WordPress security is an ever growing problem for bloggers and marketers online.
WordPress Security Tips
There has been a huge increase in hacked WordPress sites and indeed html sites too over the past few years. So I have made this short video as a basic guide to securing WordPress usiing not one WordPress security plugin but Three. These are my WordPress security tips for yo make sure that you achieve a secure WordPress installation. The WordPress Security Plugins list is below the video.
WordPress Security Plug in One Wordpress Firewall 2
WordPress Security Plug in Two Limit Login Attempts
WordPress Security Plugin Three Secure WordPress
Password Generator Tool http://tiny.cc/Secure-Password-Generator
Why do I need to care about Securing WordPress?
In this short video I want to show you the WordPress security plugins that I use now after I had two of my blogs and a customers site hacked back in 2011, since that time these have been a standard upload for me with every WordPress site that I now build. WordPress security issues are becoming far more common now as there are a number of bottom dwellers that actually make and sell software applications, bots if you like that go out and target WordPress sites looking for any vulnerability in the site, this software can be highly sophisticated and can actually try repeatedly to access your site and report back to the low life that sent it out on this pointless search.
Setup WordPress Securely and you will be able to rest peacefully at night
wordpress security issues
Because I can tell you that there is nothing worse than starting work in the morning to find your WordPress website hacked. I hear so many people on forums saying “WordPress website hacked” or “WordPress hacked” there is a reason why these people are saying my website has been hacked and that is usually because they have not installed WordPress security.
WordPress security is a very serious matter if you have not backed up your site recently then go to your C-panel where you can run a full site back up, make sure to include the SQL database too because this will be corrupted if your site is hacked. I use several wordpress security plugins not just one and I also alter my HT access file too to prevent these self righteous idiots who for little or no benefit ruin years of work on our part, wordpress security issues can be limited and if you have a hacking problem then your web hosting company should be able to help out – I use Host Gator Affordable Web Hosting Go For Baby Croc and they were good enough to go into my site and remove the hackers files, so do as I now do not just one wordpress security plugin but at least the three that I show you in the video. I really do hope that these wordpress security tips will help you to lock down your sites and help you to secure wordpress for all of your sites and blogs well into the future, you see securing wordpress sites does not have to be difficult – spend 30 minutes installing and optimizing these plug ins and you will go a long way towards securing your site or blog from hackers.
Great post John! Very useful 🙂 I’m going to start implementing your advice on my sites soon
Sally
Thank you Sally I’m very glad that I could help
I just installed wordpress firewall 2 yesterday and it caught around 30 attempts to break into my site today from an ip in russia trying to force in a file named uploadify dot php
It looks like the plugin has an option to limit login attempts so the other plugin may not be necessary. What do you think?
Kirk
Keep it tight Kirk – if the plugins are available then use them – a few minutes work for higher security must be worthwhile
Thanks John for the good security advice.
I am clueless when it comes to security but realise how important it is. I too, am seeing more and more people complaining that they’ve been hacked. This really scares me simply because I don’t have the faintest idea of what to do if it did happen to me. So I prefer to take the easier and more sensible route of prevention. Your video just really hit home with me.
I already use a plugin which I bought a few months back and it does some of the things you mentioned. It changes the wp admin login to whatever word you want, it provides a captcha on the login page, it emails you if someone tries to gain access to your site a few times etc.
However, I don’t know if that one plugin is enough and would like to install the ones you recommended as well, maybe to fill some gaps. I don’t know if it includes a firewall or whether it hides the WP version installed or anything like that.
Do you think there would be any conflict if I installed the ones you mentioned as well?
I am also looking for a backup solution… just in case, do you have any recommendations?
Thanks for the wake up call and I will definitely sort out any security gaps I may have as well as start backing up this week.
You need to make sure that you back up your site – go into c-panel and back up wizard use the complete site back up option and download it and save it on your hard drive, it’s in C-panel but just in case someone get’s into C-panel I always do this – that can happen too, never had to use one but just in case, C-panel stores it too so you have a back up back up copy.
I have do not know of any conflict of plugins for security but try them one at a time
open your site in a new browser so you are not logged in and make sure everything works well
if it does then it can only add to the security.
John
Thanks John. I am very grateful for your advice and I am going to do all that.
I didn’t even know you could back up from C Panel ! I am a real tech idiot and hardly venture into C Panel unless I really have to ….far too scary!! But even I can follow your instructions, so I am going to be busy for a bit!
Thanks again.
Regards,
Adjia
I
Thanks, John
I swear – your free stuff is better than a lot of stuff I’ve paid for on the Warrior Forum! I actually never knew you had this blog, so I’ll have to look out for your updates.
Nancy
Thank you Nancy I will let you know as and when