Do I need to contact Kinsta every time I change settings?

No. The config include is set up once. WP Ghost updates the file contents automatically when you change settings. No further server restarts needed.

Is WP Ghost Compatible with Kinsta Hosting?

Q: Will Kinsta support add the WP Ghost config file?

Many users have had Kinsta add the hidemywp.conf file successfully. It's a single include file for URL rewrite rules that doesn't modify server behavior beyond path routing.

Q: Is WP Ghost still effective on Kinsta without the Nginx config?

Yes. Custom login paths, brute force protection, firewall, 2FA, security headers, and version hiding all work through WordPress hooks without config changes.

Q: Does WP Ghost modify WordPress core files?

No. WP Ghost uses Nginx rewrite rules via hidemywp.conf and WordPress filters. No files modified. Deactivating restores all defaults.

Moved

This tutorial has moved to the new WP Ghost Knowledge Base where each feature is presented in detail.

View on new site

Yes, WP Ghost is compatible with Kinsta hosting. Kinsta uses Nginx servers, so full path rewriting requires Kinsta’s support team to add a config file on your behalf. Many WP Ghost users run on Kinsta successfully. This guide explains the full setup process and also covers an alternative approach if you prefer not to contact support.

Why Does Kinsta Require Extra Setup for WP Ghost?

Kinsta is a managed WordPress hosting provider that runs on Nginx. Unlike Apache servers where WP Ghost writes rewrite rules to .htaccess automatically, Nginx requires rules to be added to the server configuration file. Kinsta doesn’t give you direct access to nginx.conf, so you need to contact their support team and ask them to include WP Ghost’s config file.

This is a one-time setup. Once Kinsta adds the config include, WP Ghost manages the rules automatically from that point on. You only need to contact Kinsta again if you change hosting plans or migrate to a different server.

How Do I Set Up WP Ghost on Kinsta Step by Step?

Step 1 – Install and Configure WP Ghost

Install the WP Ghost plugin on your Kinsta-hosted site. Go to WP Ghost > Change Paths > Level of Security and select your desired security level (Safe Mode or Ghost Mode). Customize any paths you want to change and click Save. After saving, WP Ghost generates a hidemywp.conf file and displays the Nginx setup notification.

Step 2 – Download the Config File

Go to your website’s root directory using a file manager (Kinsta’s dashboard includes one, or use SFTP). Download the hidemywp.conf file that WP Ghost generated. This file contains all the Nginx rewrite rules needed for your custom paths.

Step 3 – Contact Kinsta Support

Open a support ticket with Kinsta and send them the hidemywp.conf file. Ask them to include it in the Nginx configuration for your site and restart the server. Only the host can add rules to the Nginx config and restart the Nginx service.

Step 4 – Backup and Deactivate While Waiting

Before Kinsta applies the changes, back up your WP Ghost settings from WP Ghost > Backup/Restore and deactivate the plugin. This prevents any path conflicts while the rewrite rules aren’t yet loaded on the server. Keep the plugin deactivated until Kinsta confirms the rules are in place.

Step 5 – Activate and Restore

Once Kinsta confirms the rules have been added, activate WP Ghost again and restore your saved settings from WP Ghost > Backup/Restore. Then run a frontend test: go to WP Ghost > Change Paths and click the Frontend Test button to verify that the new paths are loading correctly.

What If I Don’t Want to Contact Kinsta Support?

If you prefer to skip the Nginx config step, you can still use many of WP Ghost’s security features without rewrite rules. Custom login paths, brute force protection with reCAPTCHA, the 8G firewall, two-factor authentication, security headers, and version hiding all work through WordPress hooks and don’t require any server configuration changes.

WP Ghost includes a Minimal (No Config Rewrites) preset that configures exactly these features. Go to WP Ghost > Change Paths, select the Minimal preset, and click Load Preset. This gives you strong protection without needing to contact Kinsta at all.

For the full guide on this approach, see using WP Ghost on Nginx without config changes. For the complete Kinsta setup tutorial, see the Kinsta server setup guide.

Frequently Asked Questions

Will Kinsta support add the WP Ghost config file?

Many WP Ghost users have had Kinsta support add the hidemywp.conf file successfully. Kinsta generally allows Nginx config includes for security plugins. If support is hesitant, explain that it’s a single include file for URL rewrite rules that doesn’t modify any server behavior beyond path routing.

Do I need to contact Kinsta every time I change WP Ghost settings?

No. The hidemywp.conf file is included once by Kinsta. WP Ghost updates the contents of that file automatically when you change settings. You only need to contact Kinsta for the initial setup. After that, saving settings in WP Ghost updates the rules without requiring server restarts.

Is WP Ghost still effective on Kinsta without the Nginx config?

Yes. Without config rewrites you lose full path hiding (renaming wp-content, wp-includes, etc.), but custom login paths, brute force protection, firewall, 2FA, security headers, and version hiding all work through WordPress hooks. These features cover the most critical attack vectors.

Does this work with WooCommerce on Kinsta?

Yes. WP Ghost is fully compatible with WooCommerce on Kinsta. Cart, checkout, product pages, and customer accounts all work normally with both the full Nginx setup and the minimal no-config approach.

Does WP Ghost modify WordPress core files?

No. WP Ghost uses server rewrite rules (via the hidemywp.conf file on Nginx) and WordPress filters to change paths at runtime. No core files, theme files, or plugin files are modified. Deactivating WP Ghost restores all default paths instantly.

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.