WordPress Security

Jan 222010
 

If you are using WordPress, here a couple of great plugins to help keep those doors locked, and your site safe.

Security Plugins for WordPress

The first plugin is WordPress Firewall, from SEO Egghead. This is a great little plugin that will block traversal, and SQL injection attacks to name a few capabilities. You can whitelist your own IP, and even get an email when an attack is trying to be made. I do use the email me feature, and I do get emails.

Here is a screenshot of the plugins main features:

firewall

The second plugin is SABRE, by Didier Lorphelin.

SABRE (Simple Anti Bot Registration Engine) is dedicated to the protection of your site against automatic registration by spammers.

This plugin block bots from automatically registering an account on your blog. I was constantly getting registrations on this site, most all from RU, and there is basically no reason to register on this site. The plugin gives you full control allowing you to set how aggressively you want to block new users from joining.

Within the first few months of having this plugin, it blocked over 300 bogus registrations. For sure a plugin I like to have.

More Basic Security

A little extra tip to keep your sites (running WordPress or not) safe from hackers is to keep them clean, and keep your software up to date. When I say clean, I mean, remove all the old junk that you no longer use. Here is a post I wrote about it a while back, Spring Security Cleaning.

  3 Responses to “WordPress Security”

  1. used tires says:
    January 22, 2010 at 11:55 am

    I am definitely going to try those plugins, on my personal site I found out someone had injected some code into the footer of my wordpress theme, its over a month later.. and I still see that Google has the spam keywords in the cached pages :( and also whenever I try to clear the “spam” out of the spam box it always times out so yeah I think theres definitely something up.

    Till then,

    Jean

    Reply
  2. oyun oyna says:
    January 22, 2010 at 6:51 pm

    I had also recently set up this plugin, but gave a 404 error on my site.

    Reply
  3. Guy 3DTV says:
    June 7, 2010 at 11:29 pm

    I don’t think end-users of WordPress should have to worry about security and need to install plugins to deal with it.

    WordPress need to concern themselves with security and release secure versions for everyone. After all, it’s a million times more efficient and effective for WordPress to put security in *prior* to release than end-users having to do it *post* release.

    Guy.

    Reply

 Leave a Reply

(required)

(required)

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>

   
© 2012 Best Web Image Suffusion theme by Sayontan Sinha