Latest Posts:
  • 20 Beautiful Contact Us Page Designs for Inspiration
  • Daily Design Inspiration – No 05
  • Free Allied Blog WordPress Theme
  • Best Logos for Photography that Will Inspire You
  • 4 To Do’s Before Choosing an SEO Agency for Your Business
  • 15 Best Inspiration for UI UX Design
  • Make Neat Websites in 2019 with one of these Top-of-the-Line WordPress Themes
  • Logo Design Collection by Nat
Search for:
  • Facebook
  • Twitter
  • Google Plus
  • Pinterest
  • RSS
Downgraf – Best Blog for Designers to Inspire Them
  • All Articles
    1. Tech
    2. Tutorials
    3. Illustrator
    4. Photoshop
    5. View All
    Google Tracks Your Movements, Even When You Tell It Not to Follow You
    October 22, 2018
    how to tighten up your online security in 10 minutes No excuses: how to tighten up your online security in 10 minutes
    October 22, 2018
    Roadmap to Cisco CCIE Security Certification and Getting the Highest Paying Career with Cisco Networking
    October 22, 2018
    4 Easy Tips to Record Better Quality Screen Recording Videos
    August 28, 2018
    Protecting Your Privacy Online: Key Steps
    July 31, 2018
    6 Tips to Boost Your PC Gaming Rig’s Performance
    July 31, 2018
    How-Is-Augmented-Reality-Connecting-Nature-Using-Tech How Is Augmented Reality Connecting Nature Using Tech
    July 13, 2018
    Data Destruction and Its Importance to Secure Your Data Privacy
    June 30, 2018
    15 Best Adobe Photoshop Tutorials of 2015 15 Best Adobe Photoshop Tutorials of 2015
    November 26, 2015
    Collection of Double Exposure Effect Photoshop Tutorial Collection of Double Exposure Effect Photoshop Tutorial
    August 11, 2015
    How to Create a Low Poly Art Self Portrait Tutorial How to Create a Low Poly Art Self Portrait Tutorial
    June 6, 2014
    Creative Characters Illustration Tutorials 30 Creative Characters Illustration Tutorials
    February 15, 2014
    Poster Design Tutorials for Photoshop 20 Poster Design Tutorials for Photoshop
    January 6, 2014
    Stunning Photoshop Tutorials Stunning Photoshop Tutorials
    August 14, 2013
    Useful Collection Of Photoshop Tutorials Useful Collection Of Photoshop Tutorials
    February 27, 2013
    15 Best Collection Of Adobe Photoshop Tutorials
    August 8, 2012
    Creative Characters Illustration Tutorials 30 Creative Characters Illustration Tutorials
    February 15, 2014
    Poster Design Tutorials for Photoshop 20 Poster Design Tutorials for Photoshop
    January 6, 2014
    15 Best Adobe Photoshop Tutorials of 2015 15 Best Adobe Photoshop Tutorials of 2015
    November 26, 2015
    Collection of Double Exposure Effect Photoshop Tutorial Collection of Double Exposure Effect Photoshop Tutorial
    August 11, 2015
    Poster Design Tutorials for Photoshop 20 Poster Design Tutorials for Photoshop
    January 6, 2014
    Stunning Photoshop Tutorials Stunning Photoshop Tutorials
    August 14, 2013
    Useful Collection Of Photoshop Tutorials Useful Collection Of Photoshop Tutorials
    February 27, 2013
    15 Best Collection Of Adobe Photoshop Tutorials
    August 8, 2012
    Designing a Glazed Top Business Card
    August 5, 2012
    Creating a Dark and Sleek Brochure Design in Photoshop
    July 4, 2012
    4 To Do’s Before Choosing an SEO Agency for Your Business
    January 28, 2019
    The Role of CPA in Business Intelligence and beneficial tips
    December 16, 2018
    How to Become a Web Software Developer
    December 3, 2018
    5 Ways to Prepare Your Ecommerce Site for Mobile Users 5 Ways to Prepare Your Ecommerce Site for Mobile Users
    November 26, 2018
    Photographing Feelings: How to Evoke Real Emotion in Your Subjects
    November 22, 2018
    Make My Assignment Right Now – Where I Need Outstanding Programming Help
    November 8, 2018
    Stay On Top of Error and Exception Monitoring
    October 23, 2018
    Google Tracks Your Movements, Even When You Tell It Not to Follow You
    October 22, 2018
    Previous Next
  • iPhone Wallpaper
    10 iPhone Wallpapers that Will Make Your Screen Beautiful - 01 Top iPhone Wallpapers HD Download – 01
    January 2, 2019
    Previous Next
  • Inspiration
    • Architecture and Interior Design
    • Digital Art
    • Graphic Design
    • Illustration
    • Industrial Design
    • Infographics
    • logo design
    • Motion Graphics
    • Nail Art
    • Painting
    • Photography
    • Print Design
    • Sculpture
    • Street Art
    • Tattoos
    • Typography
    • UI UX Design
    • Web Design Inspiration
  • Free Download
    • Actions
    • Brushes
    • Flyers
    • Fonts
    • Free PSD
    • Giveaways
    • HD Wallpapers
    • Icons
    • Patterns
    • Textures
  • Web Development
    1. Website Templates
    2. Code Snippets
    3. CSS
    4. HTML
    5. jQuery
    6. PHP
    7. View All
    Creating Trendy Abstraction Real-life Examples Creating Trendy Abstraction: Real-life Examples
    November 2, 2018
    How-To-Choose-The-Best-Food-Web-Template How To Choose The Best Food Web Template To Promote Your Business?
    October 26, 2018
    Simple Under Construction HTML Page & Coming Soon Website Template Free Download
    May 19, 2017
    20 Admin Dashboard Templates Free Download for Your Web Applications
    January 25, 2016
    Useful JavaScript Animation Plugins and Libraries Useful JavaScript Animation Plugins and Libraries
    December 22, 2015
    Best Hotel Website Templates for Hotel and Travel Booking Sites 10 Best Hotel Website Templates for Hotel and Travel Booking Sites
    December 21, 2015
    Best Website Template 2015 10 Best Website Template 2015
    September 10, 2015
    20 Beautiful HTML Landing Page Templates 20 Beautiful HTML Landing Page Templates
    September 2, 2015
    Set Featured Image Automatically Without Plugin Set Featured Image Automatically With PHP Snippets
    October 25, 2017
    Members Only Content PHP Code Snippet Hide Private Content From Non Users With PHP Code Snippet
    October 25, 2017
    How to Convert a date to time ago How to Convert Date to Time ago WordPress
    February 7, 2016
    Automatically Set the Featured Image How to Automatically Set the Featured Image in WordPress
    June 7, 2015
    Create Short Code for Custom Post Type with WordPress Custom Plugin Create Short Code for Custom Post Type with WordPress Custom Plugin
    May 25, 2015
    How to Show or Hide Widgets on Specific Pages without Plugin How to Show or Hide Widgets on Specific Pages without Plugin
    March 27, 2015
    How To Allow PHP In WordPress Widget Area Without Plugin
    August 4, 2014
    Ridiculously Responsive Social Sharing Buttons
    March 31, 2014
    Animated Tooltip with CSS3
    March 28, 2014
    CSS Media Queries For All Common Devices
    January 18, 2014
    Change Text Selection Color With CSS
    January 4, 2014
    Make Cross Browser Transparency With CSS
    December 30, 2013
    Make Bootstrap Dropdown Menu Extend on Hover How to Make Bootstrap Dropdown Menu Extend on Hover
    December 30, 2013
    html5 full screen background video Create Html5 Full Screen Background Video
    January 10, 2014
    html5 full screen background video Country Drop Down List for Web Forms
    January 1, 2014
    Scroll to Top with jQuery
    December 30, 2013
    Set Featured Image Automatically Without Plugin Set Featured Image Automatically With PHP Snippets
    October 25, 2017
    Members Only Content PHP Code Snippet Hide Private Content From Non Users With PHP Code Snippet
    October 25, 2017
    How to Convert a date to time ago How to Convert Date to Time ago WordPress
    February 7, 2016
    Automatically Set the Featured Image How to Automatically Set the Featured Image in WordPress
    June 7, 2015
    Create Short Code for Custom Post Type with WordPress Custom Plugin Create Short Code for Custom Post Type with WordPress Custom Plugin
    May 25, 2015
    How to Show or Hide Widgets on Specific Pages without Plugin How to Show or Hide Widgets on Specific Pages without Plugin
    March 27, 2015
    How To Allow PHP In WordPress Widget Area Without Plugin
    August 4, 2014
    Require Featured Image In WordPress
    March 16, 2014
    Best Laravel Admin Panel Generators Best Laravel Admin Panel Generators
    January 16, 2019
    Artificial Intelligence Creating a Website by Looking at the Wireframe Artificial Intelligence Creating a Website by Looking at the Whiteboard Wireframe
    October 15, 2018
    Awesome Diagonal Slideshow Awesome Diagonal Slideshow
    September 11, 2018
    Simple Full Screen Image Reveal Effect Simple Full Screen Image Reveal Effect
    July 17, 2018
    Best Mobile Emulators and RWD Testing Tools Best Mobile Emulators and RWD Testing Tools
    March 20, 2018
    A jQuery Ajax Plugin for Ajaxify Your Website
    March 6, 2018
    Responsive and lightweight CSS Frameworks for Creating Websites Responsive and lightweight CSS Frameworks for Creating Websites
    December 19, 2017
    Neversink Loot Filter version 5.21 Neversink Loot Filter version 5.21 for Game Path of Exile
    November 17, 2017
    Previous Next
  • WordPress
    1. WordPress Plugin
    2. WordPress Theme
    3. View All
    Getting Started with Gutenberg Plugin Getting Started with Gutenberg Plugin
    August 17, 2018
    What Is an LMS Plugin and How Does It Work?
    May 19, 2018
    Useful WordPress Plugins You Should Have [2017 Collection]
    March 26, 2017
    Top 10 Free Plugins to Improve Your WordPress Commenting System
    January 25, 2016
    email opt-in plugin bloom Email opt-in plugin Bloom – Convert Visitors into Subscriber
    March 18, 2015
    10 WordPress Christmas Plugins to Make Your Christmas Jovial 10 WordPress Christmas Plugins to Make Your Christmas Jovial
    December 6, 2014
    Ridiculously Responsive Social Sharing Buttons
    March 31, 2014
    Make your visitors smile with these 6 cool WordPress smilies plugins
    March 6, 2014
    Allied Blog WordPress Theme Free Allied Blog WordPress Theme
    February 3, 2019
    Make Neat Websites in 2019 with one of these Top-of-the-Line WordPress Themes
    January 24, 2019
    Best WordPress Themes for Freelancers 2018 Best WordPress Themes for Freelancers 2018
    September 3, 2018
    10 Best Selling Elementor Themes to Get Your Audience 10 Best Selling Elementor Themes to Get Your Audience
    August 10, 2018
    Best WordPress Themes for AdSense Earnings 11 Best WordPress Themes for AdSense Earnings
    June 13, 2018
    Creative Portfolio for Freelancer and Agency Creative Portfolio for Freelancer and Agency – Petal
    March 4, 2018
    Best Ecommerce Sites for Small Business Best Ecommerce Sites for Small Business
    March 4, 2018
    40 Beautiful WordPress Portfolio Themes to Show Your Work 40 Beautiful WordPress Portfolio Themes to Show Your Work
    January 20, 2018
    Allied Blog WordPress Theme Free Allied Blog WordPress Theme
    February 3, 2019
    Make Neat Websites in 2019 with one of these Top-of-the-Line WordPress Themes
    January 24, 2019
    Best WordPress Themes for Freelancers 2018 Best WordPress Themes for Freelancers 2018
    September 3, 2018
    Getting Started with Gutenberg Plugin Getting Started with Gutenberg Plugin
    August 17, 2018
    10 Best Selling Elementor Themes to Get Your Audience 10 Best Selling Elementor Themes to Get Your Audience
    August 10, 2018
    Best WordPress Themes for AdSense Earnings 11 Best WordPress Themes for AdSense Earnings
    June 13, 2018
    What Is an LMS Plugin and How Does It Work?
    May 19, 2018
    Creative Portfolio for Freelancer and Agency Creative Portfolio for Freelancer and Agency – Petal
    March 4, 2018
    Previous Next
  • Search for:
All Articles

Protected The WordPress Blog Without Touching Any Code

By Riz June 19, 2012 8 Mins Read
0
  •  shares
  • 3
  • 0
  • 5
  • 0
  • 6
  • 0
  • 0
  • 0
  • 0
  • 0

    Hi Guys,

    Searching on the internet I found this article for the security of Word Press. It’s Very useful article so I thought I share with our Readers. This article was taken from problogger. Hope you all will like it. Will keep your feedback about what you thought of this Article.

     

    Right now WordPress powers 48 of the top 100 blogs online. More than that, WordPress actually powers 19% of the web as a whole.

    Essentially, this is great. Such a strong community of users and developers means that the platform is sure to evolve even further and provide us with lots of cool features that are yet to be developed.

    Unfortunately, this creates some dangers as well… Whenever there’s a big number of people trying to make something happen, there’s another group of people trying to take it all down.

    The cases where a blog owner loses complete access to their site are not uncommon. Actually, sometimes even whole domains get hijacked, and I honestly have no idea on how that’s done.

    But we don’t have to know how hijacking a domain or stealing a blog works to be able to implement some basic security precautions. And that is exactly what this post is about—making your blog secure without playing with source code, understanding things, and stuff.

    Typical WordPress security problems

    WordPress as a whole (a website management platform) is very well designed. It doesn’t have any preposterous security issues that beginning programmers could exploit. The problems, however, arise when you try to tweak your installation of WordPress by adding new plugins or themes, implementing hacks, or doing anything else that interferes with WordPress.

    Of course, this doesn’t mean that you should settle for the default installation, not use any plugins, and only blog using the default theme. What it means is that you simply need to be careful when installing new stuff on your blog, as well as when setting up your blog for the first time.

    Let’s start by discussing some of the common security problems you’ll need to handle.

    The basics

    Excuse me for being obvious, but you really need to start with proper usernames and passwords for your user accounts. Everyone realizes the importance of this, but not as many people implement the best practices.

    You must use complex passwords—letters, numbers, special characters, spaces—and usernames that are not obvious. A password of “admin,” for example, is extra-obvious.

    The name of the next problem in line: shady, untested plugins. WordPress plugins have a fair amount of power over how your WordPress installation works. If a plugin contains some buggy code, it can crash your blog completely. The same goes for code that’s not secure. Finally, if one of your plugins doesn’t implement any security features, it can become the point of entry for malicious bots or direct attacks by hackers.

    Remember, the weakest link is where the chain breaks. You only need one low-quality plugin to get into trouble.

    The advice I have here is: don’t use any plugin that hasn’t been updated in a while, or hasn’t been officially tested with the newest version of WordPress. Being up to date is always the best precaution. Also, plugins that are more popular are usually more secure as well.

    There’s one more big issue we have to in terms of shady code, and that’s WordPress themes. I will say this again—and I’m not sorry for it—free themes are evil.

    Well okay, not all of them. There are two kinds of free themes:

    (1) The good ones, released by quality theme stores as a way of attracting new customers by spreading one or two great free themes,

    (2) The evil ones made primarily to look great, attract many users, and use the space in the footer for SEO purposes.

    These SEO-focused themes often use some strange, encrypted PHP code that can’t be removed, otherwise the theme stops working. This code usually displays search-optimized links (sometimes in an invisible font).

    You never, let me repeat, never want to have encrypted code on your site. Even when you get the theme for free in exchange for hosting this encrypted section, it’s not worth it.

    If you’re planning to use your WordPress site as the base of your online business then buying a quality theme is a must. If you have a bigger budget, you could even hire a developer to build your theme on top of some popular theme framework.

    Since we’ve now covered the basics user accounts, plugins, and themes let’s look into some of the things that you can do to actively make your blog more secure.

    Steps to better security

    First, let’s talk through some of the best practices in terms of security. Then, let me show you some cool security plugins.

    Hosting security

    Yes, it all starts here. The story is similar to the one about WordPress themes: if you want to have a secure environment, you simply need to invest money. Don’t use free hosting.

    Make sure that your web host implements basic security features and that it has good reviews among users (search on forums; Google is likely to display only affiliate reviews, which aren’t always credible).

    Secure your own machine first

    This is not something that comes to mind immediately when we’re talking WordPress security, is it? But what’s the point of securing your WordPress installation on the host if you have a malicious key-logger installed on your computer that will pick up your password and send it to the attacker?

    You always need to start by securing the machine you’re using to connect with your WordPress blog. There are many good antivirus apps available, so I won’t discuss this any further. Just keep in mind that this issue is equally as important as anything else described in this post.

    Update, update, update

    Update WordPress. Update your plugins. Update your theme. Try to install these updates immediately after the alert apepars in your Dashboard.

    Here’s why. Fixes to new bugs and security holes are always a big part of every update. The minute an update gets released, all the changes are announced in the official doc that goes along with the update.

    If a hacker wants to attack a site that hasn’t been updated yet, they just have to take a look at the document, do a little research and tackle the holes that the new version fixes.

    For example, here’s an excerpt from the information on the newest version of WordPress:

    “WordPress 3.3.2 also addresses: Limited privilege escalation where a site administrator could deactivate network-wide plugins when running a WordPress network under particular circumstances, disclosed by Jon Cave of our WordPress core security team, and Adam Backstrom.”

    Essentially, such information is a guide for hackers on how to attack outdated sites. So be sure to update everything, without delay.

    Back up regularly

    No one likes to get hacked, but we can’t assume that it won’t ever happen. You always should have an up-to-date backup of your WordPress site, just in case something goes wrong and you have to restore your blog.

    You can do backups manually, or you can sign up to a paid service or simply get a plugin to do this for you (more on this later).

    Delete plugins you don’t use

    There’s no point in occupying your server’s resources with stuff you don’t use. The same advice applies to themes. Leave just the theme your blog uses, and delete the rest (you can leave the default theme, just in case).

    Handy plugins to improve your blog’s security

    Everybody loves them some cool plugins, right?! So here’s a list of the ones I recommend you use to make your blog more secure:

    1. AntiVirus: This plugin protects your blog against exploits, malware, and spam injections. It scans your theme’s files and notifies you if anything suspicious is going on.
    2. Online Backup for WordPress: This app is the one I use for my backups. You can use a schedule or perform backups by hand, and have them sent to your email address or made downloadable. The plugin backs up the database as well as the file system.
    3. Secure WordPress: This is where you stop scanning and start acting! This plugin performs a number of security tweaks to your blog. There’s no point in listing them here, so I invite you to check for yourself. Also, you can choose which ones you want to enable and which you don’t need.
    4. BulletProof Security: The list of things this plugin does is quite impressive. It’s a really serious piece of software. Just to name a few features: protection against XSS, RFI, CRLF, CSRF, Base64, Code Injection and SQL Injection hacking attempts, one-click htaccess protection, wp-config.php protection, and loads of other tweaks. It’s really worth looking into.
    5. Hide Login: This plugin has a very simple idea behind it. You can use it to hide your login page. In other words, it creates a custom login URL. It also lets you create a custom admin URL (instead of domain.com/wp-admin), and a custom logout URL.

    Source

    0
    Riz
    Author Riz

    Passion is beyond limitation. If you’re passionate about ANYTHING, nobody can stop you not to do what you want. Blogging and Web Designing is my passion that don’t drive me to do what I want but push me as well to share fanatical stuff with people.

    • Website
    • Facebook
    • Google+
    Prev Post

    Helpful Responsive Web Design Tutorials

    June 19, 2012 5 Mins Read
    Next Post

    Impressive Showcase Of Vintage & Retro Logo Designs

    June 21, 2012 2 Mins Read

    Related Posts

    4 To Do’s Before Choosing an SEO Agency for Your Business

    January 28, 2019

    The Role of CPA in Business Intelligence and beneficial tips

    December 16, 2018

    How to Become a Web Software Developer

    December 3, 2018
    5 Ways to Prepare Your Ecommerce Site for Mobile Users

    5 Ways to Prepare Your Ecommerce Site for Mobile Users

    November 26, 2018

    Write A Comment Cancel Reply

      • 20 Beautiful Contact Us Page Designs for Inspiration
        In Inspiration

        20 Beautiful Contact Us Page Designs for Inspiration

        February 18, 2019 2 Mins Read
      • Daily Design Inspiration - No 05
        In Inspiration

        Daily Design Inspiration – No 05

        February 13, 2019 1 Min Read
      • Allied Blog WordPress Theme
        In Wordpress

        Free Allied Blog WordPress Theme

        February 3, 2019 1 Min Read
      • Best Logos for Photography that Will Inspire You
        In Inspiration

        Best Logos for Photography that Will Inspire You

        February 1, 2019 3 Mins Read
    • downgraf
      Downgraf is a Design and Art Inspiration with Design Shop that have every design resource. It is devoted to bring the best content together from blogs and resources. Sharing WordPress Themes, Web Design Inspiration, Logo Design Inspiration, Digital Art, Illustrations, Packaging Designs, Photography and much more.
    • Useful Links
      • About Us
      • Contact us
      • Cookies Policy
      • Privacy Policy
      • Offers
    • Popular
      • 25 Beautiful IPhone 6 Wallpapers
        September 13, 2014
      • 15 Best PSD Party Flyers For Free
        August 10, 2012
    • Facebook
    • Twitter
    • Google Plus
    • Pinterest
    • RSS

    © 2018 downgraf. All Rights Reserved.

    Top

      Type above and press Enter to search. Press Esc to cancel.