Comments on: 4 Vital WordPress Security Tips in 2012 https://www.searchenginepeople.com/blog/4-vital-wordpress-security-tips-in-2012.html?utm_source=feed&utm_medium=feed&utm_campaign=feed Canada's Search and Social Media Authority Tue, 22 Apr 2014 16:05:30 +0000 hourly 1 By: chanikacha https://www.searchenginepeople.com/blog/4-vital-wordpress-security-tips-in-2012.html/comment-page-1#comment-163466 Fri, 17 Feb 2012 06:30:27 +0000 https://www.searchenginepeople.com/?p=24720#comment-163466 Nowadays, many websites had been hack due to low security. I have a websites that had been hacked but I learn my lesson. Thanks for this information. I had done some of them but I never yet started to back up my website.

]]> By: Ricky https://www.searchenginepeople.com/blog/4-vital-wordpress-security-tips-in-2012.html/comment-page-1#comment-163165 Thu, 16 Feb 2012 07:39:12 +0000 https://www.searchenginepeople.com/?p=24720#comment-163165 So far I have only used Login lockdown plugin on my site. Backup is vital thing for any wordpress owner.

]]> By: Jon https://www.searchenginepeople.com/blog/4-vital-wordpress-security-tips-in-2012.html/comment-page-1#comment-163074 Wed, 15 Feb 2012 23:54:05 +0000 https://www.searchenginepeople.com/?p=24720#comment-163074 As well as the above I recommend that you also ideally:

1. restrict access to wp-admin to only your IP address. Not so easy if you have multiple users and dynamic IPs, but if you are running the blog yourself and your ISP gives you an IP it means nobody else can log in, even if they have your password.

2. WordPress Firewall – there are a couple, both work. Both block suspect URL queries which are often related to MySQL injection attempts, and they also help protect when a plugin goes bad.

3. Back up on 3 levels:
3.1 Full server backup, and download.
3.2 Backup your wp-content files and database
3.3 Create a WordPress export file.

4. Never keep FTP logins and passwords saved on your PC. Many programs save them, such as FTP clients, html editors etc. Just remember them, or even keep them written down in a book. Some trojans / virus are designed to sniff out FTP details.

Plugins to be careful with are any image upload (or any file upload) plugins. These are notorious. Although most are secure, some themes use them built in and they are not updated. So final tip:

5. Make sure you use secure themes!

]]> By: AppHipMom https://www.searchenginepeople.com/blog/4-vital-wordpress-security-tips-in-2012.html/comment-page-1#comment-163065 Wed, 15 Feb 2012 23:20:04 +0000 https://www.searchenginepeople.com/?p=24720#comment-163065 I was suspecting something wasn’t right when & installed the WP firewall 2 plugin. Within 24 of doing so, I received emails telling me that it detected unauthorized access and stopped it. Scary stuff. I will definitely check out your other suggestions and get to deleting all the plugins I no longer use. Great tip! Thanks.

]]> By: Sam P. https://www.searchenginepeople.com/blog/4-vital-wordpress-security-tips-in-2012.html/comment-page-1#comment-163043 Wed, 15 Feb 2012 21:40:16 +0000 https://www.searchenginepeople.com/?p=24720#comment-163043 Must. Backup. Now.

Thanks for reminding

]]> By: Troy Jaggard https://www.searchenginepeople.com/blog/4-vital-wordpress-security-tips-in-2012.html/comment-page-1#comment-163034 Wed, 15 Feb 2012 20:14:44 +0000 https://www.searchenginepeople.com/?p=24720#comment-163034 Recently I’ve been hearing more about attacks on WordPress websites. Thanks for this valuable information.

]]>