Lead story »

18 July, 2012 – 6:45 pm | Comments Off on Head in the clouds1,592 views

As a child you might have been told by an adult that you should get your head out of the clouds but now we are storing our data there. Is this a good thing or a bad thing?
Security has to be the biggest issue so just how secure is it? …

Read the full story »
Services
Training
Web design
Wordpress
Search engine optimisation
Home » Lead story

Securing WordPress

Submitted by on 17 October, 2011 – 8:56 amNo Comment | 3,623 views

I have been hacked not the biggest revelation that any web person has ever uttered but answering my customers “why me?” is a lot harder to answer. Boredom by kids that think that this is proper programming, because I am on American servers who knows. These are the plugins that I have used to help fend off the brute force attacks not the complete set up but just enough so that you can sleep at night.

Login

Lock down your login.php page with limit logins plugins:

http://wordpress.org/extend/plugins/limit-login-attempts/

Limit the number of login attempts possible both through normal login as well as using auth cookies.

By default WordPress allows unlimited login attempts either through the login page or by sending special cookies. This allows passwords (or hashes) to be brute-force cracked with relative ease.

 

Security

These help you to make sure that your passwords are strong and that you have not left anything in plain sight. Choose the plugin that suits your site and there are many more options on WordPress.Org.

WP Security scan

http://wordpress.org/extend/plugins/wp-security-scan/

WP Security Scan checks your WordPress website/blog for security vulnerabilities and suggests corrective actions

Better WP Security

http://wordpress.org/extend/plugins/better-wp-security/

Better WP Security takes the best WordPress security features and techniques and combines them in a single plugin thereby ensuring that as many security holes as possible are patched without having to worry about conflicting features or the possibility of missing anything on your site.

Secure WordPress

http://wordpress.org/extend/plugins/secure-wordpress/

Secure WordPress beefs up the security of your WordPress installation by removing error information on login pages, adds index.html to plugin directories, hides the WordPress version and much more.

Share

domain names

Leave a comment!

Add your comment below, or trackback from your own site. You can also subscribe to these comments via RSS.

Be nice. Keep it clean. Stay on topic. No spam.

You can use these tags:
<a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <s> <strike> <strong>

This is a Gravatar-enabled weblog. To get your own globally-recognized-avatar, please register at Gravatar.

*