I must feel regret not be regular updating my site. I was busy due to my commitments and some other issues. Now a day’s my schedule is too tight so not be able to write regular, on top of that my all sites get Virus attack so me and Dhaval (my younger Bro – Who is PHP techy ) was very busy to control the situations. Now all fine and I learn a lesson that How we can secure our Blog / wordpress Site.
Today I want to share my personal experience about how to secure your blog from Hacking, Virus Attack and from unauthorised access.
After attack on my site, I had visited many sites which talk about WordPress Security. The conclusion as well as common things are as follows.
- Keep latest version of WordPress and keep it updated time to time. You must keep visiting WordPress official blog or subscribe for it. This will help to get an updation about WordPress. Don’t waste time to update the WordPress patch if it “Security Patch”
- You must change default password which is generated by WordPress and Password should not be easy to remember. Password should be combination of Special Character, Numeric and alphabets.
- You should block Search Engine to crawl your WordPress related folders. Now don’t think much how to do this just add following line to your robots.txt
Disallow: /wp-*
- Did you ever realised that people can check which plugin you are using. Got shocked ? check just yoursite.com/wp-content/plugins/ If your hosting provider is good service then you will get an error else you will get shocked. Now what to do ? Confused ? Don’t worry guys. Say thanks to Matt Cutts he has shared brilliant idea. Just make one blank file named “Index.html” and put it at same folder. Now any one visit this folder they just get blank page or Install plugin named “Secure WordPress”
Secure-Wordpress-Plugin
- You must remove WordPress version information line from Meta : That line is look like following string (
If you had installed “Secure WordPress” plugin then you need not to worry too much this plugin will do the same. )
<meta content=”WordPress <?php bloginfo(‘version’); ?>” />
- Now you must lock your Login Page to make sure no one unauthorised person will login into system. Need not to worry you can check this plugin : Login LockDown . This will block your login page if any one try to hack for certain bad attempt.
Login LockDown WordPress Security Plugin
- Now finally you want to implement multiple level of security then you must look at AskApache Password Protect “This plugin doesn’t control WordPress or mess with your database, instead it utilizes fast, tried-and-true built-in Security features to add multiple layers of security to your blog. This plugin is specifically designed and regularly updated specifically to stop automated and unskilled attackers attempts to exploit vulnerabilities on your blog resulting in a hacked site. ” (This will work if you are using Apache Server)
This will provide your blog to more security and more reliability so that you can focus more on your work and feel protected.
Check Official Update from WordPress Blog : How to Keep WordPress Secure
Popularity: 6% [?]
You will also like
Article by Jaydip
Jaydip Parikh is an Internet Marketing Consultant who shares his Learning Experience with the World by his Internet Marketing Blog. He write about Internet Marketing, Blogging, Social Media, etc and some time Personal Stuff too. Apart from this he is Versatile Personality having various skills. Click here to know more about Jaydip or Follow him on Twitter @jaydipparikh & Connect on Google+
{ 1 comment… read it below or add one }
Great for me that I found your Blog… I just started with my own Blog, can I reference to this post? I want to write something on similiar topic!
Jennyb´s last [type] ..I got started to blogging!