If you move your site to a new host, you will update these lines with the new database credentials. Essential Security and Performance Tweaks
Authentication Unique Keys and Salts
Located in the of your WordPress installation (same folder as wp-admin , wp-content , and wp-includes ), this file contains your site’s most sensitive configuration details. wp config.php
When building or troubleshooting a site, use debugging to display errors that would otherwise result in a blank screen (the "White Screen of Death").
The wp-config.php file is a core WordPress configuration file. Unlike other files, it is not included by default when you download WordPress from its official site. Instead, the installation package includes a template called . If you move your site to a new
When you download WordPress, the wp-config.php file does not actually exist in the package. Instead, WordPress includes a template file named wp-config-sample.php .
Secure your backend sessions by forcing WordPress to send login credentials over an encrypted SSL connection: define( 'FORCE_SSL_ADMIN', true ); Use code with caution. 3. Developer and Debugging Options The wp-config
define('AUTH_KEY', 'put your unique phrase here'); define('SECURE_AUTH_KEY', 'put your unique phrase here'); define('LOGGED_IN_KEY', 'put your unique phrase here'); define('NONCE_KEY', 'put your unique phrase here'); define('AUTH_SALT', 'put your unique phrase here'); define('SECURE_AUTH_SALT', 'put your unique phrase here'); define('LOGGED_IN_SALT', 'put your unique phrase here'); define('NONCE_SALT', 'put your unique phrase here'); Use code with caution.
WordPress provides several debugging constants that are invaluable when troubleshooting issues:
Set the file permissions of wp-config.php to 400 or 444 . This prevents other users or scripts on the server from modifying or reading it.