Title: [Plugin: Secure WordPress] Insecure: readme.html/license.txt
Last modified: August 20, 2016

---

# [Plugin: Secure WordPress] Insecure: readme.html/license.txt

 *  [hm2k](https://wordpress.org/support/users/hm2k/)
 * (@hm2k)
 * [14 years, 8 months ago](https://wordpress.org/support/topic/plugin-secure-wordpress-insecure-readmehtmllicensetxt/)
 * Software such as [Nikto](http://en.wikipedia.org/wiki/Nikto_Web_Scanner) looks
   for files such as readme.html and license.txt to identify wordpress.
 * + /readme.html: This WordPress file reveals the installed version.
    + OSVDB-3092:/
   license.txt: License file found may identify site software.
 * The readme.html is an obvious target because it contains the version number of
   the wordpress install.
 * Sure I could rename them to obscure them, but what’s the point of a “secure” 
   plugin when it doesn’t even cover the basics?
 * Sure I could delete these files, but what I want to keep them for my reference?
 * Plus it’s likely that they will be restored when WordPress updates itself.
 * [http://wordpress.org/extend/plugins/secure-wordpress/](http://wordpress.org/extend/plugins/secure-wordpress/)

Viewing 1 replies (of 1 total)

 *  [WebsiteDefender](https://wordpress.org/support/users/websitedefender/)
 * (@websitedefender)
 * [14 years, 8 months ago](https://wordpress.org/support/topic/plugin-secure-wordpress-insecure-readmehtmllicensetxt/#post-2319796)
 * This issue has been addressed by the other security plug-in provided by WebsiteDefender:
   WebsiteDefender WordPress Security ([http://wordpress.org/extend/plugins/websitedefender-wordpress-security/](http://wordpress.org/extend/plugins/websitedefender-wordpress-security/))
 * Best Regards,
    Costin T.
 * (plug-in dev)

Viewing 1 replies (of 1 total)

The topic ‘[Plugin: Secure WordPress] Insecure: readme.html/license.txt’ is closed
to new replies.

 * ![](https://s.w.org/plugins/geopattern-icon/secure-wordpress.svg)
 * [Acunetix Secure WordPress](https://wordpress.org/plugins/secure-wordpress/)
 * [Frequently Asked Questions](https://wordpress.org/plugins/secure-wordpress/#faq)
 * [Support Threads](https://wordpress.org/support/plugin/secure-wordpress/)
 * [Active Topics](https://wordpress.org/support/plugin/secure-wordpress/active/)
 * [Unresolved Topics](https://wordpress.org/support/plugin/secure-wordpress/unresolved/)
 * [Reviews](https://wordpress.org/support/plugin/secure-wordpress/reviews/)

 * 1 reply
 * 2 participants
 * Last reply from: [WebsiteDefender](https://wordpress.org/support/users/websitedefender/)
 * Last activity: [14 years, 8 months ago](https://wordpress.org/support/topic/plugin-secure-wordpress-insecure-readmehtmllicensetxt/#post-2319796)
 * Status: not resolved