14
Безопасность в WordPress защита от нападения

Security

Embed Size (px)

Citation preview

Page 1: Security

Безопасность вWordPress

защита от нападения

Page 2: Security

Почему и зачем WordPress взламывают?

Page 3: Security
Page 4: Security

Ботнет – сеть зараженных комьютеров выполняющие массовые задачи, как подбор/взлом паролей, DDoS аттаки, рассылка спама, майнинг криптовалюы и т.п.

Page 5: Security

Черная оптимизация – оптимизация сайта в поисковых системах с применением запрещённых и недобросовестных методов.

Page 6: Security

Как!?

Page 7: Security

Нападение №1: подбор и перехват паролей

Page 8: Security

Limit Login Attempts

fail2ban

Page 9: Security

two factor authentication, 2FA

Page 10: Security
Page 11: Security
Page 12: Security

Нападение №2: уязвимые плагины и темы

Page 13: Security

https://vaultpress.com/

Page 14: Security

https://wpmag.ru/security-ebook/

https://wpmag.ru/2013/osnovyi-bezopasnosti-wordpress/

http://codex.wordpress.org/FAQ_My_site_was_hacked

Ресурсы на тему

https://wpmag.ru/security-ebook/
https://wpmag.ru/2013/osnovyi-bezopasnosti-wordpress/
http://codex.wordpress.org/FAQ_My_site_was_hacked

Food Security EconomicsFood Security Food Security in India

Food Security EconomicsFood Security Food Security in India

Documents
Agrochemicals and Security: Homeland Security and FertilizersFert-01 Homeland Security and Fertilizers Agrochemicals and Security Homeland Security and

Agrochemicals and Security: Homeland Security and FertilizersFert-01 Homeland Security and Fertilizers Agrochemicals and Security Homeland Security and

Documents
Network Security - Norbert Pohlmann · Security Infrastructure Mobile/Desktop Security Network Security E-Commerce Enabler Internet Security Network Security Secure Communication

Network Security - Norbert Pohlmann · Security Infrastructure Mobile/Desktop Security Network Security E-Commerce Enabler Internet Security Network Security Secure Communication

Documents
Security Target IBM Internet Security Systems GX6116 Security

Security Target IBM Internet Security Systems GX6116 Security

Documents
SECURITY Security

SECURITY Security

Documents
+ Security Concerns Chapter 10.1. + Security types Physical security Access security Database security

+ Security Concerns Chapter 10.1. + Security types Physical security Access security Database security

Documents
I-4 security. Security taxonomy Physical security Resource exhaustion Key-based security cryptography

I-4 security. Security taxonomy Physical security Resource exhaustion Key-based security cryptography

Documents
Security Admin security

Security Admin security

Documents
THEME Name Surname, Company Twitter handle (17).pdf · Cyber Security Information Security IT Security Physical Security IoT Security OT Security Smart Grid Security Network Perimeter

THEME Name Surname, Company Twitter handle (17).pdf · Cyber Security Information Security IT Security Physical Security IoT Security OT Security Smart Grid Security Network Perimeter

Documents
General Security Principles and Practices. Security Principles Common Security Principles Security Policies Security Administration Physical Security

General Security Principles and Practices. Security Principles Common Security Principles Security Policies Security Administration Physical Security

Documents
Security - 1 Security Peter O’Grady. Security - 2 Network Security Problem n Data Flow - transmission security n Network Security - server security n

Security - 1 Security Peter O’Grady. Security - 2 Network Security Problem n Data Flow - transmission security n Network Security - server security n

Documents
Security II – Grid Computing Security and Globus Security

Security II – Grid Computing Security and Globus Security

Documents
PHYSICAL SECURITY & ENVIRONMENTAL SECURITY · Physical Security & Environmental Security Policy and Procedures Title [company name] Physical Security & Environmental Security Policy

PHYSICAL SECURITY & ENVIRONMENTAL SECURITY · Physical Security & Environmental Security Policy and Procedures Title [company name] Physical Security & Environmental Security Policy

Documents
maritime security regulations - UNOLS · Maritime Security Regulations ... ship security – List primary ... Security Plan Port Security Plan Area Maritime Security Transportation

maritime security regulations - UNOLS · Maritime Security Regulations ... ship security – List primary ... Security Plan Port Security Plan Area Maritime Security Transportation

Documents
VENEZUELA Real Property Security Security Interests in ... Property Security, Security... · VENEZUELA Real Property Security Security Interests in Immovables and Related Property

VENEZUELA Real Property Security Security Interests in ... Property Security, Security... · VENEZUELA Real Property Security Security Interests in Immovables and Related Property

Documents
Corporate Security Service – Security Guard Provider – Security Service:

Corporate Security Service – Security Guard Provider – Security Service:

Business
Security Security Market Operations

Security Security Market Operations

Documents
Physical & Personnel Security Physical Security Personnel Security

Physical & Personnel Security Physical Security Personnel Security

Documents
Tax Security 2.0 – A “Taxes-Security-Together” Checklistblogs.shu.edu/...Taxes-Security-Together_Checklist.pdf · The “Taxes-Security-Together Checklist • Security Summit

Tax Security 2.0 – A “Taxes-Security-Together” Checklistblogs.shu.edu/...Taxes-Security-Together_Checklist.pdf · The “Taxes-Security-Together Checklist • Security Summit

Documents
Wireless and Mobile Security Lesson Introduction ●WiFi security ●iOS security ●Android security

Wireless and Mobile Security Lesson Introduction ●WiFi security ●iOS security ●Android security

Documents
Cyber Security Specialist Information Security • Cyber ... · Cyber Security • Security Analyst • Cyber Security Specialist Information Security • Cyber Operations Manager

Cyber Security Specialist Information Security • Cyber ... · Cyber Security • Security Analyst • Cyber Security Specialist Information Security • Cyber Operations Manager

Documents
Security Shutters, Retractable Security Gates, …syston.com/...9267_Security_Shutters_Retractable_Security_Gates.pdf · Security Shutters, Retractable Security Gates, SeceuroBar

Security Shutters, Retractable Security Gates, …syston.com/...9267_Security_Shutters_Retractable_Security_Gates.pdf · Security Shutters, Retractable Security Gates, SeceuroBar

Documents
CYBER SECURITY ADVISORY & CONSULTING …...TELECOM SECURITY – Wireless Security – Signaling Security - SCTP and SS7 – 3G Mobile Network Security – LTE Security Architecture

CYBER SECURITY ADVISORY & CONSULTING …...TELECOM SECURITY – Wireless Security – Signaling Security - SCTP and SS7 – 3G Mobile Network Security – LTE Security Architecture

Documents
security products - Titus HVAC catalog/security products_2013... · Redefine your comfort zone. ™ | prevents corrosion minimum security medium security maximum security security

security products - Titus HVAC catalog/security products_2013... · Redefine your comfort zone. ™ | prevents corrosion minimum security medium security maximum security security

Documents
Security #MiSSConceptsmiss.in.th/MiSSConf(SP2)/slides/Security-MiSSConcept.pdfSenior Security Engineer (AGODA) Penetration Tester Security Consultant. Security #MiSSConcepts. Security

Security #MiSSConceptsmiss.in.th/MiSSConf(SP2)/slides/Security-MiSSConcept.pdfSenior Security Engineer (AGODA) Penetration Tester Security Consultant. Security #MiSSConcepts. Security

Documents
Getting Started - Web Security, Email Security, Data Security

Getting Started - Web Security, Email Security, Data Security

Documents
The Mobile Security (mSecurity) Bible: 2014 - 2020 - Device Security, Infrastructure Security & Security Services

The Mobile Security (mSecurity) Bible: 2014 - 2020 - Device Security, Infrastructure Security & Security Services

Business
Security Presented by : Qing Ma. Introduction Security overview security threats password security, encryption and network security as specific

Security Presented by : Qing Ma. Introduction Security overview security threats password security, encryption and network security as specific

Documents
Computer Security & network security

Computer Security & network security

Engineering
Hardware Security Attacks Security Architecture Hardware Security

Hardware Security Attacks Security Architecture Hardware Security

Documents