2019-09-22 00:00:00

Securitybeginner|guide|hacker|protect|tips|Wordpress

Wordpress security settings for beginners (without having to know technical details)

Wordpress is the world's most popular software for building web sites and for publishing on the internet. This fact makes it the number one target for hackers. Every self-hosted Wordpress admin, even if only running a simple blog, should take security seriously because an unsecured Wordpress site can be taken over by hackers pretty quickly. Francesca Marano gave a talk at Wordcamp Singapore where she presented the basic security settings for Wordpress sites.

We monitor our sites, and have noticed that a frequent attack target for hackers is the Wordpress login. Specifically, they are trying to login as the admin. The first steps to protect a site is:

  1. Use long passwords for Wordpress logins.
  2. Passwords must be unique.
  3. Never share your password with anyone, not even with your mother.
  4. Advise users about password managers apps, like Password Safe. 1Password and other password managers that are cloud services are useful as well, but the risk is that they can be hacked - it has happened.

Another common avenue for hackers to sneak into a Wordpress system is via plugins that have vulnerable code.

  • Update Wordpress core software whenever a new version is released.
  • Update plugins and themes.
  • Ensure that your Wordpress database and other data customized for your site is regularly backed up. Many web hosting companies provide this service.
wordpress admin settings screen shot

Other tips for better security:

  • Install two-factor-authentication (2FA) for Wordpress logins. Here is an article that explains what 2FA is and how to activate it. It requires a plugin for Wordpress, and an app for every phone whose owner wants to login to Wordpress.
  • In Wordpress Settings - General Settings - Membership, turn off Anyone can register.
  • Don't answer quiz or questions on the internet that request your personal information, like your pet's name, mother's maiden name, your high school, or similar. Someone may be fishing your password recovery tips.

View Francesca Marano's beginner-friendly talk at Wordcamp Singapore 2019 below:

Video by Wordpress.tv.

For detailed technical tips for securing a Wordpress site, the developers of the software provide plenty of information.

News

2025-01-15 08:59:00

Not to mention travel – when real life experiences in a destination don’t match the expectations and everything that can go wrong, goes wrong. Well, that’s the beauty of #travel. #Europehttps://klaava.com/nitpickers-travel-journal-travel-lessons-learned-in-2024/


News

2025-01-11 13:25:00

A conclusion from the Traffic Scorecard 2024 results is it takes about double the time to drive along the streets of London (the most congested city in #Europe) than the streets of Munich, which is ranked the 21st most congested European city. #traffic #travelhttps://klaava.com/the-cities-in-europe-where-people-are-stuck-in-traffic-most-often/


A shop dedicated to tasty juice

2025-01-09 14:04:10

arihak

A shop dedicated to tasty juice


in the busy old town center.

2025-01-08 16:16:08

in the busy old town center.


News

2025-01-07 14:56:00

A reminder for keeping your data safe when traveling. Why? It is likely that you have to access your most critical data in risky situations on the road.https://cybernews.com/privacy/how-to-protect-your-sensitive-information-while-traveling/


News

2025-01-02 16:33:00

What about the scenery, you who are hurrying to the other side?#streetphotography#streetphoto


News

2025-01-01 16:06:00

According to a survey, third of travelers are victims of online booking scams. Since it is so convenient to make travel reservations online, that’s what we do. The problem is that we haven’t adopted new methods to avoid online scams. #travel #scamhttps://klaava.com/a-traveler-is-more-likely-to-get-scammed-when-booking-a-trip-than-being-robbed-in-a-destination/


Perhaps road builders had too much time?

2024-12-29 15:19:44

Perhaps road builders had too much time?


News

2024-12-27 18:25:00

#Photography is full of so-called “rules” that can feel overwhelming. However, some of these “rules” are downright myths.https://www.diyphotography.net/debunking-seven-common-myths-photographers-still-believe-in/


What should I read next?

2024-12-25 15:18:22

arihak

What should I read next?


News

2024-12-23 11:34:00

Since #EU #DMA has specified #Apple as a #gatekeeper in #mobile devices, EU considers Apple should implement several iOS connectivity features, predominantly used for and by connected devices. For instance, notifications, automatic Wi-Fi connection, AirPlay, AirDrop, or Bluetooth audio switching.https://digital-markets-act.ec.europa.eu/commission-seeks-feedback-measures-apple-should-take-ensure-interoperability-under-digital-markets-2024-12-19_en


News

2024-12-21 14:51:00

Smartphone users in the US are not impressed with the latest artificial intelligence features on their devices with 73 percent of Apple users and 87 percent of Samsung users unsatisfied, according to a new study. #phone #AIhttps://petapixel.com/2024/12/19/majority-of-smartphone-users-are-unimpressed-with-ai-features-study-finds/


There should be enough ice already to open the hotel

2024-12-20 16:40:17

There should be enough ice already to open the hotel


Hiking on a mountain experience: the end of an ancient tunnel

2024-12-09 14:12:31

arihak

Hiking on a mountain experience: the end of an ancient tunnel


on a hot summer day

2024-12-02 18:47:01

on a hot summer day


Cloudy day in a valley

2024-11-25 16:31:59

arihak

Cloudy day in a valley


In the shade of a lone palm tree

2024-11-25 15:46:29

In the shade of a lone palm tree


an abandoned town?

2024-11-07 18:35:22

an abandoned town?


A quiet moment between heavy rain

2024-10-24 17:34:45

A quiet moment between heavy rain


Everyone loves a pretty mountain scenery

2024-10-24 16:54:02

arihak

Everyone loves a pretty mountain scenery