World Gold
Good morning and Good evening and happy day, we invite you to participate
Life in the Golden Menenda and participated Bmoadiek Distinctive
World Gold
Good morning and Good evening and happy day, we invite you to participate
Life in the Golden Menenda and participated Bmoadiek Distinctive
World Gold
Would you like to react to this message? Create an account in a few clicks or log in to continue.
World Gold

Gold, internet, fashion, health, beauty, electronics, pictures, tourism, landmarks States, automotive, education, treatment, mobile, software, women, men
 
HomePortalGalleryLatest imagesSearchRegisterLog in
Search
 
 

Display results as :
 
Rechercher Advanced Search
Top posting users this month
No user
Keywords
Latest topics
» وظائف بالكويت مسابقة 2011 2012 للعمل بوزارة التربيه فى جميع التخصصات
9 easy ways to secure your WordPress blog  EmptySun Feb 19, 2012 2:15 pm by محمد السعيد الجيوشي

» مسابقة وزارة الاوقاف لسنة 2011 للعمل بوزارة الاوقاف والعمل بالمساجد عدد ( 3592 ) وظيفة عامل مسجد عدد ( 1993 ) وظيفة مؤذن مسجد من الدرجة السادسة والخامسة حرفية خدمات معاونة
9 easy ways to secure your WordPress blog  EmptyFri Sep 23, 2011 11:57 pm by admin

» العاب موبايل لعبة موبايل العاب للموبايل
9 easy ways to secure your WordPress blog  EmptyThu Sep 22, 2011 11:54 pm by admin

» العاب السباق للجيل الخامس العاب موبايل mobile-games
9 easy ways to secure your WordPress blog  EmptyThu Sep 22, 2011 11:53 pm by admin

» تحميل لعبة Ultimate Alien Pinball للجيل الخامس | العاب نوكيا الجيل الخامس 2011
9 easy ways to secure your WordPress blog  EmptyThu Sep 22, 2011 11:51 pm by admin

» لعبة المغامرات سوبر ماريو super mario باللغه العربيه .. لجميع الاجهزه . لعبة المغامرات سوبر ماريو super mario باللغه العربيه .. لجميع الاجهزه . لعبة المغامرات سوبر ماريو super mario باللغه العربيه .. لجميع الاجهزه
9 easy ways to secure your WordPress blog  EmptyThu Sep 22, 2011 11:51 pm by admin

»  games gamesgames العاب ماك MAC 2011
9 easy ways to secure your WordPress blog  EmptyThu Sep 22, 2011 11:47 pm by admin

» الماك الالعاب العاب ماك للماك العاب روعه رائعه من العاب الماك
9 easy ways to secure your WordPress blog  EmptyThu Sep 22, 2011 11:46 pm by admin

» العاب ماك مجموعة الماك من الالعاب المتنوعه
9 easy ways to secure your WordPress blog  EmptyThu Sep 22, 2011 11:44 pm by admin

» العاب ماك جميع العاب الماك تجد مجمعه غالبية العاب الماك
9 easy ways to secure your WordPress blog  EmptyThu Sep 22, 2011 11:36 pm by admin

» mobile gamesمركز ألعاب الماك مجموعة العاب مميزه للماك
9 easy ways to secure your WordPress blog  EmptyThu Sep 22, 2011 11:35 pm by admin

» Games iPad 2011
9 easy ways to secure your WordPress blog  EmptyThu Sep 22, 2011 11:32 pm by admin

» Games iPad : Fast Five the Movie: Official Game HD
9 easy ways to secure your WordPress blog  EmptyThu Sep 22, 2011 11:31 pm by admin

» Games iPad : Fast Five the Movie: Official Game HD
9 easy ways to secure your WordPress blog  EmptyThu Sep 22, 2011 11:30 pm by admin

» العاب ايباد مجموعة العاب ايباد العاب للايباد اخر موضه Games iPad
9 easy ways to secure your WordPress blog  EmptyThu Sep 22, 2011 11:29 pm by admin

March 2024
MonTueWedThuFriSatSun
    123
45678910
11121314151617
18192021222324
25262728293031
CalendarCalendar
Top posting users this week
No user
submitexpress
Search Engine OptimizationSubmit Express

 

 9 easy ways to secure your WordPress blog

Go down 
AuthorMessage
admin
Admin
admin


Posts : 2302
Reputation : 0
Join date : 2010-12-20
Age : 46

9 easy ways to secure your WordPress blog  Empty
PostSubject: 9 easy ways to secure your WordPress blog    9 easy ways to secure your WordPress blog  EmptyFri Apr 08, 2011 5:20 pm



9 easy ways to secure your WordPress blog

This article outlines 9 different ways you can secure your WordPress blog/site. Security is often an overlooked aspect of blogging, but a few minutes making sure things are secure can save you hours and hours of ‘fixing’ if someone decides to mess with your site.

    <LI style="PADDING-BOTTOM: 0px; BORDER-RIGHT-WIDTH: 0px; BACKGROUND-COLOR: transparent; MARGIN: 0px 0px 9px; PADDING-LEFT: 0px; OUTLINE-WIDTH: 0px; PADDING-RIGHT: 0px; BORDER-TOP-WIDTH: 0px; BORDER-BOTTOM-WIDTH: 0px; FONT-SIZE: 13px; VERTICAL-ALIGN: baseline; BORDER-LEFT-WIDTH: 0px; PADDING-TOP: 0px; background-origin: initial; background-clip: initial">Download and install the wp-scanner plugin. It performs he following security checks:

      <LI style="PADDING-BOTTOM: 0px; BORDER-RIGHT-WIDTH: 0px; BACKGROUND-COLOR: transparent; MARGIN: 0px 0px 9px; PADDING-LEFT: 0px; OUTLINE-WIDTH: 0px; PADDING-RIGHT: 0px; BORDER-TOP-WIDTH: 0px; BORDER-BOTTOM-WIDTH: 0px; FONT-SIZE: 13px; VERTICAL-ALIGN: baseline; BORDER-LEFT-WIDTH: 0px; PADDING-TOP: 0px; background-origin: initial; background-clip: initial">WordPress Version Check (currently supports 7 version checks). Future releases will include a file existence version check, for those blogs that have removed their version details.
      <LI style="PADDING-BOTTOM: 0px; BORDER-RIGHT-WIDTH: 0px; BACKGROUND-COLOR: transparent; MARGIN: 0px 0px 9px; PADDING-LEFT: 0px; OUTLINE-WIDTH: 0px; PADDING-RIGHT: 0px; BORDER-TOP-WIDTH: 0px; BORDER-BOTTOM-WIDTH: 0px; FONT-SIZE: 13px; VERTICAL-ALIGN: baseline; BORDER-LEFT-WIDTH: 0px; PADDING-TOP: 0px; background-origin: initial; background-clip: initial">Tests the WordPress theme template for basic XSS vulnerabilities
    • Enumerates WordPress Plugins. Future releases will perform additional tests in this area.

    <LI style="PADDING-BOTTOM: 0px; BORDER-RIGHT-WIDTH: 0px; BACKGROUND-COLOR: transparent; MARGIN: 0px 0px 9px; PADDING-LEFT: 0px; OUTLINE-WIDTH: 0px; PADDING-RIGHT: 0px; BORDER-TOP-WIDTH: 0px; BORDER-BOTTOM-WIDTH: 0px; FONT-SIZE: 13px; VERTICAL-ALIGN: baseline; BORDER-LEFT-WIDTH: 0px; PADDING-TOP: 0px; background-origin: initial; background-clip: initial">Another plugin to install is Login LockDown. It records the IP address and timestamp of every failed WordPress login attempt. If more than a certain number of attempts are detected within a short period of time from the same IP range, then the login function is disabled for all requests from that range. This helps to prevent brute force password discovery. It’s very straight forward and easy to use – I give it a big thumbs up.
    <LI style="PADDING-BOTTOM: 0px; BORDER-RIGHT-WIDTH: 0px; BACKGROUND-COLOR: transparent; MARGIN: 0px 0px 9px; PADDING-LEFT: 0px; OUTLINE-WIDTH: 0px; PADDING-RIGHT: 0px; BORDER-TOP-WIDTH: 0px; BORDER-BOTTOM-WIDTH: 0px; FONT-SIZE: 13px; VERTICAL-ALIGN: baseline; BORDER-LEFT-WIDTH: 0px; PADDING-TOP: 0px; background-origin: initial; background-clip: initial">Arguably my favorite WordPress security plugin is AskApache Password Protect. It adds a 2nd layer of security to your blog by requiring a username and password to access anything in the /wp-admin/ folder. And it does that by automatically creating and picking all the right settings for the .htpasswd and .htaccess files (including the save locations), but you can easily change those settings to anything you want, right from your WordPress Admin Panel.
    <LI style="PADDING-BOTTOM: 0px; BORDER-RIGHT-WIDTH: 0px; BACKGROUND-COLOR: transparent; MARGIN: 0px 0px 9px; PADDING-LEFT: 0px; OUTLINE-WIDTH: 0px; PADDING-RIGHT: 0px; BORDER-TOP-WIDTH: 0px; BORDER-BOTTOM-WIDTH: 0px; FONT-SIZE: 13px; VERTICAL-ALIGN: baseline; BORDER-LEFT-WIDTH: 0px; PADDING-TOP: 0px; background-origin: initial; background-clip: initial">From Matt Cutts presentation – remove the tag in your header.php that displays the current version of WordPress. It’s:
    <BLOCKQUOTE style="BORDER-LEFT: rgb(233,234,234) 2px solid; PADDING-BOTTOM: 0px; BORDER-RIGHT-WIDTH: 0px; BACKGROUND-COLOR: transparent; MARGIN: 0px 9px 9px; PADDING-LEFT: 10px; OUTLINE-WIDTH: 0px; PADDING-RIGHT: 0px; BORDER-TOP-WIDTH: 0px; BORDER-BOTTOM-WIDTH: 0px; FONT-SIZE: 13px; VERTICAL-ALIGN: baseline; QUOTES: none; PADDING-TOP: 0px; background-origin: initial; background-clip: initial">

    <meta name=”generator” content=”WordPress <?php bloginfo(’version’); ?>” /></BLOCKQUOTE>

    Or, you can just modify it so that the version number isn’t displayed, to something like
    <BLOCKQUOTE style="BORDER-LEFT: rgb(233,234,234) 2px solid; PADDING-BOTTOM: 0px; BORDER-RIGHT-WIDTH: 0px; BACKGROUND-COLOR: transparent; MARGIN: 0px 9px 9px; PADDING-LEFT: 10px; OUTLINE-WIDTH: 0px; PADDING-RIGHT: 0px; BORDER-TOP-WIDTH: 0px; BORDER-BOTTOM-WIDTH: 0px; FONT-SIZE: 13px; VERTICAL-ALIGN: baseline; QUOTES: none; PADDING-TOP: 0px; background-origin: initial; background-clip: initial">

    <meta name=”generator” content=”Powered by WordPress” /></BLOCKQUOTE>
    <LI style="PADDING-BOTTOM: 0px; BORDER-RIGHT-WIDTH: 0px; BACKGROUND-COLOR: transparent; MARGIN: 0px 0px 9px; PADDING-LEFT: 0px; OUTLINE-WIDTH: 0px; PADDING-RIGHT: 0px; BORDER-TOP-WIDTH: 0px; BORDER-BOTTOM-WIDTH: 0px; FONT-SIZE: 13px; VERTICAL-ALIGN: baseline; BORDER-LEFT-WIDTH: 0px; PADDING-TOP: 0px; background-origin: initial; background-clip: initial">Again, from Matt Cutts – put a blank index.html file in your /wp-content/plugins/ directory. By default, you can actually view the contents of this folder, so everyone in the world knows which plugins you have installed.
    <LI style="PADDING-BOTTOM: 0px; BORDER-RIGHT-WIDTH: 0px; BACKGROUND-COLOR: transparent; MARGIN: 0px 0px 9px; PADDING-LEFT: 0px; OUTLINE-WIDTH: 0px; PADDING-RIGHT: 0px; BORDER-TOP-WIDTH: 0px; BORDER-BOTTOM-WIDTH: 0px; FONT-SIZE: 13px; VERTICAL-ALIGN: baseline; BORDER-LEFT-WIDTH: 0px; PADDING-TOP: 0px; background-origin: initial; background-clip: initial">I won’t bother with the “always use the latest version of WordPress” tip, because that’s just too obvious. However, I will mention that the Automatic Upgrade Plugincan keep your version of WordPress current, and you don’t have to do anything other than install it. I happen to prefer to upgrade WP manually, so I don’t use this one, but I’ve heard nothing but good things about it.
    <LI style="PADDING-BOTTOM: 0px; BORDER-RIGHT-WIDTH: 0px; BACKGROUND-COLOR: transparent; MARGIN: 0px 0px 9px; PADDING-LEFT: 0px; OUTLINE-WIDTH: 0px; PADDING-RIGHT: 0px; BORDER-TOP-WIDTH: 0px; BORDER-BOTTOM-WIDTH: 0px; FONT-SIZE: 13px; VERTICAL-ALIGN: baseline; BORDER-LEFT-WIDTH: 0px; PADDING-TOP: 0px; background-origin: initial; background-clip: initial">If you have a ‘contact me’ page, make sure it’s a secure one. No one likes spam.Secure Form Mailer is great.
    <LI style="PADDING-BOTTOM: 0px; BORDER-RIGHT-WIDTH: 0px; BACKGROUND-COLOR: transparent; MARGIN: 0px 0px 9px; PADDING-LEFT: 0px; OUTLINE-WIDTH: 0px; PADDING-RIGHT: 0px; BORDER-TOP-WIDTH: 0px; BORDER-BOTTOM-WIDTH: 0px; FONT-SIZE: 13px; VERTICAL-ALIGN: baseline; BORDER-LEFT-WIDTH: 0px; PADDING-TOP: 0px; background-origin: initial; background-clip: initial">Keep your web server updated. Though this isn’t WordPress specific, no matter how secure WordPress is, if there’s a vulnerability in your actual web server, it won’t matter. So keep an eye out for updates to your web server (ie. litespeed,Apache etc).
  • Consider bookmarking http://blogsecurity.net (or subscribing to their RSS feed) – they have some great posts and provide info on insecure plugins etc as soon as they find out about them.
Back to top Go down
 
9 easy ways to secure your WordPress blog
Back to top 
Page 1 of 1
 Similar topics
-
» How to use Windows Live Writer to update your Wordpress blog – Getting Started
» So you’ve decided on WordPress as the software to power your blog. Good choice! To save yourself a series of headaches down the road, install these plugins before you go much farther.
» How To Download Torrents The Ridiculously Easy Way
» 9 ways to EAT beer on St. Patrick’s Day
» 20 ways to get healthier for free

Permissions in this forum:You cannot reply to topics in this forum
World Gold :: Computer :: Pemrograman and Simple Help Common questions, simple answers-
Jump to: