{"id":141560,"date":"2020-12-25T10:43:20","date_gmt":"2020-12-25T07:43:20","guid":{"rendered":"https:\/\/en.buradabiliyorum.com\/how-to-protect-wordpress-files-uploads-folder\/"},"modified":"2020-12-25T10:43:20","modified_gmt":"2020-12-25T07:43:20","slug":"how-to-protect-wordpress-files-uploads-folder","status":"publish","type":"post","link":"https:\/\/buradabiliyorum.com\/en\/how-to-protect-wordpress-files-uploads-folder\/","title":{"rendered":"#How to Protect WordPress Files &#038; Uploads Folder"},"content":{"rendered":"<div id=\"ez-toc-container\" class=\"ez-toc-v2_0_84 counter-hierarchy ez-toc-counter ez-toc-custom ez-toc-container-direction\">\n<p class=\"ez-toc-title\" style=\"cursor:inherit\">Table of Contents<\/p>\n<label for=\"ez-toc-cssicon-toggle-item-6a2468b4e7fcb\" class=\"ez-toc-cssicon-toggle-label\"><span class=\"\"><span class=\"eztoc-hide\" style=\"display:none;\">Toggle<\/span><span class=\"ez-toc-icon-toggle-span\"><svg style=\"fill: #dd3333;color:#dd3333\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" class=\"list-377408\" width=\"20px\" height=\"20px\" viewBox=\"0 0 24 24\" fill=\"none\"><path d=\"M6 6H4v2h2V6zm14 0H8v2h12V6zM4 11h2v2H4v-2zm16 0H8v2h12v-2zM4 16h2v2H4v-2zm16 0H8v2h12v-2z\" fill=\"currentColor\"><\/path><\/svg><svg style=\"fill: #dd3333;color:#dd3333\" class=\"arrow-unsorted-368013\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"10px\" height=\"10px\" viewBox=\"0 0 24 24\" version=\"1.2\" baseProfile=\"tiny\"><path d=\"M18.2 9.3l-6.2-6.3-6.2 6.3c-.2.2-.3.4-.3.7s.1.5.3.7c.2.2.4.3.7.3h11c.3 0 .5-.1.7-.3.2-.2.3-.5.3-.7s-.1-.5-.3-.7zM5.8 14.7l6.2 6.3 6.2-6.3c.2-.2.3-.5.3-.7s-.1-.5-.3-.7c-.2-.2-.4-.3-.7-.3h-11c-.3 0-.5.1-.7.3-.2.2-.3.5-.3.7s.1.5.3.7z\"\/><\/svg><\/span><\/span><\/label><input type=\"checkbox\"  id=\"ez-toc-cssicon-toggle-item-6a2468b4e7fcb\" checked aria-label=\"Toggle\" \/><nav><ul class='ez-toc-list ez-toc-list-level-1 ' ><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-1\" href=\"https:\/\/buradabiliyorum.com\/en\/how-to-protect-wordpress-files-uploads-folder\/#How_to_Restrict_wp-contentuploads_Access_to_Logged_In_Users\" >How to Restrict wp-content\/uploads Access to Logged In Users<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-2\" href=\"https:\/\/buradabiliyorum.com\/en\/how-to-protect-wordpress-files-uploads-folder\/#How_to_Prevent_Hotlinking_of_Media_Files\" >How to Prevent Hotlinking of Media Files<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-3\" href=\"https:\/\/buradabiliyorum.com\/en\/how-to-protect-wordpress-files-uploads-folder\/#Limit_WordPress_Media_Library_Access_with_PDA_Gold\" >Limit WordPress Media Library Access with PDA Gold<\/a><ul class='ez-toc-list-level-3' ><li class='ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-4\" href=\"https:\/\/buradabiliyorum.com\/en\/how-to-protect-wordpress-files-uploads-folder\/#Restrict_WordPress_Media_Visibility_to_Authorized_Users\" >Restrict WordPress Media Visibility to Authorized Users\u00a0<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-5\" href=\"https:\/\/buradabiliyorum.com\/en\/how-to-protect-wordpress-files-uploads-folder\/#Block_Google_Indexing_of_Private_Files\" >Block Google Indexing of Private Files<\/a><\/li><\/ul><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-6\" href=\"https:\/\/buradabiliyorum.com\/en\/how-to-protect-wordpress-files-uploads-folder\/#How_to_Protect_WordPress_Uploads_and_File_Downloads\" >How to Protect WordPress Uploads and File Downloads<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-7\" href=\"https:\/\/buradabiliyorum.com\/en\/how-to-protect-wordpress-files-uploads-folder\/#Grant_Private_Files_Access_to_certain_DomainsReferrer_URLs\" >Grant Private Files Access to certain Domains\/Referrer URLs<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-8\" href=\"https:\/\/buradabiliyorum.com\/en\/how-to-protect-wordpress-files-uploads-folder\/#Folder_Protection_Protect_WordPress_Directories\" >Folder Protection: Protect WordPress Directories<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-9\" href=\"https:\/\/buradabiliyorum.com\/en\/how-to-protect-wordpress-files-uploads-folder\/#Secure_WordPress_Files_Uploads_Directory_Now\" >Secure WordPress Files &amp; Uploads Directory Now<\/a><\/li><\/ul><\/nav><\/div>\n<p>&#8220;<strong>#How to Protect WordPress Files &amp; Uploads Folder<\/strong>&#8221;<\/p>\n<div class=\"entry-inner\">\n<p class=\"opener\">Content and files are the main assets of any WordPress site. While the website content can be protected by a password or membership plugins, there is no easy way to protect <a href=\"https:\/\/buradabiliyorum.com\/en\/category\/social-mediaa\/\" data-internallinksmanager029f6b8e52c=\"1\" title=\"Social Media\" target=\"_blank\" rel=\"noopener\">media<\/a> files on your site.<\/p>\n<p>As a matter of fact, membership or <a href=\"https:\/\/buradabiliyorum.com\/en\/category\/download-scripts-themes-apps\/\" data-internallinksmanager029f6b8e52c=\"9\" title=\"Download Scripts &amp; Themes &amp; Apps\" target=\"_blank\" rel=\"noopener\">download<\/a> plugins can secure and restrict your page and post URLs to logged-in users or paid members. However, media files embedded into content are still accessible to the public. In fact, anyone with direct links to those files can access and download them. They can even be hotlinked from other websites as well.\u00a0<\/p>\n<p>This poses a threat to your WordPress site as your valuable files and gray matter can be stolen at any time.<\/p>\n<p>In this article, we\u2019ll provide you with multiple solutions on how to keep prying eyes out of your media files.<\/p>\n<p>By the end of this article, you\u2019ll know:\u00a0<\/p>\n<ul>\n<li>How to restrict wp-content\/uploads access to logged in users<\/li>\n<li>How to prevent hotlinking of media files<\/li>\n<li>How to Protect WordPress files with Prevent Direct Access Gold plugin\u00a0<\/li>\n<li>How to protect WordPress uploads and media files<\/li>\n<\/ul>\n<p>Let\u2019s get started!<\/p>\n<h2><span class=\"ez-toc-section\" id=\"How_to_Restrict_wp-contentuploads_Access_to_Logged_In_Users\"><\/span>How to Restrict wp-content\/uploads Access to Logged In Users<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>WordPress stores all of your images and media uploads in the wp-content\/uploads directory.\u00a0<\/p>\n<p>Imagine that you\u2019re a singer and you make a living by selling music videos to registered members on your WordPress site. What happens if your albums in your wp-content\/uploads folder are accessed by non-logged in users and leaked out? You\u2019ll suffer a huge loss in revenue. To avoid that scenario, you need to play some tricks with the .htaccess file.<\/p>\n<p><em>Note:<\/em> There\u2019s a good chance that you\u2019ll modify some codes in the .htaccess file. In that case, remember to create a backup of your .htaccess file beforehand.<\/p>\n<p>Open your .htaccess file in the root folder of your WordPress site and insert the following code snippet into it.\u00a0<\/p>\n<pre class=\"wp-block-code\"><code>&lt;IfModule mod_rewrite.c&gt;\n    RewriteEngine On\n    RewriteCond %{HTTP_COOKIE} !.*wordpress_logged_in.*$ [NC]\n    RewriteCond %{REQUEST_URI} ^(.*?\/?)wp-content\/uploads\/.* [NC]\n    RewriteRule . http:\/\/%{HTTP_HOST}%1\/wp-login.php?redirect_to=%{REQUEST_URI} [L,QSA]\n&lt;\/IfModule&gt;<\/code><\/pre>\n<p>The codes above are used for full direct access restriction to all of the files residing in the wp-content\/uploads folder.\u00a0<\/p>\n<p>If you\u2019d like to prevent direct access to only some specific files, copy and paste the codes below to your .htaccess file:<\/p>\n<p><em># Protect only some files within the uploads folder<\/em><\/p>\n<pre class=\"wp-block-code\"><code>&lt;IfModule mod_rewrite.c&gt;\n    RewriteEngine On\n    RewriteCond %{HTTP_COOKIE} !.*wordpress_logged_in.*$ [NC]\n    RewriteCond %{REQUEST_URI} ^(.*?\/?)wp-content\/uploads\/.*.(?:gif|png|jpe?g|pdf|txt|rtf|html|htm|xlsx?|docx?|mp3|mp4|mov)$ [NC]\n    RewriteRule . http:\/\/%{HTTP_HOST}%1\/wp-login.php?redirect_to=%{REQUEST_URI} [L,QSA]\n&lt;\/IfModule&gt;<\/code><\/pre>\n<p>How do the two code snippets above work?<\/p>\n<p>In the fourth line, the mod_rewrite module checks to see if there\u2019s a cookie whose name contains \u201cwordpress_logged_in.\u201d If not, it means that the user is not logged in.\u00a0<\/p>\n<p>The next rule checks if the user is trying to access any files in the wp-content\/uploads folder.\u00a0<\/p>\n<p>The final line redirects the user to a login page. If they successfully log in, they will be taken to the files they\u2019re trying to access.\u00a0<\/p>\n<p>We\u2019ve shown you how to restrict the direct access to files in the wp-content\/uploads folder against non-logged in users. Let\u2019s move to the next part of how to prevent your media files from hotlinking.\u00a0\u00a0<\/p>\n<h2><span class=\"ez-toc-section\" id=\"How_to_Prevent_Hotlinking_of_Media_Files\"><\/span>How to Prevent Hotlinking of Media Files<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>Hotlinking happens when other people use images and other media files, such as videos, and audios from your website and embed them directly on their site. Unless you allow them to hotlink your media files by providing the embed code, that\u2019s considered stealing and violating copyright infringement. It also takes up your server bandwidth and resources.<\/p>\n<p>To prevent hotlinking of your images and other media files, you first need to upload all of your important media files to another directory, then add the following code snippet to your .htaccess file:<\/p>\n<p><em># BEGIN Hotlinking Protection<\/em><\/p>\n<pre class=\"wp-block-code\"><code>RewriteEngine on \nRewriteCond %{HTTP_REFERER} !^$ \nRewriteCond %{HTTP_REFERER} !^http:\/\/(www.)?domain.com\/wp-content\/uploads\/important\/.*$ [NC]\nRewriteRule .(gif|jpg|jpeg|bmp|zip|rar|mp3|mp4|flv|swf|xml|php|png|css|pdf) $ - [NC,F,L]<\/code><\/pre>\n<p>Make sure that you replace<em> \u201cdomain.com\u201d<\/em> with your site.<\/p>\n<p>If you want to show a \u201cNo Hotlinking\u201d custom page instead of a usual error message to those who hotlink your media files, just modify the \u201c<em>RewriteRule\u201d<\/em> in the codes below a bit:<\/p>\n<pre class=\"wp-block-code\"><code>RewriteEngine on \nRewriteCond %{HTTP_REFERER} !^$ \nRewriteCond %{HTTP_REFERER} !^http:\/\/(www.)?domain.com\/wp-content\/uploads\/important\/.*$ [NC]\nRewriteRule.(gif|jpg|jpeg|bmp|zip|rar|mp3|mp4|flv|swf|xml|php|png|css|pdf)$ http:\/\/www.domain.com\/no-hot-linking.jpg - [NC,F,L]<\/code><\/pre>\n<p>In the codes above, <em>\u201chttp:\/\/domain.com\/no-hot-linking.jpg\u201d<\/em> is the direct link to the image you\u2019re using as a customized error message.<\/p>\n<p>You can also add a few tweaks to that code snippet for redirection purposes. By changing the final line to a specific URL of your homepage or a landing page, you can request users to become a member to access your media files.\u00a0<\/p>\n<p>In case you\u2019d like to deny hotlinking but still allow certain search engines and social media platforms to access your files, you can add the following code snippet to your .htaccess file:<\/p>\n<pre class=\"wp-block-code\"><code>RewriteEngine on\nRewriteCond %{HTTP_REFERER} !^$\nRewriteCond %{HTTP_REFERER} !^http:\/\/(www.)?domain.com\/wp-content\/uploads\/important\/.*$ [NC]\nRewriteCond %{HTTP_REFERER} !^http(s)?:\/\/(www.)?google.com [NC]\nRewriteCond %{HTTP_REFERER} !^http(s)?:\/\/(www.)?bing.com [NC]\nRewriteCond %{HTTP_REFERER} !^http(s)?:\/\/(www.)?yahoo.com [NC]\nRewriteRule .(gif|jpg|jpeg|bmp|zip|rar|mp3|mp4|flv|swf|xml|php|png|css|pdf)$ http:\/\/www.domain.com\/no-hot-linking.jpg - [NC,F,L]<\/code><\/pre>\n<p>Don\u2019t forget to replace <em>\u201cdomain.com\u201d<\/em> with the actual website name.<\/p>\n<p>The .htaccess method seems straightforward and practical indeed. However, if you\u2019re a complete WordPress novice and not so confident when it comes to codes, you should consider using a plugin to block direct access to your files.\u00a0\u00a0<\/p>\n<p>It\u2019s when the Prevent Direct Access (PDA) Gold plugin comes to play!<\/p>\n<h2><span class=\"ez-toc-section\" id=\"Limit_WordPress_Media_Library_Access_with_PDA_Gold\"><\/span>Limit WordPress Media Library Access with PDA Gold<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>Prevent Direct Access (PDA) Gold offers a friendly and effective solution to prevent your WordPress files from being indexed by search engines and stolen by unwanted users. The plugin protects unlimited media files and all file types such as images (PNG, JPEG), documents (PDF, DOCX, PPTX), audios, and videos (MP4, MP3) that you upload to your website under Media Library or via Media, Pages or Posts.<\/p>\n<p>What\u2019s more, PDA Gold enables you to set user permissions with a few simple clicks.\u00a0<\/p>\n<p>Let\u2019s explore PDA Gold key features.<\/p>\n<h3><span class=\"ez-toc-section\" id=\"Restrict_WordPress_Media_Visibility_to_Authorized_Users\"><\/span><strong>Restrict WordPress Media Visibility to Authorized Users\u00a0<\/strong><span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>Once protected by PDA Gold, your private files will no longer be accessible to anyone except those you\u2019ve granted permission.<\/p>\n<p><strong>Customizing the \u201cNo Access\u201d page:<\/strong> The plugin allows you to show your custom page instead of the 404 error message. You can request unauthorized users to login, become a member to access the protected files by redirecting them to a registration or login page.\u00a0\u00a0\u00a0<\/p>\n<p><strong>Restricting access by IP addresses:<\/strong> Prevent Direct Access\u00a0 enables you to take total control over your private download links by blocking unwanted IP addresses accessing your files. Plus, with the Gold version, you\u2019ll be able to also set auto expiration on numbers of clicks or days.\u00a0\u00a0<\/p>\n<h3><span class=\"ez-toc-section\" id=\"Block_Google_Indexing_of_Private_Files\"><\/span><strong>Block Google Indexing of Private Files<\/strong><span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>The plugin informs Google and other search engines not to index any of your protected files. Your protected files and download links won\u2019t be shown up on the search results.\u00a0<\/p>\n<p>PDA Gold also comes with basic security features.<\/p>\n<p><strong>Block access to WordPress uploads directory:<\/strong> Under the plugin protection, the wp-content\/uploads folder where you store all media uploads will be safe from outsiders. No one will be able to<strong> <\/strong>sneak and browse your media files any more.\u00a0\u00a0<\/p>\n<p><strong>Preventing image and file hotlinking:<\/strong> Thanks to this feature, no one can steal and use your images and files without permission. It restricts usage of your media files, which stops others from sneakily embedding these URLs into their websites.<\/p>\n<h2><span class=\"ez-toc-section\" id=\"How_to_Protect_WordPress_Uploads_and_File_Downloads\"><\/span>How to Protect WordPress Uploads and File Downloads<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>So how to secure WordPress files using Prevent Direct Access?<\/p>\n<p>First, you need to install the Prevent Direct Access Lite and Gold plugin on your WordPress dashboard, under \u201cPlugins.\u201d<\/p>\n<p>Now, start to protect your media files.<\/p>\n<ul>\n<li>Click on \u201cMedia.\u201d<\/li>\n<\/ul>\n<figure class=\"wp-block-image\"><img decoding=\"async\" alt=\"\" src=\"https:\/\/www.noupe.com\/wp-content\/uploads\/2020\/12\/image6-3.png\" class=\"wp-image-115081 lazyload\"><noscript><img decoding=\"async\" src=\"https:\/\/www.noupe.com\/wp-content\/uploads\/2020\/12\/image6-3.png\" alt=\"\" class=\"wp-image-115081\"><\/noscript><\/figure>\n<ul>\n<li>Choose \u201cList View\u201d mode.<\/li>\n<\/ul>\n<figure class=\"wp-block-image\"><img decoding=\"async\" alt=\"\" src=\"https:\/\/www.noupe.com\/wp-content\/uploads\/2020\/12\/image1-3-1024x166.png\" class=\"wp-image-115082 lazyload\"><noscript><img decoding=\"async\" src=\"https:\/\/www.noupe.com\/wp-content\/uploads\/2020\/12\/image1-3-1024x166.png\" alt=\"\" class=\"wp-image-115082\"><\/noscript><\/figure>\n<ul>\n<li>There\u2019s an extra column named \u201cPrevent Direct Access\u201d generated by the plugin. Click on \u201cProtect this file\u201d option if you want to prevent others from accessing that file.\u00a0<\/li>\n<\/ul>\n<figure class=\"wp-block-image\"><img decoding=\"async\" alt=\"\" src=\"https:\/\/www.noupe.com\/wp-content\/uploads\/2020\/12\/image5-1.png\" class=\"wp-image-115083 lazyload\"><noscript><img decoding=\"async\" src=\"https:\/\/www.noupe.com\/wp-content\/uploads\/2020\/12\/image5-1.png\" alt=\"\" class=\"wp-image-115083\"><\/noscript><\/figure>\n<ul>\n<li>The file is now protected.\u00a0<\/li>\n<\/ul>\n<figure class=\"wp-block-image\"><img decoding=\"async\" alt=\"\" src=\"https:\/\/www.noupe.com\/wp-content\/uploads\/2020\/12\/image3-2.png\" class=\"wp-image-115084 lazyload\"><noscript><img decoding=\"async\" src=\"https:\/\/www.noupe.com\/wp-content\/uploads\/2020\/12\/image3-2.png\" alt=\"\" class=\"wp-image-115084\"><\/noscript><\/figure>\n<p>Make sure that you clear all caches, including your hosting cache, cache plugins, and browser cache. Your important files and their private links may not be protected correctly if they\u2019re cached.\u00a0<\/p>\n<h2><span class=\"ez-toc-section\" id=\"Grant_Private_Files_Access_to_certain_DomainsReferrer_URLs\"><\/span>Grant Private Files Access to certain Domains\/Referrer URLs<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>Apart from preventing direct access and hotlinking to your file URL, another key feature that you want to achieve is to allow access from your own or certain desired domains.<\/p>\n<p>In other words, you can restrict file access to certain users depending on where they come from, i.e. <a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/preventdirectaccess.com\/docs\/grant-protected-folders-access-referrer-links\/\">referer links<\/a>.\u00a0<\/p>\n<figure class=\"wp-block-image\"><img decoding=\"async\" alt=\"\" src=\"https:\/\/www.noupe.com\/wp-content\/uploads\/2020\/12\/image2-3.png\" class=\"wp-image-115085 lazyload\"><noscript><img decoding=\"async\" src=\"https:\/\/www.noupe.com\/wp-content\/uploads\/2020\/12\/image2-3.png\" alt=\"\" class=\"wp-image-115085\"><\/noscript><\/figure>\n<p>For example, you can specify only those who come from youraffiliatewebsite.com can download your private PDF files. Those with direct file URL won\u2019t be able to do so.<\/p>\n<h2><span class=\"ez-toc-section\" id=\"Folder_Protection_Protect_WordPress_Directories\"><\/span>Folder Protection: Protect WordPress Directories<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>Instead of protecting files individually, you can block direct access to all files under a particular folder with Access Restriction on top of PDA Gold.<\/p>\n<p>To use the <a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/preventdirectaccess.com\/docs\/folder-protection\/\">folder protection feature<\/a>, simply select a folder at the root or WordPress uploads directory to get started with. Then choose which user roles or username who can access those folders directly.\u00a0<\/p>\n<p>You can also select which file types to protect on those directories, e.g. only PNG and PPT.<\/p>\n<figure class=\"wp-block-image\"><img decoding=\"async\" alt=\"\" src=\"https:\/\/www.noupe.com\/wp-content\/uploads\/2020\/12\/image4-2.png\" class=\"wp-image-115086 lazyload\"><noscript><img decoding=\"async\" src=\"https:\/\/www.noupe.com\/wp-content\/uploads\/2020\/12\/image4-2.png\" alt=\"\" class=\"wp-image-115086\"><\/noscript><\/figure>\n<h2><span class=\"ez-toc-section\" id=\"Secure_WordPress_Files_Uploads_Directory_Now\"><\/span>Secure WordPress Files &amp; Uploads Directory Now<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>We\u2019ve provided you with 2 efficient solutions to prevent direct access to your wp-content\/uploads folder as well as securing your WordPress media files against hotlinking and unauthorized users.\u00a0<\/p>\n<p>You can either add some code snippets in your .htaccess file or take the soft option of using the <a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/preventdirectaccess.com\/features\/\">Prevent Direct Access Gold<\/a> plugin. Always bear in mind to back up your .htaccess file and your site beforehand, since a small error made in that file can break your site severely.\u00a0\u00a0<\/p>\n<p>What are you still waiting for? Protect your valuable files and media now.<\/p>\n<p>Let us know what solution you\u2019re using to block direct access to your media files by leaving a comment below. <\/p>\n<hr class=\"wp-block-separator\"><em>Photo by <\/em><a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/unsplash.com\/@thejmoore?utm_source=unsplash&amp;utm_medium=referral&amp;utm_content=creditCopyText\"><em>Jon Moore<\/em><\/a><em> on <\/em><a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/unsplash.com\/s\/photos\/security?utm_source=unsplash&amp;utm_medium=referral&amp;utm_content=creditCopyText\"><em>Unsplash<\/em><\/a>\n<\/div>\n<p><\/p>\n<div class=\"author-inner\">\n<p class=\"bio-name\">Elena Taylor<\/p>\n<div class=\"bio-desc\">\nBeing a dedicated content writer, Elena loves diving into the diverse world of WordPress plugins and security solutions in particular. Online piracy, file protection, and content security as well as intellectual property protection have long been her concerns, hence Elena spends most of her time researching and supporting sustainable development.<\/div>\n<p><!-- social-link --><\/p>\n<div class=\"clear\"><\/div>\n<\/div>\n<blockquote><p><strong><span style=\"color: #ff6600;\">If you liked the article, do not forget to share it with your friends. Follow us on\u00a0<span style=\"color: #ff0000;\"><a style=\"color: #ff0000;\" href=\"https:\/\/news.google.com\/publications\/CAAqBwgKMLG0nwswvr63Aw\" target=\"_blank\" rel=\"nofollow noopener noreferrer\">Google News<\/a><\/span>\u00a0too, click on the star and choose us from your favorites.<\/span><\/strong><\/p><\/blockquote>\n<blockquote>\n<p style=\"text-align: center;\">For forums sites go to <span style=\"color: #ff9900;\"><a style=\"color: #ff9900;\" href=\"https:\/\/forum.buradabiliyorum.com\/\" target=\"_blank\" rel=\"noopener\">Forum.BuradaBiliyorum.Com<\/a><\/span><\/strong><\/p>\n<\/blockquote>\n<blockquote>\n<p style=\"text-align: center;\"><strong>If you want to read more <a href=\"https:\/\/buradabiliyorum.com\/en\/category\/news\/\" data-internallinksmanager029f6b8e52c=\"2\" title=\"News\" target=\"_blank\" rel=\"noopener\">News<\/a> articles, you can visit our <span style=\"color: #ff9900;\"><a style=\"color: #ff9900;\" href=\"https:\/\/en.buradabiliyorum.com\/general\/\" target=\"_blank\" rel=\"noopener\">General <\/a><\/span>category.<\/strong><\/p>\n<\/blockquote>\n<p><span style=\"color: black;\"><a style=\"color: #ff9900;\" href=\"https:\/\/www.noupe.com\/wordpress\/how-to-protect-wordpress-files-and-uploads-folder.html\" target=\"_blank\" rel=\"noopener\">Source<\/a><\/span><\/p>\n","protected":false},"excerpt":{"rendered":"<p>&#8220;#How to Protect WordPress Files &amp; Uploads Folder&#8221; Content and files are the main assets of any WordPress site. While the website content can be protected by a password or membership plugins, there is no easy way to protect media files on your site. As a matter of fact, membership or download plugins can secure&#8230;<\/p>\n","protected":false},"author":1,"featured_media":141561,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/www.noupe.com\/wp-content\/uploads\/2020\/12\/jon-moore-bBavss4ZQcA-unsplash.jpg","fifu_image_alt":"","footnotes":""},"categories":[1],"tags":[],"class_list":["post-141560","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-general"],"_links":{"self":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/posts\/141560","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/comments?post=141560"}],"version-history":[{"count":0,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/posts\/141560\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/media\/141561"}],"wp:attachment":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/media?parent=141560"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/categories?post=141560"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/tags?post=141560"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}