If you’ve ever viewed the core configuration file (
wp-config.php) for a WordPress site then you’ll probably have noticed a section defining eight WordPress constants relating to security keys and salts:
wp-config.php is located in the root folder of your WordPress installation by default.
These constants contain security keys and salts which are used internally by WordPress to add an additional layer of authentication and to enhance security.
&& sudo chmod +x ./wpsucli && sudo install ./wpsucli /usr/local/bin/wpsucli
This will make an executable script globally available via the
wpsucli command. You can run it on your local machine to actively search for all instances of WordPress config files and replace the security keys/salts with new values directly from the WordPress secret key API URL.
When running the script on a remote server, it’s recommended to do so from the root folder, i.e.
cd /, and then run
wpsucli. For more details about the script, see the main
See more from Net Tuts