2. MICHELE BUTCHER
ā¤ Support Guru for Give
ā¤ Support Engineer for Yoast
ā¤ Geek behind Canāt Speak Geek
ā¤ Beginners and Intermediate
WordPress Instructor
ā¤ Lead Organizer for Southern
Illinois WordPress Meetup
@michele_butcher
4. LEARN THE STEPS TO CARE
FOR YOUR SITE ONCE THE
DESIGNER/DEVELOPER TURNS
IT OVER TO YOU.
@michele_butcher
5. IF YOU ARE WRITING YOUR OWN
CONTENT, BE COMFORTABLE WITH
THE DASHBOARD WHEN YOU MAKE
THE DECISION TO DO IT ALONE.
Ask for tutorials or search the web to learn before you try to do it alone.
@michele_butcher
6. THERE ARE SIMPLE STEPS
EVERYONE WITH A
WORDPRESS SITE SHOULD DO.
@michele_butcher@michele_butcher
7. THE FIRST THING TO
REMEMBER IS THAT IF YOU DO
NOT CLICK SAVE AT THE END, IT
DID NOT HAPPEN.
Save and save often
@michele_butcher
9. BACKUP AND BACKUP OFTEN!
ā¤ Always save to someplace OTHER than your server
ā¤ Save them to Dropbox, AWS, email, or your local machine
ā¤ Have them scheduled to be made daily or at least weekly
@michele_butcher
11. UPDATES ARE
IMPORTANT!
Update core. Update themes update plugins!
The biggest reasons of updates is typically security or feature
related.
The biggest source of nearly all hacks is due to lack of updating.
@michele_butcher
12. WHEN YOU SEE THE LITTLE RED
CIRCLE BESIDE THE DASHBOARD
BUTTON MEANS YOU HAVE
UPDATES NEEDING TO BE DONE
Always make a backup before you update for safe
measures.
@michele_butcher
13. WHEN IT COMES TO UPDATING IF YOU
USE ENVATO PRODUCTS (THEMEFOREST
AND CODECANYON) ALWAYS CHECK
THE BOX IN THE DOWNLOADS TO BE
NOTIFIED OF UPDATES.
That is the only way you will know if any of their products need to be updated.
This is why the RevSlider infection was so widespread. Many did not even know the
plugin was built into their theme.
@michele_butcher
15. IT IS MORE IMPORTANT TO SECURE
ALL THE THINGS BEFORE SOMETHING
HAPPENS!
MANY HAVE YET TO LEARN THIS!
Every single day hackers ļ¬nd new ways to get your
information.
Todays features are tomorrowās vulnerabilities.
Stop them before they stop you
@michele_butcher
16. HOW DO THEY GET IN?
ā¤ They guess your login information
ā¤ Denial of Service Attack (DDoS)
ā¤ Through a ļ¬le in a theme, plugin, or anything on your server
where they found an exploit
ā¤ Through your FTP and/or cPanel conļ¬guration
ā¤ They guess your login information
@michele_butcher
17. THERE ARE SOME SIMPLE
STEPS TO KEEP THE HACKERS
OUT OF YOUR WEBSITE.
@michele_butcher
18. NEVER EVER NEVER USE
āADMINā AS A USERNAME OR
āPASSWORDā AS PASSWORD ON
ANY OF THE THINGS. NEVER!!!!
Any questions?
Adm1n and Pa55w0rd do not count either!
@michele_butcher
19. ONLY GIVE USERS THE
ACCESS THEY NEED
Just because they want to be an admin does not
mean they should.
Guest bloggers should rarely every be anything
more than a contributor.
Sometimes they do not need access to all the things
@michele_butcher
20. IF IT IS A TEMPORARY LOGIN, DELETE THE
USER WHEN THEY ARE DONE DOING ALL OF
THEIR THINGS
If they do have posts, you can convert them to
diļ¬erent users or make them a subscriber with
limited access.
@michele_butcher
21. SET UP FILE DETECTION
TO MAKE SURE NOTHING
EVER SNEAKS IN.
Many security plugins like iThemes Security and
WordFence will alert you when ļ¬les have been
changed
@michele_butcher
22. SECURITY PLUGINS I RECOMMEND
ā¤ iThemes Security (Free and Pro version
ā¤ Sucuri Firewall
ā¤ WordFence Security
ā¤ Jetpack with Brute Protect and Vault Press
@michele_butcher
23. ONLY KEEP THE PLUGINS
AND THEMES YOU HAVE
ACTIVE ON YOUR SITE.
An uninstalled plugin or theme is not a potential
vulnerability.
Use the plugins repo favorites option to keep a list
of your favorite plugins
@michele_butcher
24. MALWARE SCANNING? DO I NEED IT?
ā¤ Google Webmaster ToolsāØ
ā¤ Sucuri Scanner (Built in iThemes Security now)āØ
ā¤ VirusTotal
If you feel your site could be infected, first do a malware scan.
There are also plugins that can scan your site manually.
@michele_butcher
25. WHEN YOU DECIDE TO
MAKE CHANGES TO YOUR
SITE THERE ARE SOME
THINGS TO CONSIDER.
@michele_butcher
26. DO YOUR DUE DILIGENCE
WHEN LOOKING AT NEW
THEMES AND PLUGINS. DO
NOT PICK ONE JUST BECAUSE
IT IS SHINY AND PRETTY.
@michele_butcher
27. DO NOT ADD EVERY THEME YOU THINK IS
PRETTY WHEN YOU DECIDE TO CHANGE A
THEME.āØ
ONLY KEEP THE THEME YOU ARE USING AND
ONE BACKUP THEME ON YOUR SITE.
The more themes that are on a site, the more open
chances you have to a vulnerability
@michele_butcher
29. SEOā¦
SEO Plugins can aid in your ranking on search engines
ā¤ Yoast SEO
ā¤ All in One SEO
@michele_butcher
30. DON'T EVER LET YOUR
SITE GET TOO LONELY.
No one knows your website better than you do.
Check on the front end just as much as your
backend.
@michele_butcher
31. IF YOU HAVE QUESTIONS
TAKE TO THE WEB
There are many resources you have at your ļ¬ngertips that can
help you do more with your website.āØ
ā¤ codex.WordPress.org
ā¤ WordPress forums for themes, plugins, and core
ā¤ Twitter
ā¤ Facebook
ā¤ Third Party websites
@michele_butcher
32. THERE IS MORE THAN
JUST WORDPRESS
SPECIFIC MAINTENANCE
YOU SHOULD DO.
@michele_butcher
42. BACK EVERYTHING UP
AND BACK IT UP OFTEN!
No one wants to lose their information
stored on their computer.
ā¤ Bitcasa
ā¤ Caronbinte
ā¤ External Hard-drives
@michele_butcher