5 {{ upvoteCount | shortNum }}
5 {{ upvoteCount | shortNum }}

Security Plugins for Wordpress

by Money79
4 replies
Hello guys,

advise any of you know one or more plugins to enhance the security of my site in Wordpress?

This is the third time I suffer an attack on a server with HostGator and I find my sites blocked by a Malware!

Do you know which is the worst part? That this has caused the suspension of my AdSense account that made ​​me a lot 'of money.

That's why the first to submit a re-evaluation all of my sites I must solve security issues.

Advise you know something that increases the security level of my sites?

According to you is also a problem for HostGator?

thanks
#plugins #security #wordpress
  • Profile picture of the author coachkat
    Yes, I got hacked twice! I found these plugins to be very beneficial:

    bulletproof security
    login lockdown
    wordpress firewall 2

    Once you install and activate these, you will need to go in and set the security setting for them to take hold.
    Signature
    Katheryn L. Olsen aka "Coach Kat"
    Self-Mastery Coach For Entrepreneurs
    Transformational Public Speaker
    http://www.SuccessOrSabotage.com
    {{ DiscussionBoard.errors[5672264].message }}
    • Profile picture of the author InquisitiveMarketer
      Originally Posted by coachkat View Post

      Yes, I got hacked twice! I found these plugins to be very beneficial:

      bulletproof security
      login lockdown
      wordpress firewall 2

      Once you install and activate these, you will need to go in and set the security setting for them to take hold.
      Do you run all of these plugins at once on one WP site?

      Was WP itself hacked (your admin access) or was your hosting account compromised?
      {{ DiscussionBoard.errors[5674928].message }}
  • Profile picture of the author Abledragon
    Security of your WordPress blog is not just about WordPress. It must also involve your computer itself, the way you upload files and it should be a state of mind. Don't just rely on plugins to do the job for you!

    WRT your computer, you must make sure it's clean and free of malware but, particularly, of keyloggers that may capture your FTP login details. If those are sent back to the bad guys they'll be able to log in and place their malware at will.

    When transferring files between your computer and your server use SFTP, rather than FTP, as this will protect your login details from being picked up by eavesdroppers.

    If you get someone to work on your WordPress installation don't give them your login details, create a new user with Admin rights for them to use and then delete that user as soon as they've finished.

    Change your login username from 'admin' to something else (if you haven't already done so), but make sure you also change your profile nickname to something different from your new login username.

    Needless to say, you should check that your computer is clean before changing your Hostgator passwords but, if you're confident it is, then you should change them.

    Apart from that, I use Login Lockdown and WP-Security-Scan to help protect my WP installs.

    There are more details on WordPress security here:

    WordPress Security: Not Just About WordPress | WealthyDragon

    ... and here:

    WordPress Security: How to Fix Your Site if it is Hacked | WealthyDragon

    Cheers,

    Martin.
    Signature
    WealthyDragon - Earning My Living Online
    {{ DiscussionBoard.errors[5675184].message }}
  • Profile picture of the author dazkat
    You may want to look at Website Defender. It monitors your site and tells you the areas you need to rectify. It uses a Red, Orange, Green system to let you know of High, Medium or Low security risks. It also notifies you everytime any changes have been made to your site.

    In my case website defender found some malicious code in a couple of my php files that I don't think I would have found otherwise.

    All the best
    {{ DiscussionBoard.errors[5712630].message }}

Trending Topics