Horje
Avoid to be easily the target of the HTTPS BREACH vulnerability. Wordpress Tutorial

Noted That:

  • To install correctly this baw-breach-avoider.zip .
  • Fisrt Download the baw-breach-avoider.zip to your computer
  • Extract/Open baw-breach-avoider.zip to Your Computer.
  • Then, Find readme.txt file inside baw-breach-avoider.zip and Open readme.txt .
  • Now, Read the Requirements of this plugin. Which Wordpress Version and PHP Version are required to run this Plugin in Your Wordpress Site.
  • Then, Follow the Tips Below.

Start the Tips:

1. First Download " baw-breach-avoider.zip " Plugin to your Local Computer. (Click Download)

2. Then, Login to your " yourdomain.com/wp-admin " Dashboard.

/stack/wp/e1593231376d7d849d2-4597-4fa3-a6ff-1eca18f72aab.png

3. Then, Click on " Plugins " + " Add New " from left sidemenu of Dashboard.

/stack/wp/e1593231378Screenshot20.png

4. Now, Click on "Upload Plugin" button.

/stack/wp/e1593231380Screenshot-2019-4-2AddPluginsHorjeWordPress.png

 

5. Now, Browse " baw-breach-avoider.zip "  Downloaded plugin from your computer, Where you downloaded baw-breach-avoider.zip According to Step – 1 Above then, click on " Install Now"

/stack/wp/e15931461531577025694plugin.png

6. Now, Click on " Active Plugin"

/stack/wp/e15932313830ca45529-bf73-4101-8178-53ae60ce549f.png

7. Then, See left sidemenu. " BREACH Avoider " folder is added on left sidemenu. Now, Click on " BREACH Avoider " folder.

   Noted that: If you do not see " BREACH Avoider " folder on left sidemenu then, see at left sidemenu " Settings " or " Tools ".

8. Now you configure yourself oR Watch video tutorial below about  BREACH Avoider Configurtions and Settings or How to work " BREACH Avoider " in your WordPress site.

 

oR

After Activated Plugin According to Step-6 then,

  1. Go to " Plugins " + " Installed Plugin " from Wordpress Admin Panel Leftside Menu.
  2. or Direct go to: https://yourdomain/wp-admin/plugins.php
  3. Then, Find " BREACH Avoider " Activated Plugin from Plugin List.
  4. Then, Click on " Settings " from Plugin that is BREACH Avoider
  5. Now, Edit/Add/Config the setting and Click on " Save Changes " button,
WP Plugin Setting



Guide
  1. Extract the plugin folder from the downloaded ZIP file.
  2. Upload Bthe folder to your /wp-content/plugins/ directory.
  3. Activate the plugin from the “Plugins” page in your Dashboard.
  4. Done!

You can (and i encourage you to do it) define 2 constant in wp-config.php file :

BBA_REPEATER : used by this plugin to add a new secret srting in each nonces (e number used once to create a secure token and avoid CSRF flaws), default is 2, min is 1, no max, just change it.

BBA_NONCE_LENGTH : From 4 to 32 with 10 for default value, you can modify the length the each nonces in WordPress, the longer, the better

Also, WordPress includes a “nonce_life” filter hook. Its default value is 1 day, i suggest you to low this value, like 12 hours or 6 hours (DAY_IN_SECONDS /2 or /4)

avoid , easily , target , https , breach , vulnerability , tutorial ,

Name
   How to add Collabpress in Wordpress
   How to add Gravitec Net Web Push Notifications in Wordpress
   How to add Gf2pdf in Wordpress
   How to add Wp Security Optimizer in Wordpress
   How to add Sidemenu in Wordpress 

Read Article
https://develop.horje.com/learn/1434/reference

 

Horje