Ok, so how DO you make WP secure for a membership site?

by midwestmedia 2 replies
I've been doing some research on the topic of making WP work well as a CMS, specifically as a membership site and I was wondering if anyone has a proven method that has worked for them.

All of the research seems to show that some of the plugins that are recommended aren't as secure or are somehow still vulnerable to attack. Plus, with WP recommending upgrades all the time, I wonder how that may affect individual plugins?

Is there anyone here who is successfully using WP as a secure membership site and could provide concrete plugin recommendations or other tips? Every time I delve into this I get such conflicting information!

Thanks,
#main internet marketing discussion forum #make #membership #secure #site
Avatar of Unregistered
  • Profile picture of the author jjpmarketing
    Originally Posted by midwestmedia View Post

    I've been doing some research on the topic of making WP work well as a CMS, specifically as a membership site and I was wondering if anyone has a proven method that has worked for them.

    All of the research seems to show that some of the plugins that are recommended aren't as secure or are somehow still vulnerable to attack. Plus, with WP recommending upgrades all the time, I wonder how that may affect individual plugins?

    Is there anyone here who is successfully using WP as a secure membership site and could provide concrete plugin recommendations or other tips? Every time I delve into this I get such conflicting information!

    Thanks,

    Ok. Here are some steps to secure your membership site wordpress blog.

    First make certain you are placing either a blank index.html file in folders where you don't want the contents listed publicly, particularly the wp-content folder. Do this elsewhere if your secure or important olders are located somewhere else on your hosting account.

    You could also add a meta refresh redirect in those index.html files that redirect back to your sales page.

    This is very effective if you are using the members only plugin. To make this work best you will also need to enable hotlinking protection in cpanel.

    This will protect you from folks trying to discover the location of video files, downloads, etc. by viewing the source of a page.

    Lastly, you shouldn't rely solely on Wordpress to accomplish this task. I strongly recommend you invest in DLGuard to setup a secure membership site on Wordpress.

    I help setup a blog with DLGuard and believe me it is rock solid secure.

    As far as the attacks on Wordpress blogs go, just make certain you install the Wordpress Automatic Upgrade plugin. Every time there is a new version released, make certain you update your blog to include the latest security patches.
    {{ DiscussionBoard.errors[134418].message }}
  • Profile picture of the author Paul_Evans
    Hi Jennifer,

    I install WP to a folder like "members"

    Then use amember.com for the membership managament and to protect the members folder.

    Peace,
    Paul
    Signature
    <a href=\http://www.warriorforum.com/warrior-...your-seat.html" border="0" />
    {{ DiscussionBoard.errors[134424].message }}
Avatar of Unregistered

Trending Topics