WordPress security & sanitation for beginners

•

0 gostou•509 visualizações

Basic steps for keeping your WordPress website tidy. This presentation is for beginner-level WordPress users and focuses on your to-do list for running standard maintenance tasks from the WordPress dashboard

Tecnologia Negócios

D'nelle Dowis
Berry Interesting Productions, Inc.
WordPress customization & development
Security
&
Sanitation

Understanding WordPress
Why does my WordPress site require maintenance?
● WordPress isn't just a website; it's a web
application
● "The Internet" has a bajillion moving
parts - servers, PCs, operating systems,
browsers, programming languages
● WordPress adapts to the ever-changing
internet on a regular basis
● The content of your site (ideally)
changes on a regular basis
● Hackers gonna hack

Logging in
Where's that screen again?
www.yoursite.com/wp-admin
bookmark it!

Hiding your progress
Just like that flimsy curtain in a doctor's office
● Allows you privacy while you work
● Makes sure no users experience
intermittent availability
● Lets you check your work

Malware check
Why bother doing anything else if the site's infected?
Backup Buddy
Sucuri
Quttera
#wcn13ohmy

Backup, Backup, Backup!
Or you are practically guaranteed to break something. Thanks, Murphy's Law.
● Hacking recovery
● Server malfunction recovery
● User-error recovery
● Plug-in update changes
● What to do about off-site storage?

Core, theme & plug-in updates
The best way to totally freak yourself out for no good reason
● stay in touch with your plug-in
developers
● identify any plug-ins that aren't in
use & delete them
● run updates - one at a time
● reading the changelog
● check your site after each update

Audit your posts & pages
● Clean up comments: approve or mark as spam
● Delete old drafts & unused pages
● Authorship check
● Quick SEO audit
If it's not actively supporting your goals, ditch it

User check & password change
● Check for spam
● Delete where
possible/necessary
● Change all Administrator-level
passwords
● Keep number of
administrators to a minimum
Hospitality is not a virtue

Resources
...you didn't think I did this all on my own did you?
● Berry-Interesting.com
● iThemes.com
● Backup Buddy
● Sucuri
● Codex.wordpress.org
● Want to know even more? Check out this awesome, in-depth
presentation from Judy Wilson of SiteShack: slidesha.re/10cb9yJ
● Find this presentation on Slideshare: slidesha.re/14q5HIa

D'nelle Dowis
chief distiller of awesomesauce
Berry Interesting Productions, Inc.
WordPress customization &
development
@d_nelle • facebook.com/berry.interesting • 615-825-5608
want a copy of this presentation?
shoot an email over to me at
hello@berry-interesting.com

Mais conteúdo relacionado

Mais procurados

Slides from a SiteGround webinar by SiteGround Joomla Performance Guru, Daniel Kanchev. He reveals the 8 most common ways a Joomla website can get hacked and what you can do to protect yourself from each of those hacks. Outdated Extensions & Themes Vulnerable Extensions & Themes Stolen or Weak Login Details Outdated / Vulnerable Server Software Incorrectly Configured Web Server Vulnerable Joomla on a Host Server Incorrect Joomla Permissions Local PC Malware

8 Most Popular Joomla Hacks & How To Avoid Them

SiteGround.com

The recent spike of hack attempts on various Joomla sites has made it more urgent than ever to take actions and secure your Joomla in the best possible way. In this webinar the SiteGround Joomla Performance Guru Daniel Kanchev shows the best practices and shares insightful tricks how to protect your Joomla from getting hacked: - Joomla administrator security settings - Bullet-proof password tips - Vulnerable extensions to avoid - Web application firewall configurations - Recommended server settings - Intrusion detection and protection tools - Disaster recovery plans

Secrets to a Hack-Proof Joomla Revealed

SiteGround.com

WordCamp Denmark Keynote

Frederick Townes

WordPress Productivity Hack #1

Brad Hauck

JavaScript is arguably the most important language in the world. It comes included in nearly every desktop and mobile browser. It powers the client-side of apps like Facebook and GMail. It is the language of choice for mobile development environments like Apccelerator's Titanium and Apache's Cordova (aka Adobe's PhoneGap). It is even on the server now in Node.js. Yet when programmer's run into performance issue with JavaScript their first inclination is to blame its interpreted nature, not realizing that simple changes in the structure of their code can result in sometimes significant improvements in performance. In this session I will show five quick changes you can make to your JavaScript code to improve its performance and explain why they work.

5 Quick JavaScript Performance Improvement Tips

Troy Miles

High performance java script why everything youve been taught is wrong

Tao Gao

Word campktm speed-security

Digamber Pradhan

Basic Plugin Recommendations to get your WordPress Website Started

Nile Flores

Using a Joostrap template, Philip will be explaining & demoing how you wire frame a website right in your browser and why it will save you load's of time. There are no fancy plugins here! This is wire framing for your client, built directly in your browser & saving you untold hours messing around in other software. It is so hard sometimes, trying to get across to a client with a few drawings how the functionality of something could work. Wire framing directly in the browser gives your client a working wireframe/prototype where they can interact with links, pages & concepts. Not only that, but after client approval, you just have to style your working wireframe/prototype or switch to the template that is using the same module positions... It's a win win situation!

Joomla wireframing Template - Joomladay Netherlands 2014 #jd14nl

Philip Locke

WordPress Best Practices / Sh*t You Shouldn't Do

Kai Armstrong

WeBB MeetUp#1 Web applications caching techniques

Maciej Grajcarek

Websites for Hackers

Chris Antes

Improving Workflows With Grunt.js - Big D Design 2014 - Dallas Texas

Preston McCauley

On 23.03.2013 I visited The Netherlands to give the keynote speak about Joomla! web security. I talked about the most common 8 ways a Joomla! website can get hacked. So you should check the presentation if you are a Joomla! hacker that knows less than 8 ways :) It will be useful for you. However, if you are a Joomla user that doesn’t know anything about how to hack a Joomla!, or even worse, how to protect your Joomla! from being hacked, you should definitely check the slides! Because there is a way to protect yourself from each of the common Joomla hacks that I revealed them in the presentation. I went through the following scenarios and what should be done to prevent each of them: - Hacked through outdated Joomla!/extensions/themes. - Hacked through a vulnerable extensions/themes, that is not outdated - Hacked with the help of stolen/weak login details - Hacked through outdated/vulnerable server software - Apache, PHP, MySQL. - Hacked through incorrectly configured web server - A completely healthy site hacked through another vulnerable Joomla that is hosted on the same server - Hacked because of incorrect Joomla permissions - Hacked through malware on local PC which allows attackers to access a healthy site

8 Most Common Joomla! Hacks and How to Avoid Them

Daniel Kanchev

That's crazy! how to build single page web apps

Chris Love

Professional WordPress Workflow - WPDay 2015

Maurizio Pelizzone

Essential On-Page SEO

Raven Tools

What comes to your mind when you think about technical requirements for successful SaaS company? Should it be lean and easy-to-build, but ready for continuous improvement? Should it have wide opportunities for customization but still be reliable and stay under the control? Should it be powerful and scalable, but still really easy to manage? We’ll see how to build such kind of Software-as-a-Service application using WordPress Multisite, from scratch.

How to build lean SaaS App with WordPress Multisite [WordCamp Vienna 2019]

Sabrina Zeidan

Task runners + theming automating your workflow

Joshua Gilmer

Universal apps lightning talk

Elyse Kolker Gordon

Mais procurados (20)

8 Most Popular Joomla Hacks & How To Avoid Them

Secrets to a Hack-Proof Joomla Revealed

WordCamp Denmark Keynote

WordPress Productivity Hack #1

5 Quick JavaScript Performance Improvement Tips

High performance java script why everything youve been taught is wrong

Word campktm speed-security

Basic Plugin Recommendations to get your WordPress Website Started

Joomla wireframing Template - Joomladay Netherlands 2014 #jd14nl

WordPress Best Practices / Sh*t You Shouldn't Do

WeBB MeetUp#1 Web applications caching techniques

Websites for Hackers

Improving Workflows With Grunt.js - Big D Design 2014 - Dallas Texas

8 Most Common Joomla! Hacks and How to Avoid Them

That's crazy! how to build single page web apps

Professional WordPress Workflow - WPDay 2015

Essential On-Page SEO

How to build lean SaaS App with WordPress Multisite [WordCamp Vienna 2019]

Task runners + theming automating your workflow

Universal apps lightning talk

Semelhante a WordPress security & sanitation for beginners

Staying Connected: Securing Your WordPress Website

Raymund Mitchell

Word press beirut 9th meetup march

Fadi Nicolas Zahhar

Why WordPress Works

bekee

Care and feeding of your website

Shawn DeWolfe

A session by Pratik Jagdishwala on the best practices while securing your WordPress Powered website. The session was help in the Ctrl+F5 event organised by ResellerClub in cities across the country. The Presentation also includes tips on improving your WordPress powered website speed and performance. The concepts can be applied on WordPress or any other CMS powered website and even normal Websites.

ResellerClub Ctrl+F5 - WordPress Security session

Pratik Jagdishwala

Seravo.com: WordPress Security 101

Seravo

Why security matters

Sucuri

WordPress security 101 - WP Jyväskylä Meetup 21.3.2017

Otto Kekäläinen

Making websites with WordPress

Josh Lee

WordPress security 101 - WP Turku Meetup 2.2.2017

Otto Kekäläinen

Better link, with better notes: https://docs.google.com/presentation/d/1t6JZQeig7T01Nytk1GDKupZnx7KBeHuBOoC-IEr9fuQ/pub?start=false&loop=false&delayms=3000#slide=id.g347a7cc31_053 Click the gear and click "Show Speaker Notes" With WordPress powering over 20% of all known websites, one would assume that it’s used for more than just blogging. WordPress is used for corporate websites, mobile apps, social networks, e-commerce, and more. This session will include guidance on setting up, hosting, securing, theming, and customizing a WordPress e-commerce website. Criteria will be shared for selecting an e-commerce plugin, while parts of the talk will focus on a particular plugin for the purpose of illustration. The session will be most helpful to those who are interested in or in need of an e-commerce website, but could use some guidance in getting off the ground. The talk will delve into moderately technical subjects, but not in a way that would prevent beginners from gleaning important information.

WordPress ecommerce talk

Josh Levinson

Pratik Jagdishwala, Sr. Product Manager at Endurance International Group explains why WordPress is the de facto choice of Indian web designers as well as developers. He also elucudates on topics such as how to speed up WordPress websites, security issues faced by these websites and how to resolve these issues in a bid to improve WordPress' performance. In addition to this, the session reveals the causes that reduce the speed of websites and explains the importance of WordPress speed optimization and WordPress Hosting (https://india.resellerclub.com/wordpress-hosting) through different tools like image optimization, caching, database backups etc. Ctrl F5, powered by ResellerClub is a summit for elite web designers and developers looking to collaborate, network and share knowledge with some of the best leaders of the Internet presence industry in India. Check out: https://www.resellerclub.com/ Subscribe: https://bit.ly/2tUMzqU Facebook: https://www.facebook.com/TeamResellerClub/ Twitter: https://twitter.com/ResellerClub LinkedIn- https://www.linkedin.com/company/1795193/ ResellerClub (https://www.resellerclub.com/) was founded with the objective of offering domain names and hosting products to Web Designers, Developers, and Web Hosts. ResellerClub offers Shared Hosting, Cloud Hosting, Dedicated Servers, VPS, Email, Backup, Security and more with multi-brand options in many of these categories to empower choice. ResellerClub also offers a comprehensive solution to register and manage 500+ gTLDs, ccTLDs and new domains.

Ctrl+F5 Ahmedabad, 2017 - BOOST THE PERFORMANCE OF WORDPRESS WEBSITES by Prat...

ResellerClub

In this presentation you will learn about how to secure your WordPress website. In first part I have covered reasons why your WordPress website get hacked/tampered and in second part I have explained various security pre-caution that you can take to make your WordPress website more secure. I have categorized checklist so it will be easy for any one to understand and follow it. Hope it will help you better. Best of luck for your website security.

Word press security checklist

Sanjay Dabhoya

Content Management Without the Killing

Drew McLellan

Learn simple, proven and exciting ways to build a successful business using online marketing strategies. Internet marketing can include your website, search engine optimization, pay per click advertising, local search services, online reviews and social media. Mikki Barker, owner of Web Concepts, will lead this exciting and informative session. She will base her presentation on a WordPress site that is online and you will be able to log into and work along with her if they want. Bring your laptop if you want to work along with Mikki.

Introduction to Wordpress

Sandy Ratliff

5 Free Ways to Bulletproof Your WordPress Site WordCamp Seattle 2009 Ignite P...

Eric Amundson

We’ve all built a ton of WordPress sites. We’ve also managed them all too. You’ve probably heard about WordPress Multisite Networks, and all the awesome things it can (and can’t) allow you to do. With great power, comes great responsibility. During this talk, Taylor will step through the do’s and don’ts of Multisite Networks. He will share how WordPress Multisite can be your best friend or worst enemy… but usually both… at the same time. Expect pro-tips, eureka moments, and hard lessons learned from his experience setting up and running multisite networks for small private company intranets, all the way to global enterprise brands. By the end of this talk you will know the pros and cons of WordPress Multisite Networks, best practices for setting up and running a multisite, and know about alternatives if multisite isn’t a fit for your next project. http://seattle.wordcamp.org/2015-experienced/session/multisite-network-dos-and-donts-experience-from-an-enterprise-solution/

WordPress Multisite Network Do’s & Don’ts

Taylor McCaslin

Performing theme, plugin and core updates on your site can be intimidating and overwhelming, especially for older and more complex sites with many interconnected plugins – WooCommerce, I’m looking at you! The solution is simple: use a staging site – a private copy of your site where you can safely test updates and resolve problems before your users ever experience an issue. I’ll guide you across a number of ways to create a staging site depending on your specific needs, performing these updates, and then applying these updates to your main site. You’ll leave with a concrete plan for how to set up your own staging site, and will fear the update process far less!

Update Smart: Use a staging site!

Meagan Hanes

More Dev. Less Drama.pdf

WP Engine

Securing your WordPress powered Website

Pratik Jagdishwala

Semelhante a WordPress security & sanitation for beginners (20)

Staying Connected: Securing Your WordPress Website

Word press beirut 9th meetup march

Why WordPress Works

Care and feeding of your website

ResellerClub Ctrl+F5 - WordPress Security session

Seravo.com: WordPress Security 101

Why security matters

WordPress security 101 - WP Jyväskylä Meetup 21.3.2017

Making websites with WordPress

WordPress security 101 - WP Turku Meetup 2.2.2017

WordPress ecommerce talk

Ctrl+F5 Ahmedabad, 2017 - BOOST THE PERFORMANCE OF WORDPRESS WEBSITES by Prat...

Word press security checklist

Content Management Without the Killing

Introduction to Wordpress

5 Free Ways to Bulletproof Your WordPress Site WordCamp Seattle 2009 Ignite P...

WordPress Multisite Network Do’s & Don’ts

Update Smart: Use a staging site!

More Dev. Less Drama.pdf

Securing your WordPress powered Website

Último

In this session, we will delve into strategic approaches for optimizing knowledge management within Microsoft 365, amidst the evolving landscape of Copilot. From leveraging automatic metadata classification and permission governance with SharePoint Premium, to unlocking Viva Engage for the cultivation of knowledge and communities, you will gain actionable insights to bolster your organization's knowledge-sharing initiatives. In this session, we will also explore how to facilitate solutions to enable your employees to find answers and expertise within Microsoft 365. You will leave equipped with practical techniques and a deeper understanding of how there is more to effective knowledge management than just enabling Copilot, but building actual solutions to prepare the knowledge that Copilot and your employees can use.

Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...

Drew Madelung

Scaling API-first – The story of a global engineering organization Ian Reasor, Senior Computer Scientist - Adobe Radu Cotescu, Senior Computer Scientist - Adobe Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe

apidays

Discord is a free app offering voice, video, and text chat functionalities, primarily catering to the gaming community. It serves as a hub for users to create and join servers tailored to their interests. Discord’s ecosystem comprises servers, each functioning as a distinct online community with its own channels dedicated to specific topics or activities. Users can engage in text-based discussions, voice calls, or video chats within these channels. Understanding Discord Servers Discord servers are virtual spaces where users congregate to interact, share content, and build communities. Servers may revolve around gaming, hobbies, interests, or fandoms, providing a platform for like-minded individuals to connect. Communication Features Discord offers a range of communication tools, including text channels for messaging, voice channels for real-time audio conversations, and video channels for face-to-face interactions. These features facilitate seamless communication and collaboration. What Does NSFW Mean? The acronym NSFW stands for “Not Safe For Work,” indicating content that may be inappropriate for professional or public settings. NSFW Content NSFW content encompasses material that is sexually explicit, violent, or otherwise graphic in nature. It often includes nudity, profanity, or depictions of sensitive topics.

Understanding Discord NSFW Servers A Guide for Responsible Users.pdf

UK Journal

Webinar Recording: https://www.panagenda.com/webinars/why-teams-call-analytics-is-critical-to-your-entire-business Nothing is as frustrating and noticeable as being in an important call and being unable to see or hear the other person. Not surprising then, that issues with Teams calls are among the most common problems users call their helpdesk for. Having in depth insight into everything relevant going on at the user’s device, local network, ISP and Microsoft itself during the call is crucial for good Microsoft Teams Call quality support. To ensure a quick and adequate solution and to ensure your users get the most out of their Microsoft 365. But did you know that ‘bad calls’ are also an excellent indicator of other problems arising? Precisely because it is so noticeable!? Like the canary in the mine, bad calls can be early indicators of problems. Problems that might otherwise not have been noticed for a while but can have a big impact on productivity and satisfaction. Join this session by Christoph Adler to learn how true Microsoft Teams call quality analytics helped other organizations troubleshoot bad calls and identify and fix problems that impacted Teams calls or the use of Microsoft365 in general. See what it can do to keep your users happy and productive! In this session we will cover - Why CQD data alone is not enough to troubleshoot call problems - The importance of attributing call problems to the right call participant - What call quality analytics can do to help you quickly find, fix-, and prevent problems - Why having retrospective detailed insights matters - Real life examples of how others have used Microsoft Teams call quality monitoring to problem shoot problems with their ISP, network, device health and more.

Why Teams call analytics are critical to your entire business

panagenda

The Good, the Bad and the Governed - Why is governance a dirty word? David O'Neill, Chief Operating Officer - APIContext Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...

apidays

This presentation explores the impact of HTML injection attacks on web applications, detailing how attackers exploit vulnerabilities to inject malicious code into web pages. Learn about the potential consequences of such attacks and discover effective mitigation strategies to protect your web applications from HTML injection vulnerabilities. for more information visit https://bostoninstituteofanalytics.org/category/cyber-security-ethical-hacking/

HTML Injection Attacks: Impact and Mitigation Strategies

Boston Institute of Analytics

Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...

Neo4j

Join our latest Connector Corner webinar to discover how UiPath Integration Service revolutionizes API-centric automation in a 'Quote to Cash' process—and how that automation empowers businesses to accelerate revenue generation. A comprehensive demo will explore connecting systems, GenAI, and people, through powerful pre-built connectors designed to speed process cycle times. Speakers: James Dickson, Senior Software Engineer Charlie Greenberg, Host, Product Marketing Manager

Connector Corner: Accelerate revenue generation using UiPath API-centric busi...

DianaGray10

Increase engagement and revenue with Muvi Live Paywall! In this presentation, we will explore the five key benefits of using Muvi Live Paywall to monetize your live streams. You'll learn how Muvi Live Paywall can help you: Monetize your live content easily: Set up pay-per-view access to your live streams and start generating revenue from your content. Increase audience engagement: Provide exclusive, premium content behind the paywall to keep your viewers engaged. Gain valuable viewer insights: Track viewer data and analytics to better understand your audience and tailor your content accordingly. Reduce content piracy: Muvi Live Paywall's security features help protect your content from unauthorized distribution. Streamline your workflow: The all-in-one platform simplifies the process of managing and monetizing your live streams. With Muvi Live Paywall, you can take control of your live stream monetization and create a sustainable business model for your content. Learn more about Muvi Live Paywall and start generating revenue from your live streams today!

Top 5 Benefits OF Using Muvi Live Paywall For Live Streams

Roshan Dwivedi

How to Troubleshoot Apps for the Modern Connected Worker

ThousandEyes

Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving

Edi Saputra

2024: Domino Containers - The Next Step. News from the Domino Container commu...

Martijn de Jong

Manulife - Insurer Innovation Award 2024

The Digital Insurer

A Principled Technologies deployment guide Conclusion Deploying VMware Cloud Foundation 5.1 on next gen Dell PowerEdge servers brings together critical virtualization capabilities and high-performing hardware infrastructure. Relying on our hands-on experience, this deployment guide offers a comprehensive roadmap that can guide your organization through the seamless integration of advanced VMware cloud solutions with the performance and reliability of Dell PowerEdge servers. In addition to the deployment efficiency, the Cloud Foundation 5.1 and PowerEdge solution delivered strong performance while running a MySQL database workload. By leveraging VMware Cloud Foundation 5.1 and PowerEdge servers, you could help your organization embrace cloud computing with confidence, potentially unlocking a new level of agility, scalability, and efficiency in your data center operations.

Deploy with confidence: VMware Cloud Foundation 5.1 on next gen Dell PowerEdg...

Principled Technologies

The 7 Things I Know About Cyber Security After 25 Years | April 2024

Rafal Los

Polkadot JAM Slides - Token2049 - By Dr. Gavin Wood

Juan lago vázquez

Partners Life - Insurer Innovation Award 2024

The Digital Insurer

Imagine a world where information flows as swiftly as thought itself, making decision-making as fluid as the data driving it. Every moment is critical, and the right tools can significantly boost your organization’s performance. The power of real-time data automation through FME can turn this vision into reality. Aimed at professionals eager to leverage real-time data for enhanced decision-making and efficiency, this webinar will cover the essentials of real-time data and its significance. We’ll explore: FME’s role in real-time event processing, from data intake and analysis to transformation and reporting An overview of leveraging streams vs. automations FME’s impact across various industries highlighted by real-life case studies Live demonstrations on setting up FME workflows for real-time data Practical advice on getting started, best practices, and tips for effective implementation Join us to enhance your skills in real-time data automation with FME, and take your operational capabilities to the next level.

From Event to Action: Accelerate Your Decision Making with Real-Time Automation

Safe Software

Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024

The Digital Insurer

🐬 The future of MySQL is Postgres 🐘

RTylerCroy

WordPress security & sanitation for beginners

1. D'nelle Dowis Berry Interesting Productions, Inc. WordPress customization & development Security & Sanitation

2. Understanding WordPress Why does my WordPress site require maintenance? ● WordPress isn't just a website; it's a web application ● "The Internet" has a bajillion moving parts - servers, PCs, operating systems, browsers, programming languages ● WordPress adapts to the ever-changing internet on a regular basis ● The content of your site (ideally) changes on a regular basis ● Hackers gonna hack

3. Logging in Where's that screen again? www.yoursite.com/wp-admin bookmark it!

4. Hiding your progress Just like that flimsy curtain in a doctor's office ● Allows you privacy while you work ● Makes sure no users experience intermittent availability ● Lets you check your work

5. Malware check Why bother doing anything else if the site's infected? Backup Buddy Sucuri Quttera #wcn13ohmy

6. Backup, Backup, Backup! Or you are practically guaranteed to break something. Thanks, Murphy's Law. ● Hacking recovery ● Server malfunction recovery ● User-error recovery ● Plug-in update changes ● What to do about off-site storage?

7. Core, theme & plug-in updates The best way to totally freak yourself out for no good reason ● stay in touch with your plug-in developers ● identify any plug-ins that aren't in use & delete them ● run updates - one at a time ● reading the changelog ● check your site after each update

8. Audit your posts & pages ● Clean up comments: approve or mark as spam ● Delete old drafts & unused pages ● Authorship check ● Quick SEO audit If it's not actively supporting your goals, ditch it

9. User check & password change ● Check for spam ● Delete where possible/necessary ● Change all Administrator-level passwords ● Keep number of administrators to a minimum Hospitality is not a virtue

10. Resources ...you didn't think I did this all on my own did you? ● Berry-Interesting.com ● iThemes.com ● Backup Buddy ● Sucuri ● Codex.wordpress.org ● Want to know even more? Check out this awesome, in-depth presentation from Judy Wilson of SiteShack: slidesha.re/10cb9yJ ● Find this presentation on Slideshare: slidesha.re/14q5HIa

11. D'nelle Dowis chief distiller of awesomesauce Berry Interesting Productions, Inc. WordPress customization & development @d_nelle • facebook.com/berry.interesting • 615-825-5608 want a copy of this presentation? shoot an email over to me at hello@berry-interesting.com

WordPress security & sanitation for beginners

Recomendados

Recomendados

Mais conteúdo relacionado

Mais procurados

Mais procurados (20)

Semelhante a WordPress security & sanitation for beginners

Semelhante a WordPress security & sanitation for beginners (20)

Último

Último (20)

WordPress security & sanitation for beginners