This happened to me twice now, so I’m writing it down for future reference.
A sudden WordPress 403 Forbidden error. Googling points to two common causes. Both resolutions have no effect. In this case, you might experience the third common cause for WordPress 403 Forbidden error.
After trying to hook up your website to the WordPress iOS app, you might experience a sudden website 403 Forbidden malfunction.
When Googling, you will find two common root causes:
There is however a third cause as well.
There is a third cause of WordPress 403 Forbidden error: the (first) use of the WordPress iOS app.
To verify if you are in this last situation, fire up a web browser and try to visit your website by using a different IP adress. You can accomplisch this by e.g. disabling your mobile phone Wi-Fi, and accessing your website over the 4G network. If your website loads just fine, read on…
Now, you’re thinking, how can using an app to connect to my website trigger this behaviour? This has to do with the protocol it uses to communicate: XML-RPC. This protocol is very useful for remote website control, but has, over the years, also gained a lot of attention from hackers.
Subsequently, a lot of webhosting companies implemented protection against the use of the XML-RPC protocol. This means, their algorithms will detect any XML-RPC usage and block the originators IP adress.
First of all, you should realise there is nothing wrong with your website. It’s (just) your IP adress that is blocked from accessing it!
All that’s left to do is to contact your hosting provider, explain them the situation, and ask how your IP adress can be unblocked.
A detailed article about XML-RPC background is available here. By the time you found this article, you’ve probably read it already 🙂
A very easy way to enforce strong passwords in Wordpress, is to disable the 'confirm weak password' checkbox. On top of this, we optimize the loading of the password strength estimator, zxcvbn.
Here are the basics to get started with a fully customizable Wordpress theme based on the Bootstrap framework. It uses Yarn as package manager, Esbuild and SASS for JS and SCSS compilation respectively.
Custom fonts are a great way to improve your online visual appearance. In order to make sure that custom fonts don't slow down your website, make sure you (i) host the font files locally and (ii) preload them. This article describes the process of obtaining and serving font files from your own server, as well as preloading the right font file for faster website loading.