диета при панкреатите

Tools and Plugins to Secure Your WordPress Blog

September 11, 2007 | Wordpress

If you have a blog or website, one of your top concerns should be security. In the past many sites, even some of the top ones, have been hacked and it’s something you should take measures to prevent. After all, if some gains access to your site, they can not only damage your site but even your brand or reputation. Here is a list of some tools and plugins that can help you secure your WordPress Blog.

Login LockDown

Login LockDown records the IP address and timestamp of every failed WordPress login attempt. If more than a certain number of attempts are detected within a short period of time from the same IP range, then the login function is disabled for all requests from that range. This helps to prevent brute force password discovery. Currently the plugin defaults to a 1 hour lock out of an IP block after 3 failed login attempts within 5 minutes. This can be modified via the Options panel. Administrators can release locked out IP ranges manually from the panel.

AskApache Password Protect

AskApache Password Protect adds some serious password protection to your WordPress Blog’s admin directory. Imagine a HUGE brick wall protecting your frail .php scripts from the endless attacks of automated web robots and password-guessing exploit-serving virii.

WordPress Scanner

WordPress Scanner will look at your blog and give you useful information about your themes, your WP install and any security type issues that you should address on your blog.

Admin-SSL

Admin-SSL secures wp-admin/wp-login using an available Private SSL certificate. Encrypts cookie contents. Translates http to https (public pages remain http) Simply upload and activate.

If you enjoyed reading Average Joe Blogger why not subscribe to my RSS Feed or get it delivered directly to your email inbox.

10 Responses to “Tools and Plugins to Secure Your WordPress Blog”

  1. MyAvatars 0.2 DayJobNuker |

    Hey,
    I subscribed by email and I don’t see any special code. Did I have to subscribe by another method to see it. Please let me know.

    DayJobNuker

  2. MyAvatars 0.2 Nate (Average Joe Blogger) |

    DayJobNuker: For some reason the Feed Footer plugin didn’t add the footer information to the last post. It’s probably just a fluke, but I am looking into it.

    I have verified that your email is subscribed to the feed so your good to go.

  3. MyAvatars 0.2 Steven Snell |

    Great resources. Security is always a concern (unfortunately).

  4. MyAvatars 0.2 David Zemens |

    I downloaded the LoginLockdown plugin, but it generated database MYSQL errors when I tried to install it. I am not sure what the problem is, but I am glad it did not corrupt my database. I was able to uninstall it with no apparent harm done. I just thought I would let you know.

  5. MyAvatars 0.2 Michael VanDeMar |

    David, can you please email me with the errors, MySQL, PHP, and WP versions you are using? My email is at the bottom of the Bad Neighborhood pages, thank you.

  6. MyAvatars 0.2 David Zemens |

    My bad. My errors were due to the fact that I loaded the plugin directly into the root of my plugin directory rather than into it’s own subdirectory — now it works fine.

    Sorry for the confusion, Michael!

  7. MyAvatars 0.2 Nate (Average Joe Blogger) |

    David: I’m glad you got everything working.

    Michael: Thanks for your help is solving this issue and thanks for a great plugin.

  8. MyAvatars 0.2 Michael VanDeMar |

    Nate and David - Thank you both for helping me track down the issue. :D

    I updated the language on the download page to emphasize the need for it to be in its own subdirectory.

  9. MyAvatars 0.2 Weekly Links << Vandelay Website Design |

    […] Tools and Plugins to Secure Your WordPress Blog from Average Joe Blogger. […]

  10. MyAvatars 0.2 scott |

    < a href = “http://google.com/?p=5&lol= dictatorial@hettys.rejects”>.< / a >…

    good info!…