WordPress Security Blitz

•Download as ODP, PDF•

0 likes•332 views

Nevada Interpreters and Translators Association (NITA)

The document discusses basic WordPress security strategies and plugins to consider. It recommends picking a reliable host, splitting domains and hosting, backing up sites regularly, keeping WordPress and plugins updated, restricting wp-admin access, using strong passwords, and installing security-focused plugins like Akismet, Bad Behavior, and WP Security Scan. Regular server log checks, non-standard database prefixes, avoiding the "admin" user, file permission management, and .htaccess restrictions are also advised. Testing backups, database cleanup, and security audits are suggested along with using a staging server and services like CloudFlare.

Technology Design

Reno Tahoe WordCamp 2010 WordPress Security Blitz!

Why? Content, freshness, SEO, networking, design, stability, functionality, performance, scaling...

Why? Content, freshness, SEO, networking, design, stability, functionality, performance, scaling... ...and now security, too?

Why? To leverage your efforts building a thriving community!

Strategy A little bit of effort, some discipline, and LOTS of common sense

What's hot

WordPress End-User SecurityDre Armeda

High Performance WordPressvnsavage

8 Ways to Hack a WordPress websiteSiteGround.com

Word press security basicsEast Bay WordPress Meetup

VaultPress: A Plugin for your Backup needsJacklyn Stachurski

Battling the WSOD - A Tech Support TaleKayleigh Thorpe

WordCamp Finland 2015 - WordPress SecurityTiia Rantanen

Speed up Your Joomla Site for Ultimate PerformanceJoomlaDay Australia

Leveling Up at JavaScriptRaymond Camden

Hidden Secrets For A Hack-Proof Joomla! SiteDaniel Kanchev

20 Tips to Improving WordPress Website - for Beginners-Aus-2017TRB Design, Inc.

WordPress securityakshat

Wordpress Security TipsLalit Nama

WordPress Server SecurityPeter Baylies

Securing your WordPress site in 5 easy piecesKevin Koehler

Now That's What I Call WordPress Security 2010Brad Williams

Defeating Cross-Site Scripting with Content Security PolicyFrancois Marier

Managing WordPressSteven Watts

WordPress Speed OptimisationPeter Bui

WordPress Security WordCamp OC 2013Brad Williams

What's hot (20)

WordPress End-User Security

High Performance WordPress

8 Ways to Hack a WordPress website

Word press security basics

VaultPress: A Plugin for your Backup needs

Battling the WSOD - A Tech Support Tale

WordCamp Finland 2015 - WordPress Security

Speed up Your Joomla Site for Ultimate Performance

Leveling Up at JavaScript

Hidden Secrets For A Hack-Proof Joomla! Site

20 Tips to Improving WordPress Website - for Beginners-Aus-2017

WordPress security

Wordpress Security Tips

WordPress Server Security

Securing your WordPress site in 5 easy pieces

Now That's What I Call WordPress Security 2010

Defeating Cross-Site Scripting with Content Security Policy

Managing WordPress

WordPress Speed Optimisation

WordPress Security WordCamp OC 2013

Viewers also liked

TMCC 2008 Translator ConferenceNevada Interpreters and Translators Association (NITA)

Tools for translators: some theory & backgroundNevada Interpreters and Translators Association (NITA)

The impact of innovation on travel and tourism industries (World Travel Marke...Brian Solis

Open Source CreativitySara Cannon

Reuters: Pictures of the Year 2016 (Part 2)maditabalnco

The Six Highest Performing B2B Blog Post FormatsBarry Feldman

The Outcome EconomyHelge Tennø

Viewers also liked (7)

TMCC 2008 Translator Conference

Tools for translators: some theory & background

The impact of innovation on travel and tourism industries (World Travel Marke...

Open Source Creativity

Reuters: Pictures of the Year 2016 (Part 2)

The Six Highest Performing B2B Blog Post Formats

The Outcome Economy

Similar to WordPress Security Blitz

Consistent Development Environment with Vagrant and ChefGerald Villorente

Joomla Day Austin Part 4Kyle Ledbetter

Joomla Extreme PerformanceMitch Pirtle

Learn you some Ansible for great good!David Lapsley

WordPress Optimization & Security - LAC 2013, LondonBastian Grimm

40 WordPress Tips: Security, Engagement, SEO & Performance - SMX Sydney 2013Bastian Grimm

Word press, the automated wayMichaël Perrin

Up and Running with WordPress - Site Shack Nashville Web DesignJudy Wilson

WordPress Fav Plugins & SecurityThe Toolbox, Inc.

Continuous Deployment: The Dirty DetailsMike Brittain

WordPress 3.0 at DC PHPandrewnacin

NDC 2011 - Let me introduce my Moncaimoncai

Jared Whitlock Open Source In The Enterprise Plone @ NovellVincenzo Barone

The Ember.js Framework - Everything You Need To KnowAll Things Open

Advanced WordPress: Session IIDigital Wax Works

WordPress Plugins You Cannot Live WithoutInternet Marketing Muscle

Optimizing wpMark Kelnar

Building appliancesKris Buytaert

Making Sense out of Amazon ECSWhiteHedge Technologies Inc.

Improving The Performance of Your Web AppJoe Stump

Similar to WordPress Security Blitz (20)

Consistent Development Environment with Vagrant and Chef

Joomla Day Austin Part 4

Joomla Extreme Performance

Learn you some Ansible for great good!

WordPress Optimization & Security - LAC 2013, London

40 WordPress Tips: Security, Engagement, SEO & Performance - SMX Sydney 2013

Word press, the automated way

Up and Running with WordPress - Site Shack Nashville Web Design

WordPress Fav Plugins & Security

Continuous Deployment: The Dirty Details

WordPress 3.0 at DC PHP

NDC 2011 - Let me introduce my Moncai

Jared Whitlock Open Source In The Enterprise Plone @ Novell

The Ember.js Framework - Everything You Need To Know

Advanced WordPress: Session II

WordPress Plugins You Cannot Live Without

Optimizing wp

Building appliances

Making Sense out of Amazon ECS

Improving The Performance of Your Web App

Recently uploaded

08448380779 Call Girls In Civil Lines Women Seeking MenDelhi Call girls

Driving Behavioral Change for Information Management through Data-Driven Gree...Enterprise Knowledge

Factors to Consider When Choosing Accounts Payable Services Providers.pptxKatpro Technologies

Boost Fertility New Invention Ups Success Rates.pdfsudhanshuwaghmare1

How to Troubleshoot Apps for the Modern Connected WorkerThousandEyes

08448380779 Call Girls In Friends Colony Women Seeking MenDelhi Call girls

Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Drew Madelung

A Year of the Servo Reboot: Where Are We Now?Igalia

Exploring the Future Potential of AI-Enabled Smartphone Processorsdebabhi2

Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...apidays

08448380779 Call Girls In Diplomatic Enclave Women Seeking MenDelhi Call girls

Scaling API-first – The story of a global engineering organizationRadu Cotescu

From Event to Action: Accelerate Your Decision Making with Real-Time AutomationSafe Software

Real Time Object Detection Using Open CVKhem

A Domino Admins Adventures (Engage 2024)Gabriella Davis

Data Cloud, More than a CDP by Matt RobisonAnna Loughnan Colquhoun

Boost PC performance: How more available memory can improve productivityPrincipled Technologies

Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Igalia

Axa Assurance Maroc - Insurer Innovation Award 2024The Digital Insurer

Artificial Intelligence: Facts and MythsJoaquim Jorge

Recently uploaded (20)

08448380779 Call Girls In Civil Lines Women Seeking Men

Driving Behavioral Change for Information Management through Data-Driven Gree...

Factors to Consider When Choosing Accounts Payable Services Providers.pptx

Boost Fertility New Invention Ups Success Rates.pdf

How to Troubleshoot Apps for the Modern Connected Worker

08448380779 Call Girls In Friends Colony Women Seeking Men

Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...

A Year of the Servo Reboot: Where Are We Now?

Exploring the Future Potential of AI-Enabled Smartphone Processors

Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...

08448380779 Call Girls In Diplomatic Enclave Women Seeking Men

Scaling API-first – The story of a global engineering organization

From Event to Action: Accelerate Your Decision Making with Real-Time Automation

Real Time Object Detection Using Open CV

A Domino Admins Adventures (Engage 2024)

Data Cloud, More than a CDP by Matt Robison

Boost PC performance: How more available memory can improve productivity

Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...

Axa Assurance Maroc - Insurer Innovation Award 2024

Artificial Intelligence: Facts and Myths

WordPress Security Blitz

1. Reno Tahoe WordCamp 2010 WordPress Security Blitz!

2. Why? Content, freshness, SEO, networking, design, stability, functionality, performance, scaling...

3. Why? Content, freshness, SEO, networking, design, stability, functionality, performance, scaling... ...and now security, too?

4. Why? ...can't we all just get along?

5. Why? To leverage your efforts building a thriving community!

6. Strategy A little bit of effort, some discipline, and LOTS of common sense

9. Split domain and hosting

10.

11. Split domain and hosting

12. Back up (and back up again!)

13.

14. Split domain and hosting

15. Back up (and back up again!)

16. Keep WP, plugins up-to-date

17.

18. Split domain and hosting

19. Back up (and back up again!)

20. Keep WP, plugins up-to-date

21. Move wp-config.php up/out

22.

23. Split domain and hosting

24. Back up (and back up again!)

25. Keep WP, plugins up-to-date

26. Move wp-config.php up/out

27. File permissions (755/644)

28.

29.

30. Regularly check server logs

31.

32. Regularly check server logs

33. Post-Logger (vi-logger.php)

34.

35. Regularly check server logs

36. Post-Logger (vi-logger.php)

37. DB table prefix: not “wp_”

38.

39. Regularly check server logs

40. Post-Logger (vi-logger.php)

41. DB table prefix: not “wp_”

42. No user “admin”

43.

44. Regularly check server logs

45. Post-Logger (vi-logger.php)

46. DB table prefix: not “wp_”

47. No user “admin”

48. Use strong passwords!

49.

50.

51. Bad Behavior

52.

53. Bad Behavior

54. http:BL (Project Honey Pot)

55.

56. Bad Behavior

57. http:BL (Project Honey Pot)

58. WP Security Scan

59.

60. Bad Behavior

61. http:BL (Project Honey Pot)

62. WP Security Scan

63. AntiVirus

64.

65. Bad Behavior

66. http:BL (Project Honey Pot)

67. WP Security Scan

68. AntiVirus

69. ...but don't go wild on plugins!

70.

71.

72. Check on your DB (e.g. drop old tables, optimize... Clean Options plugin)

73.

74. Check on your DB (e.g. drop old tables, optimize...)

75. Security audits (e.g. Acunetix)

76.

77. Check on your DB (e.g. drop old tables, optimize...)

78. Security audits (e.g. Acunetix)

79. Your own computer

80.

81. Check on your DB (e.g. drop old tables, optimize...)

82. Security audits (e.g. Acunetix)

83. Your own computer

84. Use a staging server to test

85.

86. Check on your DB (e.g. drop old tables, optimize...)

87. Security audits (e.g. Acunetix)

88. Your own computer

89. Use a staging server to test

90. External (e.g. CloudFlare)

91. And finally... Support developers and designers!

92. Questions?

93. Contact information Álvaro Degives-Más: Alvaro at RenoLanguages.com

WordPress Security Blitz

Recommended

Recommended

More Related Content

What's hot

What's hot (20)

Viewers also liked

Viewers also liked (7)

Similar to WordPress Security Blitz

Similar to WordPress Security Blitz (20)

Recently uploaded

Recently uploaded (20)

WordPress Security Blitz