July 21st, 2015: Lock Down WordPress!
Increasing the default security of WordPress has become essential. Several excellent security plugin’s are available but this one appears to offer a more robust system than others.
*** BEFORE ACTIVATING ANY SECURITY PLUGIN,
KNOW HOW TO DEACTIVATE IT IF ACCIDENTALLY LOCKED OUT!!***
WordPress plugin: “All in one WP Security and Firewall” by Tips & Tricks.
A comprehensive, user-friendly, all in one WordPress security and firewall plugin for your site.
WordPress itself is a very secure platform. However, it helps to add some extra security and firewall to your site by using a security plugin that enforces a lot of good security practices.
This plugin is designed and written by experts and is easy to use and understand.
It reduces security risk by checking for vulnerabilities, and by implementing and enforcing the latest recommended WordPress security practices and techniques.
Our security and firewall rules are categorized into “basic”, “intermediate” and “advanced”. This way you can apply the firewall rules progressively without breaking your site’s functionality.
This plug in offers a multitude of settings that can change the way the site works, and helps secure and lock down the site. Settings go from basic to more advanced and allow fine-tuning to be compatible with the requirements and theme in use. Some settings can affect how a theme works, so each security setting has to be carefully checked and tested.
The plugin works by writing to the .htaccess file and possibly wp-config.php. It’s important to be aware of what it does!
Some important settings include:
- Changing the default login page
- Changing the WordPress table prefix in the database *
- Prevent “Brute Force Login Attacks” by limiting login by IP address *
- Blacklist IP addresses
- Prevent image hot-linking *
- Scan for failed logins and file changes
- Includes Captcha and Honeypot
- Control or apply permission settings for WP files
- Enforce strong passwords
- Feedback on security score
- ..many more..
* These are volatile and need to be used with care!
This web page describes the basics and includes helpful links for troubleshooting.
https://www.tipsandtricks-hq.com/wordpress-security-and-firewall-plugin
This (long) video covers all the settings and is worth watching if you want to use this plugin:
youtube.com/watch?v=aQYlvTMqcSM