Descripción
Security.txt is an open standard (RFC 9116) that allows ethical hackers and security researchers to contact you when they have found a vulnerability on your website.
The principle is simple and effective: contact information is put into a txt file and placed in a fixed location in your website’s directory structure (well-known folder). In this way, contact can easily be made.
This plugin helps you to create and place the security.txt file without any knowledge of the open standard. This makes you easily accessible in case something is wrong with your website.
This plugin is completely free to use and does not include any advertisements or paid version.
Capturas
/assets/screenshot-1.png 
/assets/screenshot-2.png
Instalación
- Upload
generate-security-txtfolder to the/wp-content/plugins/directory - Activate the plugin through the ‘Plugins’ menu in WordPress
- Go the Tools > Generate Security.txt
- Find out of you have any critical requirements that you miss through the plugin admin interface like HTTPS or the PHP-extension ‘gnupg’.
- Generate your keys and security.txt
Preguntas frecuentes
-
What if I don’t have the PHP-extension ‘gnupg’
-
You will not be able to generate keys and sign your security.txt. This isn’t a full requirement as per securitytxt.org, but an internet.nl validation will not green-light the file.
We recommend contacting your webhostingprovider and ask them how to enable this extension.
-
What if I don’t have HTTPS
-
Your security.txt file will not be valid without URIs starting with ‘https://’. It’s critical as per securitytxt.org standards
Colaboradores y desarrolladores
«Generate Security.txt» es un software de código abierto. Las siguientes personas han colaborado con este plugin.
Colaboradores
«Generate Security.txt» ha sido traducido a 1 idioma local. Gracias a los traductores por sus contribuciones.
Traduce «Generate Security.txt» a tu idioma.
¿Interesado en el desarrollo?
Revisa el código , echa un vistazo al repositorio SVN o suscríbete al registro de desarrollo por RSS.
Registro de cambios
1.0.12
Capability filter added
Nonce checks added
Pubkey store changed to .well-known directory
Archive.org request only for public websites
1.0.11
New 1 month reminder email feature
Bugfix with for wrong canonical and security check when installation base url is not domain root
Updated dependencies
1.0.10
Updated dependencies
1.0.9
Updated dependencies
1.0.8
Updated internet.nl conform
New log feature
New file has verification feature
1.0.6
Normalize end of line characters
1.0
- Initial release version