1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Security

Discussion in 'Black Hat SEO' started by TheGamer, Jan 7, 2014.

  1. TheGamer

    TheGamer Regular Member

    Joined:
    Mar 25, 2013
    Messages:
    287
    Likes Received:
    46
    Location:
    UK
    Hi all


    I am looking for a few pointers on how to really bulletproof my wordpress site. I am a bit worried since I usually hear about wordpress being hacked and shred to pieces quite commonly :O
    Does someone know the best security plugin out there and also if any settings needs to be configured for secure wordpress website.

    Thanks.
     
  2. Beven

    Beven Elite Member

    Joined:
    Aug 30, 2011
    Messages:
    1,810
    Likes Received:
    937
    Location:
    United Kingdom
    Unless you're in a super competitive niche like payday loans or weight loss you shouldn't have to worry really.
     
  3. ardley216

    ardley216 Elite Member

    Joined:
    Mar 28, 2008
    Messages:
    2,391
    Likes Received:
    2,356
    Occupation:
    Finding easy keywords
    Location:
    1,500,000,000 Keywords Re
    Home Page:
    I used to get hacked all the time.. And I wasn't in a competitive niche.

    I use: All In One WP Security

    Very easy to set up, and a nice easy to use interface. Haven't been hacked since.

    Just turn everything to max, and you'll be safe as houses. :)
     
    • Thanks Thanks x 2
  4. TheGamer

    TheGamer Regular Member

    Joined:
    Mar 25, 2013
    Messages:
    287
    Likes Received:
    46
    Location:
    UK
    Sorry to say but I Strongly disagree. I know someone who hacks for fun. Strange idea of fun but yeah some people just love to destroy other's stuff for no reason!
     
    • Thanks Thanks x 3
  5. Conor

    Conor Jr. VIP Jr. VIP

    Joined:
    Nov 7, 2012
    Messages:
    3,358
    Likes Received:
    5,420
    Gender:
    Male
    Location:
    South Africa
    Home Page:
    Hmm I disagree somewhat. I've been hacked a few times in the past.

    Here's some great pointers that should make you a bit less hackable: http://www.tech5.net/make-wordpress-blog-hack-proof-v2/
     
    • Thanks Thanks x 2
  6. Beven

    Beven Elite Member

    Joined:
    Aug 30, 2011
    Messages:
    1,810
    Likes Received:
    937
    Location:
    United Kingdom
    Hmm maybe I'm wrong then I've just been lucky enough for it to never happen to me.
     
    • Thanks Thanks x 2
  7. seeplusplus

    seeplusplus Power Member

    Joined:
    Aug 18, 2008
    Messages:
    511
    Likes Received:
    163
    Write your own custom script for the login page, it doesn't have to be mega complex, but many hacks are carried out by automated attacks.
     
  8. ardley216

    ardley216 Elite Member

    Joined:
    Mar 28, 2008
    Messages:
    2,391
    Likes Received:
    2,356
    Occupation:
    Finding easy keywords
    Location:
    1,500,000,000 Keywords Re
    Home Page:
    With the all in one wp security plugin, you can change the login url to something unique, add captcha, instantly lock out IP's, invalid usernames and passwords. And if anyone is trying to get through all that you get email alerts.
     
  9. OldSalt

    OldSalt Moderator Staff Member Moderator Jr. VIP Premium Member

    Joined:
    May 19, 2009
    Messages:
    1,279
    Likes Received:
    7,437
    Gender:
    Male
    Occupation:
    IT Sys Admin
    Location:
    US, East Coast
    Unless you are very skilled in the scripting, this is a VERY bad idea. HBGary was hacked after they created a custom CMS system. Off-the-shelf products are tested by a broad base of users who will find the holes - where a custom installation is just at your location. A custom job written by one person is dependent solely on that person's skill - but an off-the-shelf system is generally by a team (and generally tested by one as well).

    Just my thoughts on the subject...
     
    • Thanks Thanks x 1
  10. tony_d

    tony_d Elite Member

    Joined:
    Jun 22, 2013
    Messages:
    2,581
    Likes Received:
    3,163
    Location:
    1600 Amphitheatre Parkway, Mountain View CA
    I use a web service that, each time I login with my correct credentials, it comes back and says "sorry, wrong username/password" and I need to enter those correct credentials a second time consecutively for the login to work...

    I'm not sure if that's a bug or intentional, but I think that's an awesome security feature against brute forcing - even though not many hacks are via brute forcing in this century anymore...
     
  11. krnnt

    krnnt Newbie

    Joined:
    Feb 1, 2014
    Messages:
    8
    Likes Received:
    0
    Hello i'm using this plugin Acunetix WP Security, it's sims good
    guud luck