Upload
michele-butcher
View
806
Download
0
Embed Size (px)
Citation preview
MICHELE BUTCHER
➤ Support Guru for Give
➤ Support Engineer for Yoast
➤ Geek behind Can’t Speak Geek
➤ Beginners and Intermediate WordPress Instructor
➤ Lead Organizer for Southern Illinois WordPress Meetup
@michele_butcher
LEARN THE STEPS TO CARE FOR YOUR SITE ONCE THE
DESIGNER/DEVELOPER TURNS IT OVER TO YOU.
@michele_butcher
IF YOU ARE WRITING YOUR OWN CONTENT, BE COMFORTABLE WITH THE DASHBOARD WHEN YOU MAKE
THE DECISION TO DO IT ALONE. Ask for tutorials or search the web to learn before you try to do it alone.
@michele_butcher
THE FIRST THING TO REMEMBER IS THAT IF YOU DO NOT CLICK SAVE AT THE END, IT
DID NOT HAPPEN.Save and save often
@michele_butcher
BACKUP AND BACKUP OFTEN!
➤ Always save to someplace OTHER than your server
➤ Save them to Dropbox, AWS, email, or your local machine
➤ Have them scheduled to be made daily or at least weekly
@michele_butcher
UPDATES ARE IMPORTANT!
Update core. Update themes update plugins!
The biggest reasons of updates is typically security or feature related.
The biggest source of nearly all hacks is due to lack of updating.
@michele_butcher
WHEN YOU SEE THE LITTLE RED CIRCLE BESIDE THE DASHBOARD
BUTTON MEANS YOU HAVE UPDATES NEEDING TO BE DONE
Always make a backup before you update for safe measures.
@michele_butcher
WHEN IT COMES TO UPDATING IF YOU USE ENVATO PRODUCTS (THEMEFOREST
AND CODECANYON) ALWAYS CHECK THE BOX IN THE DOWNLOADS TO BE
NOTIFIED OF UPDATES.That is the only way you will know if any of their products need to be updated.
This is why the RevSlider infection was so widespread. Many did not even know the plugin was built into their theme.
@michele_butcher
IT IS MORE IMPORTANT TO SECURE ALL THE THINGS BEFORE SOMETHING
HAPPENS!
MANY HAVE YET TO LEARN THIS!Every single day hackers find new ways to get your
information.
Todays features are tomorrow’s vulnerabilities.
Stop them before they stop you@michele_butcher
HOW DO THEY GET IN?➤ They guess your login information
➤ Denial of Service Attack (DDoS)
➤ Through a file in a theme, plugin, or anything on your server where they found an exploit
➤ Through your FTP and/or cPanel configuration
➤ They guess your login information
@michele_butcher
NEVER EVER NEVER USE “ADMIN” AS A USERNAME OR
“PASSWORD” AS PASSWORD ON ANY OF THE THINGS. NEVER!!!!
Any questions?
Adm1n and Pa55w0rd do not count either!
@michele_butcher
ONLY GIVE USERS THE ACCESS THEY NEED
Just because they want to be an admin does not mean they should.
Guest bloggers should rarely every be anything more than a contributor.
Sometimes they do not need access to all the things
@michele_butcher
IF IT IS A TEMPORARY LOGIN, DELETE THE USER WHEN THEY ARE DONE DOING ALL OF
THEIR THINGS
If they do have posts, you can convert them to different users or make them a subscriber with
limited access.
@michele_butcher
SET UP FILE DETECTION TO MAKE SURE NOTHING
EVER SNEAKS IN.Many security plugins like iThemes Security and
WordFence will alert you when files have been changed
@michele_butcher
SECURITY PLUGINS I RECOMMEND➤ iThemes Security (Free and Pro version
➤ Sucuri Firewall
➤ WordFence Security
➤ Jetpack with Brute Protect and Vault Press
@michele_butcher
ONLY KEEP THE PLUGINS AND THEMES YOU HAVE ACTIVE ON YOUR SITE.
An uninstalled plugin or theme is not a potential vulnerability.
Use the plugins repo favorites option to keep a list of your favorite plugins
@michele_butcher
MALWARE SCANNING? DO I NEED IT?
➤ Google Webmaster Tools
➤ Sucuri Scanner (Built in iThemes Security now)
➤ VirusTotal
If you feel your site could be infected, first do a malware scan.
There are also plugins that can scan your site manually.
@michele_butcher
DO YOUR DUE DILIGENCE WHEN LOOKING AT NEW
THEMES AND PLUGINS. DO NOT PICK ONE JUST BECAUSE
IT IS SHINY AND PRETTY.
@michele_butcher
DO NOT ADD EVERY THEME YOU THINK IS PRETTY WHEN YOU DECIDE TO CHANGE A
THEME.
ONLY KEEP THE THEME YOU ARE USING AND ONE BACKUP THEME ON YOUR SITE.
The more themes that are on a site, the more open chances you have to a vulnerability
@michele_butcher
SEO…SEO Plugins can aid in your ranking on search engines
➤ Yoast SEO
➤ All in One SEO
@michele_butcher
DON'T EVER LET YOUR SITE GET TOO LONELY.
No one knows your website better than you do. Check on the front end just as much as your
backend.
@michele_butcher
IF YOU HAVE QUESTIONS TAKE TO THE WEB
There are many resources you have at your fingertips that can help you do more with your website.
➤ codex.WordPress.org ➤ WordPress forums for themes, plugins, and core ➤ Twitter ➤ Facebook ➤ Third Party websites
@michele_butcher
NEVER EMAIL PASSWORDS! PUT THEM IN A
TEXT DOCUMENT OR USE A PASSWORD MANAGER
TO SEND THEM.
@michele_butcher
IF ANY LOGIN HAS A TWO-FACTOR AUTHENTICATION
OPTION, USE IT!Two-Factor all the things
@michele_butcher
USE AN ANTI-VIRUS ON ANY COMPUTER YOU USE
Use it on all the things.
Yes, even a Mac!
@michele_butcher
USE A VPN FOR WHEN USING PUBLIC WIFI
VPN’s I recommend are
➤ Cloak
➤ Torguard
➤ Site Social
➤ Hide My Ass
@michele_butcher
BACK EVERYTHING UP AND BACK IT UP OFTEN!
No one wants to lose their information stored on their computer.
➤ Bitcasa
➤ Caronbinte
➤ External Hard-drives
@michele_butcher