Wordpress

Does your WordPress site really need HTTPS from wordpress_backup If you own a WordPress site, you must have mulled over this move at some point – HTTPS. HTTPS is a secure form of HTTP, the underlying protocol used on the Internet. With HTTP, all messages are exchanged in plain-text. So anyone wanting to snoop on…

In our earlier article How to ban users based on IP address, we learnt how to keep suspicious users out of our site. But that was only possible if you get to know their IP addresses. We don’t need to always wait for an attacker to knock on our doors to bump up our security….

WordPress has a standard login page called wp-login.php through which a user can access the dashboard. Given the growing number of brute force attacks on WordPress sites in recent times, users are often suggested to the default login URL (i.e. wp-login.php). So instead of logging into your site using /wp-login.php, you’ll now have a new…

Brute force attacks on WordPress have increased manifold in the past few years. Also known as password-guessing or dictionary attack, they use a systematic trial and method approach where every combination is used to crack your password. If you have a site that includes login authentication, you’re a likely target for attack. That covers almost…

Sucuri’s latest announcement about the shell shock vulnerability says that millions of WordPress sites are at risk. Unlike the other cases, there is no plugin being exploited here. The culprit this time is the bash shell that is a part of every server. Bash is a command processor where users can type in commands and execute them….

Brute force attacks form a sizeable chunk of the attacks in the Internet today. In an attempt to crack login information, our WordPress sites are endlessly bombarded with login attempts. You can obtain more details about these failed login attempts such as the IP address from your logs. The next obvious step is to block…

If the thought of changing your admin username is scaring you, this article is meant for you. We’ll guide through all the details of changing your default admin username. The admin account is created by default whenever you install WordPress for the first time. This user will have all the administrative privileges to make any…

Security is the buzzword today. The number of discussion threads that are created everyday on various forums gives a clear indication of its significance. With the growing number of attacks on WordPress sites every year, there is no easy way of securing our sites. Security plugins emerge as a must have for improving WordPress security….