How to avoid blog hacking problem???
Friends I am new in site ground. Now i would like to Know that how can i avoid blog site
hacking problem. Because I have already fall in problem to hack my site!!!
Please suggest me what should i do???
and don't forget to update your blog regulary as soon as you see the update notice in your admin area. and keep your passwords hard to guess and safe. also install captcha module for admin login too.
<a href="http://www.webdep.ro" title="Magazin online cu haine dama, haine copii, incaltaminte, birotica, bijuretii, cadouri promotii">Magazin online cu haine dama, haine copii, incaltaminte, birotica, bijuretii, cadouri promotii</a>
Download plugins from trusted sites, original, and keep backup.
Definitely agree with most advice here - especially:
Keep a backup - backup buddy is good, but total backup is good too.
Update WP as soon as possible after a new release
Consider malware scanning plug ins. Most can detect problems as they are happening, and some can clean them up too.
The default wordpress login is admin and most hackers know that.
We should change this to something else that would be difficult to guess.
I suggest that you use strong passwords which include upper/lower keys, numbers and symbols.
Important tutorials site for avoid Wordpress protection.thx @ yanislav
Originally Posted by yanislav
Like Steven here said, many hackers use what is known as a bruteforce technique to hack sites that keep the admin username as "admin". For security reasons, the best thing to do is start with changing that username.
Originally Posted by stevenmark
The second thing is to constantly backup your content. If you can, even do it automatically.
Last but not least, install a Wordpress plugin that limits the amount of login attempts per user IP per certain amount of time. This will greatly reduce your exposure.
The thing i do on my every blog is i install this plugin: Better WP Security. After that i also do most of the thing thats this plugin tells me to do - like change login path from /wp-login.php to /login (or whatever you feel is best for you). Of course that is not all, i also set up bad logins attempts to max 2. I never do mistakes while login on my own sites so thats what tells me that someone is trying to hack my login/password. Of course you have to change your admin name. DONT EVER MAKE "ADMIN" account on your blog/forum/website or whatever. Its easiest way to hack your account and do alot of troubles.
You can see the list of wordpress security plugin at here http://djdesignerlab.com/2013/01/03/...og-or-website/
(@admin: sorry to put link on my first post)
The best way is to use Better Security Plugin.. there is a lot of plugins out there but this one is the best in my point of view... plus you have to secure your htaccess file and wp-config... avoid using the wp-content.. Rename it to something else.. in fact this plugin will guide you to achieve all that...
Plus follow the siteground guide about this.. its very useful.
I know you've been suggested by various valuable "must do" advices, you also need to start from your theme itself, use "TAC" to check backlinks on your theme, especially if its free or have downloaded it from somewhere like * disabled word ** disabled word ** disabled word ** disabled word ** disabled word ** disabled word ** disabled word * then you need to be careful. also, I use "limit login" plugin which is another great tool to mitigate dictionary attacks. hope this helps
Originally Posted by lisamarriya
- Always keep your WP updated
- Update file permission in cpanel
- Rename wp login page to something else (Google for how to).
I would recommend you to install few security plugins, and others like Stealth Login and limit login attempts, etc.
Those are quite helpful!
limit login is just one of the best security plugins, but the best protection is combination of everything noted above
Originally Posted by presta
There are many ways to avoid blog hacking problem.
1. Set a tough password
2. Before you change anything in your site or blog ensure that you have backup of it.
3.Install a security scanner
4.If you are working with WP then Secure it with wp-config.php
5.use .htaccess to restrict access and allow only specific IP addresses
Hope the suggestion is useful for you.
There is not much to add after the last comment, very useful tips!
Thanks to all for valuable tips. I am also new to this forum however I do have a reasonable amount of WP experience. Some of these tips really opened my eyes to potential problems that I have not yet encountered. Thanks to all!!!
Please, check out the security webinar we've organized recently on WordPress security. I am sure that you will find useful information in it
By gonefore in forum WordPress
Last Post: 12-08-2008, 06:24 AM
By newyuppie in forum General Joomla Discussions
Last Post: 03-17-2006, 12:25 AM
By David G. in forum Customers' experience and suggestions
Last Post: 01-14-2006, 07:26 AM
Copyright © 2012 SiteGround.com Inc