• Home
  • Blog
  • About
  • Books
  • ARTICLES
  • Contact
Menu

Elizabeth Tai

Content Strategist, Writer & Storyteller
  • Home
  • Blog
  • About
  • Books
  • ARTICLES
  • Contact

How to make Wordpress more secure

July 3, 2015

"This page is temporarily unavailable". These dreaded words were back! This was the fourth time my site has gone down and I was mad.

But it was mostly my fault.

I thought all I needed to do when I got my first self-hosted blog was to write the content and leave it up.

Wrong.

Wordpress is one of the most popular CMS (Content Management System) in the world. It's easy to use, powerful and free. But as a result, it's a favourite target for hackers.

Due to my lazybones attitude towards website/wordpress maintenance, this site was down for nearly four days thanks to a malware infection (hah, I didn't even know that could happen!). After deleting hundred over files, an upgrade and much wrangling with my host's support team, it is finally back.

You don't realise how important Wordpress security is until you lose it.

Don't go through what I did. Here are 7 things you can do to make your Wordpress site more secure:

1. Update, update, update, update!

And I'm not just talking about Wordpress. This includes plugins and themes - even those you do not use! Because old versions often have security holes that hackers and malwares can slip through.

2. Make sure your hosting package has security features

Mine didn't, and I wasn't aware of that. If a package comes with functions such as Sitelock, it scans your site for threats regularly and some may even fix it for you automatically. Don't do without this feature. If a hosting package doesn't have it, look elsewhere. Trust me, you'll regret it if you don't!

3. Don't open suspicious e-mails and avoid unsafe websites

They can hop over to your website.

4. Use strong passwords

Use alphanumeric passwords, preferably with unique characters such as $,! or *. Don't use obvious passwords like your name or birthday. Here is Norton's useful password generator.

5. Don't use admin as your log in

Wordpress generates this for you. Hackers aim for that. Delete the admin user name and create one that is difficult to guess. No log ins that mirror your real name or the name you use on the blog. For example: byt76

6. Install Wordpress security plugins

Wordfence, WP Security Scan and Secure Wordpress are some of the plugins available out there.

7. Monitor, monitor, monitor!

Do this weekly. Daily if you must. You can put out the fire before it becomes an inferno. Oh yeah, and don't forget to back up!

Photo by Linder6589

In Blogging & Social Media
← The Lord of the Rings - a review and a confessionAn (old) interview with Carol Berg →

Subscribe

Get blog posts delivered to your inbox.

We respect your privacy.

Thank you!
profile.jpg

hi there!

My name is Liz and I write about minimalism, travel, writing, TV and books.  

I blog on Fridays. Usually. Best to have my blog posts delivered via e-mail to not miss a post. (Sign up form above.)

Archive

All posts

By topics

Meet my alter ego:

Tai Weiland

FEATURED POSTS

Featured
Why I left Australia and returned to Malaysia
How minimalism changed me
Why I quit my job to move to Australia
Blog series: My Shifting Faith
Professional Reader
Blog RSS

Powered by Squarespace