theme https://github.com/SimonPadbury/b4st */
+/*
+Removes the generator tag with WP version numbers. Hackes will use this to find weak and old WP installs
+*/
+function no_generator()  { 
+    return ''; 
+}
+add_filter( 'the_generator', 'no_generator' );
+
+/*
+Clean up wp_head() from unused or unsecure stuff
+*/
+remove_action('wp_head', 'wp_generator');
+remove_action('wp_head', 'rsd_link');
+remove_action('wp_head', 'wlwmanifest_link');
+remove_action('wp_head', 'index_rel_link');
+remove_action('wp_head', 'feed_links', 2);
+remove_action('wp_head', 'feed_links_extra', 3);
+remove_action('wp_head', 'adjacent_posts_rel_link_wp_head', 10, 0);
+remove_action('wp_head', 'wp_shortlink_wp_head', 10, 0);
+/*
+Show less info to users on failed login for security.
+(Will not let a valid username be known.)
+*/
+function show_less_login_info() { 
+    return "<strong>ERROR</strong>: Stop guessing!"; 
+}
+add_filter( 'login_errors', 'show_less_login_info' );