Easily improve site security with WordPress hardening, vulnerability detection and SSL certificate generation.
Easily improve site security with WordPress hardening, vulnerability detection and SSL certificate generation.
Really Simple SSL is the most lightweight and easy-to-use security plugin for WordPress. It lays the foundation of your WordPress website’s security by leveraging your SSL certificate, scanning for possible vulnerabilities and implementing essential WordPress hardening features.
We believe that security should have the absolute minimum effect on website performance, user experience and maintainability. Therefore, Really Simple SSL is:
Migrates your website to HTTPS and enforces SSL in just one click.
Tweak your configuration and keep WordPress fortified and safe by tackling potential weaknesses.
Get notified when plugins, themes or WP core contain vulnerabilities and need appropriate action.
Protect your site with all essential security features by upgrading to Really Simple SSL Pro.
Security headers protect your site visitors against the risk of clickjacking, cross-site-forgery attacks, stealing login credentials and malware.
When a vulnerability is detected in a plugin, theme or WordPress core you will get notified accordingly. With Vulnerability Measures, you can configure simple but effective measures to make sure that a critical vulnerability won’t remain unattended.
Secure your website’s login process and user accounts with powerful security measures.
With Limit Login Attempts you can configure a threshold to temporarily or permanently block IP addresses or (non-existing) usernames. You can also throw a CAPTCHA after a failed login (hCaptcha or Google reCaptcha)
If you want to support the continuing development of this plugin, please consider buying Really Simple SSL Pro, which includes some excellent security features and premium support.
Our mission is to make complex WordPress requirements really easy. Really Simple SSL is developed by Really Simple Plugins.
For generating SSL certificates, Really Simple SSL uses the le acme2 PHP Let’s Encrypt client library, thanks to ‘fbett’ for providing it. Vulnerability Detection uses WP Vulnerability, an open-source initiative by Javier Casares. Want to join as a collaborator? We’re on GitHub as well!
To install this plugin:
For more detailed explanations and documentation on all Really Simple SSL features, please search the Knowledge Base
Most mixed content issues are caused by URLs in CSS or JS files. For detailed instructions on how to find mixed content read this article.
We added the possibility to generate a Free SSL Certificate with Let’s Encrypt in our Really Simple SSL Wizard. We have an updated list available for all possible integrations here. Please leave feedback about another integration, incorrect information, or you need help.
If you are experiencing redirect loops on your site, try these instructions.
Yes. There is a dedicated network settings page where you can control settings for your entire network, at once.
The plugin checks your certificate before enabling, but if, for example, you migrated the site to a non-SSL environment, you might get locked out of the back-end.
If you can’t deactivate, do not just remove the plugin folder to uninstall! Follow these instructions instead.