Upload
honest-online-solutions
View
896
Download
2
Tags:
Embed Size (px)
DESCRIPTION
Protect yourself from WordPress brute force attacks in under 10 minutes. Slideshow by Mike Hulleman Twitter: @contact_mike Permalink: www.gethonest.ca/wordpress-bf �
Citation preview
6 WAYSTo Prevent WordPress
BRUTE FORCE ATTACKSRIGHT NOW
A PUBLIC NOTICEHackers are reportedly utilizing over 90,000 servers to compromise WordPress websites’ administrator panels by exploiting hosts with “admin” as account name, and weak passwords which are being
resolved through brute force attack methods.
- Original release date: April 15, 2013
Honest Online | gethonest.ca
A PUBLIC NOTICEYou can find out more from the United States
Computer Emergency Readiness Team Shortcut: www.gethonest.ca/cert
Honest Online | gethonest.ca
STEP ONE
Honest Online | gethonest.ca
Back up your website
You can do this with WordPress plugins or your web hosting control panel;
If you’re not sure how, don’t hesitate to ask your website company or hosting provider for assistance
Honest Online | gethonest.ca
STEP TWO
Honest Online | gethonest.ca
Add a new userManage your WordPress website from a user profile with a unique
login name
Honest Online | gethonest.ca
Delete the “admin” user profile, or demote it to subscriber
Honest Online | gethonest.ca
Add a new user
STEP THREE
Honest Online | gethonest.ca
Update WordPress & its plugins
Confirm with your website company that this will not negatively impact
any website customizations
Honest Online | gethonest.ca
STEP FOUR
Honest Online | gethonest.ca
Install WordPress security plugins
Login Lockdown, WP Login Security 2, Limit Login Attempts and others will block
brute force attacks by limiting the permitted number of failed login attempts
Honest Online | gethonest.ca
Install WordPress security plugins
You can also change your standard WordPress login URL with plugins such as Better WP Security, Pretty
Login URLs, Aspexi Easy Login URL; For safety, consult your web company to ensure these plugins will not conflict with any website
customizations
Honest Online | gethonest.ca
STEP FIVE
Honest Online | gethonest.ca
Password protect access to your WP-Login page
Most web hosting companies have the option for password protected directories in their Control Panel;
If you need help, consult your website hosting provider or website design company
Honest Online | gethonest.ca
STEP SIX
Honest Online | gethonest.ca
Google Authenticator
If you’re still not satisfied with the previously mentioned options,
try this plugin for two-factor authentication www.gethonest.ca/twofactor
Honest Online | gethonest.ca
A Message From Honest Online
Slideshow brought to you by
Michael HullemanTwitter: @contact_mike
Email: [email protected]
You can find this slideshow atwww.gethonest.ca/wordpress-bf
Honest Online | gethonest.ca