8 Critical Wordpress Security Resources (NMS #003)
September 15, 2009 by Sherman Hu
Filed under Blogging, Featured, New Media Simplified Ezine
In today’s issue, an upgrade warning to all who host their own Wordpress blogs. How to upgrade your blog in a few steps. Easily change your admin username. Back up your blog to your Amazon S3 account. Back up your blog to your host. A scanner to detect how vulnerable your blog is to an attack. And plugins to secure and lock down your Wordpress blog to brute force attacks.
- – - Sponsor – - -
50% Off “Done For You” Blog Service
Frustrated setting up your blog? Counting how much time you’ve “invested” (*cough*..wasted..) messing with databases, themes, widgets, and CSS?
Time to hand it over to a pro, yet?
For the next 48 hours, get a pro blog built by a pro for ONLY $500. Valid for the next 5 fortunate clients:
Click: http://shermanlive.com/go/revoblog
Business manager Eric Frans shares…
“…we have seen our daily unique hits increase literally a hundred fold and online product purchase to visit ratios are higher than ever before.
I know that if it is up to me, I will not even look to hire anyone else over Sherman as I have not met his equal in savvy and proficiency..”
Read Eric and other’s testimonials here:
http://shermanlive.com/go/revoblog
- – - /Sponsor – - -
8 Critical Wordpress Security Resources
1. Still Using An Older Wordpress Version?
It’s not just you, alot of others are still running older versions of Wordpress (WP). Recently, many have reported seeing weird stuff in their URLs, all of them running older versions of WP.
Save yourself hours of wasted time and agony by upgrading to the latest version of WP. If you don’t deploy a security update, you’re vulnerable to get hacked, just a matter of when.
Here’s more details to the hack warning at Wordpress:
http://shermanlive.com/go/hackwarning
2. Upgrade Your WP Blog Automatically OR Manually
Automatic or manual upgrade – your choice. But whichever option you choose, backup your database first. (Below, I share a few links to do this)
Personally, I prefer the control of a manual upgrade. Quite simple, really. 3 steps – replace the files, execute the upgrade, and finally… do the happy dance!
More details to upgrading, either way:
http://shermanlive.com/go/upgradewp
3. How To Easily Change Your Admin Username In WP
Why change your admin username? Security. Be default, WP sets up your login name as “admin”. Hackers know this, and it makes their job easy.
But changing it manually by editing your WP database is cruel and unusual punishment! Trust me, I’ve been there, done that, and got the lousy t-shirt.
Enter the “Change Admin Username” plugin…ta-da! Activate it and it adds a new menu item to your Dashboard’s “Users” menu. Input new username, click save, and it’ll do its magic to your database.
http://shermanlive.com/go/wpadminchange
- – - Ad – - -
StomperNet Re-opens Doors For A Steal
Are you ready for a best of class web marketing education taught by some of the top faculty in web marketing?
Familiar with StomperNet.com?
** Best of class faculty and moderators specializing in all aspects of web marketing combined
** Extremely comprehensive library of web marketing training videos & content-rich live conferences
** First class print magazine covering strategies and techniques to succeeding in your business
Plus, we’ve piled on a series of software and tools to help your web business grow and prosper, all for a steal. And we’ve scheduled a series of webinars giving away top-notch biz training here:
=> http://shermanlive.com/go/s999
- – - /Ad – - -
4. Backup Your WP Blog To Your Amazon S3 account
If you have an Amazon S3 account, you know how easy and affordable it is to store data and resources on it.
(If you want more details on Amazon S3, visit: http://shermanlive.com/go/amazons3)
With the “WP S3 Backups” plugin, you can easily and automatically backup important parts of your WP blog to your account.
http://shermanlive.com/go/wps3backup
5. Schedule WP Blog Backups To Your Host Server
If you’d rather backup your WP blog to your host account, instead of Amazon S3, this “DBC Backup” plugin will make easy work of this process for you.
You can select when and where your backup will be generated, including 3 different compression formats.
http://shermanlive.com/go/dbcbackup
6. Scan Your WP Blog For Attack Vulnerabilities
“WP Scanner” is a no-cost online resource to measure your blog security levels.
Their “Activator Plugin” verifies you own your blog, giving them permission to test it.
Plugin & Details:
http://shermanlive.com/go/securewp
8. Lockdown Protection From Brute Force Attacks
Wordpress blogs are vulnerable to brute force attacks as there are no limits to how many times a user can use invalid login passwords before using the correct one.
This plugin, “User Locker”, will close this hole with a maximum number of invalid login attempts. Once this number is exceeded, the account is locked.
More details on how User Locker works here:
http://shermanlive.com/go/userlocker
-
-
That’s it for this issue, my friends. Thank you for reading, and you can share your feedback and comments below or via Twitter.
If you liked this first issue, why not forward it to your friends, colleagues, family and anyone else that you think might enjoy it. Thank you for your continued support.
Until the next issue, here’s wishing you much health, happiness, prosperity – and security,
Sherman Hu
Related posts:
New blog post: NMS #003 – 8 Critical Wordpress Security Resources http://bit.ly/XjXaI
This comment was originally posted on Twitter
(I did 5 of these immediately) – RT @ShermanHu 8 Critical Wordpress Security Resources http://bit.ly/XjXaI
This comment was originally posted on Twitter