SlideShare uma empresa Scribd logo

WordPress Security

Marshall Stevenson
Marshall Stevenson

This was a 45 minute presentation given to the Calgary WordPress Meetup group on April 23, 2013 on WordPress Security along with additional tips and tricks on password best practices. Meetup: http://www.meetup.com/The-Calgary-WordPress-Meetup-Group/ Presenter: http://rexroar.com

Tecnologia
1 de 23
Do you use the same password on multiple sites?
If you don’t follow password best practices, your hacked WordPress account could lead to other compromised accounts
What’s at risk? • Redirect visitors to a completely different website • Compromise shared hosting server and infect other sites • Phish for sensitive info • Hijack links • Blacklisted by Google and other search engines • And more…
Things you can do • Keep your core, themes & plugins updated • Remove unused themes & plugins from server • Remove the WP version number • Select a good username • Never write as an Administrator • Create & use a strong password • Secure WordPress further
Keep up-to-date • The majority of hacked WordPress sites are not updated! • Before ever making updates, ensure you backup your database AND content • Use a plugin like Backup Buddy to automate the task or other free options • Update WordPress, themes & plugins
Clean up your house • Remove unused themes (twentyten, etc) • Remove inactive plugins from WordPress and the server • Don’t keep .sql files (or other backups) stored on your server
Remove the WP version number http://www.wpbeginner.com/wp-tutorials/the-right-way-to-remove-wordpre
Select a good username • Never use ‘admin’ or ‘administrator’ as your username • Never use the sitename as your username • If you have one of these, get rid of it…now • Your personal name is OK, but your password needs to be strong
Never write as an Admin user • In no time at all a username can be determined • If a post is written as an admin, half the job is already done
Create & use a strong password When creating a password, do NOT use: • Your birthdate, • Only numbers or wedding anniversary, letters or dates of birth of • A short, easy to your children or remember password spounse • The word ‘password’ • Your name, • No words found in a username, company dictionary* name, names of your children • Your SIN number
Create & use a strong password When creating a password, do use: • At least 10 characters • A mix of numbers, upper and lower case letters and special characters • A password you have never used before • Consider ‘salting’ your password • Have a system or mnemonic
Create & use a strong password Consider a multi-word combo password Credit: http://xkcd.com/936/
Create & use a strong password Consider a multi-word combo password • More likely to be remembered • Words must be random • Words must not relate • Upper & lower cases still matter • Add a number or two • Special character as well
Create & use a strong password DO NOT store your password in an obvious place! • NOT on a sticky note on your monitor • NOT in your daily planner Use a Password Keeper • LastPass.com • AgileBits.com/OnePassword
Create & use a strong password Don’t panic, password recovery is built in!
Create & use a strong password Password Generator • www.StrongPasswordGenerator.com • www.random.org/passwords/ Test your password • www.PasswordMeter.com • www.grc.com/haystack.htm
Secure WordPress further Four free plugins you can use to secure WP • Limit login attempts • Better WP security • Wordfence • WP-Security scan All are located in the WordPress plugin repository
Resources Sucuri.net • $89.99/year • Malware cleanup, monitoring and more Duo Security • Free* • Add two-factor sign in for your installation
Next steps? • Implement this stuff!! • Start with the basics – A strong password – A good username – Writing with an editor username
WordCamp Calgary 2013 • Tickets on sale April 24 • $40 for two-day conference • http://2013.calgary.wordcamp.org
WordPress Security

Recomendados

NEPA BlogCon 2013 - WordPress Customization & Security
NEPA BlogCon 2013 - WordPress Customization & SecurityNEPA BlogCon 2013 - WordPress Customization & Security
NEPA BlogCon 2013 - WordPress Customization & SecurityMichelle Davies (Hryvnak)
 
WordPress Customization and Security
WordPress Customization and SecurityWordPress Customization and Security
WordPress Customization and SecurityJoe Casabona
 
Installing WordPress The Right Way
Installing WordPress The Right WayInstalling WordPress The Right Way
Installing WordPress The Right WayChris Burgess
 
The Basics of WordPress
The Basics of WordPressThe Basics of WordPress
The Basics of WordPressThom Allen
 
EndLess Possibilities With Wordpress
EndLess Possibilities With WordpressEndLess Possibilities With Wordpress
EndLess Possibilities With WordpressImanuel Gittens
 
WordPress Themes Demystified
WordPress Themes DemystifiedWordPress Themes Demystified
WordPress Themes DemystifiedChris Burgess
 
WordPress Basics
WordPress BasicsWordPress Basics
WordPress BasicsKyrie Tompkins
 
Create Professional Websites on a Shoestring
Create Professional Websites on a ShoestringCreate Professional Websites on a Shoestring
Create Professional Websites on a ShoestringKaren Weed
 

Recomendados

NEPA BlogCon 2013 - WordPress Customization & Security
NEPA BlogCon 2013 - WordPress Customization & SecurityNEPA BlogCon 2013 - WordPress Customization & Security
NEPA BlogCon 2013 - WordPress Customization & SecurityMichelle Davies (Hryvnak)
 
WordPress Customization and Security
WordPress Customization and SecurityWordPress Customization and Security
WordPress Customization and SecurityJoe Casabona
 
Installing WordPress The Right Way
Installing WordPress The Right WayInstalling WordPress The Right Way
Installing WordPress The Right WayChris Burgess
 
The Basics of WordPress
The Basics of WordPressThe Basics of WordPress
The Basics of WordPressThom Allen
 
EndLess Possibilities With Wordpress
EndLess Possibilities With WordpressEndLess Possibilities With Wordpress
EndLess Possibilities With WordpressImanuel Gittens
 
WordPress Themes Demystified
WordPress Themes DemystifiedWordPress Themes Demystified
WordPress Themes DemystifiedChris Burgess
 
WordPress Basics
WordPress BasicsWordPress Basics
WordPress BasicsKyrie Tompkins
 
Create Professional Websites on a Shoestring
Create Professional Websites on a ShoestringCreate Professional Websites on a Shoestring
Create Professional Websites on a ShoestringKaren Weed
 
WordCamp KC WordPress Basics
WordCamp KC WordPress BasicsWordCamp KC WordPress Basics
WordCamp KC WordPress BasicsJim Grant
 
SEO Mistakes
SEO MistakesSEO Mistakes
SEO Mistakesguest388802
 
Word press for beginners lesson 3 jalc fall 2015
Word press for beginners lesson 3 jalc fall 2015Word press for beginners lesson 3 jalc fall 2015
Word press for beginners lesson 3 jalc fall 2015Michele Butcher-Jones
 
Building the basics (WordPress Ottawa 2014)
Building the basics (WordPress Ottawa 2014)Building the basics (WordPress Ottawa 2014)
Building the basics (WordPress Ottawa 2014)christopherfross
 
Every Artist needs a Great Website: Getting Started with WordPress
Every Artist needs a Great Website: Getting Started with WordPressEvery Artist needs a Great Website: Getting Started with WordPress
Every Artist needs a Great Website: Getting Started with WordPressRuth Maude
 
2010 11 pubcon_hendison-hosting
2010 11 pubcon_hendison-hosting2010 11 pubcon_hendison-hosting
2010 11 pubcon_hendison-hostingshendison
 
PHP Code And Search Engine Optimation
PHP Code And Search Engine OptimationPHP Code And Search Engine Optimation
PHP Code And Search Engine OptimationSeo Indonesia
 
JakartaJS - How I Learn Javascript From Basic
JakartaJS - How I Learn Javascript From BasicJakartaJS - How I Learn Javascript From Basic
JakartaJS - How I Learn Javascript From BasicIrfan Maulana
 
WordPress best practices by billrice
WordPress best practices by billriceWordPress best practices by billrice
WordPress best practices by billriceRiceDesign
 
Score intro wordpress 4.3.2013
Score intro wordpress 4.3.2013Score intro wordpress 4.3.2013
Score intro wordpress 4.3.2013Bob Garrett
 
Word press 101
Word press 101Word press 101
Word press 101Fajr Muhammad
 
WordPress Theme Workshop: Part 4
WordPress Theme Workshop: Part 4WordPress Theme Workshop: Part 4
WordPress Theme Workshop: Part 4David Bisset
 
WordPress Theme Basics
WordPress Theme BasicsWordPress Theme Basics
WordPress Theme BasicsJen Jamar
 
Wordpress plugin
Wordpress pluginWordpress plugin
Wordpress pluginHarmanpreet Singh
 
Social media management wordpress ppt
Social media management wordpress pptSocial media management wordpress ppt
Social media management wordpress pptTraining As A Service
 
Introduction wordpress
Introduction wordpressIntroduction wordpress
Introduction wordpressHall_
 
Why Switching To WordPress 3.0 Is The Best Thing You Can Do For Your Clients
Why Switching To WordPress 3.0 Is The Best Thing You Can Do For Your ClientsWhy Switching To WordPress 3.0 Is The Best Thing You Can Do For Your Clients
Why Switching To WordPress 3.0 Is The Best Thing You Can Do For Your Clientsryanduff
 
WordPress 101 wcmelb 2013
WordPress 101 wcmelb 2013WordPress 101 wcmelb 2013
WordPress 101 wcmelb 2013Warren Denley
 
Apas
ApasApas
ApasGreekTuts Ελληνικά Βοηθήματα
 
WordPress, Domain Names and Web Hosting Basics
WordPress, Domain Names and Web Hosting BasicsWordPress, Domain Names and Web Hosting Basics
WordPress, Domain Names and Web Hosting BasicsChris Burgess
 
WordPress Security Essentials
WordPress Security EssentialsWordPress Security Essentials
WordPress Security EssentialsAngela Bowman
 
Building Secure WordPress Sites
Building Secure WordPress Sites Building Secure WordPress Sites
Building Secure WordPress Sites Catch Themes
 

Mais conteúdo relacionado

Mais procurados

WordCamp KC WordPress Basics
WordCamp KC WordPress BasicsWordCamp KC WordPress Basics
WordCamp KC WordPress BasicsJim Grant
 
Word press for beginners lesson 3 jalc fall 2015
Word press for beginners lesson 3 jalc fall 2015Word press for beginners lesson 3 jalc fall 2015
Word press for beginners lesson 3 jalc fall 2015Michele Butcher-Jones
 
Building the basics (WordPress Ottawa 2014)
Building the basics (WordPress Ottawa 2014)Building the basics (WordPress Ottawa 2014)
Building the basics (WordPress Ottawa 2014)christopherfross
 
Every Artist needs a Great Website: Getting Started with WordPress
Every Artist needs a Great Website: Getting Started with WordPressEvery Artist needs a Great Website: Getting Started with WordPress
Every Artist needs a Great Website: Getting Started with WordPressRuth Maude
 
2010 11 pubcon_hendison-hosting
2010 11 pubcon_hendison-hosting2010 11 pubcon_hendison-hosting
2010 11 pubcon_hendison-hostingshendison
 
PHP Code And Search Engine Optimation
PHP Code And Search Engine OptimationPHP Code And Search Engine Optimation
PHP Code And Search Engine OptimationSeo Indonesia
 
JakartaJS - How I Learn Javascript From Basic
JakartaJS - How I Learn Javascript From BasicJakartaJS - How I Learn Javascript From Basic
JakartaJS - How I Learn Javascript From BasicIrfan Maulana
 
WordPress best practices by billrice
WordPress best practices by billriceWordPress best practices by billrice
WordPress best practices by billriceRiceDesign
 
Score intro wordpress 4.3.2013
Score intro wordpress 4.3.2013Score intro wordpress 4.3.2013
Score intro wordpress 4.3.2013Bob Garrett
 
WordPress Theme Workshop: Part 4
WordPress Theme Workshop: Part 4WordPress Theme Workshop: Part 4
WordPress Theme Workshop: Part 4David Bisset
 
WordPress Theme Basics
WordPress Theme BasicsWordPress Theme Basics
WordPress Theme BasicsJen Jamar
 
Social media management wordpress ppt
Social media management wordpress pptSocial media management wordpress ppt
Social media management wordpress pptTraining As A Service
 
Introduction wordpress
Introduction wordpressIntroduction wordpress
Introduction wordpressHall_
 
Why Switching To WordPress 3.0 Is The Best Thing You Can Do For Your Clients
Why Switching To WordPress 3.0 Is The Best Thing You Can Do For Your ClientsWhy Switching To WordPress 3.0 Is The Best Thing You Can Do For Your Clients
Why Switching To WordPress 3.0 Is The Best Thing You Can Do For Your Clientsryanduff
 
WordPress 101 wcmelb 2013
WordPress 101 wcmelb 2013WordPress 101 wcmelb 2013
WordPress 101 wcmelb 2013Warren Denley
 
WordPress, Domain Names and Web Hosting Basics
WordPress, Domain Names and Web Hosting BasicsWordPress, Domain Names and Web Hosting Basics
WordPress, Domain Names and Web Hosting BasicsChris Burgess
 

Mais procurados (20)

WordCamp KC WordPress Basics
WordCamp KC WordPress BasicsWordCamp KC WordPress Basics
WordCamp KC WordPress Basics
 
SEO Mistakes
SEO MistakesSEO Mistakes
SEO Mistakes
 
Word press for beginners lesson 3 jalc fall 2015
Word press for beginners lesson 3 jalc fall 2015Word press for beginners lesson 3 jalc fall 2015
Word press for beginners lesson 3 jalc fall 2015
 
Building the basics (WordPress Ottawa 2014)
Building the basics (WordPress Ottawa 2014)Building the basics (WordPress Ottawa 2014)
Building the basics (WordPress Ottawa 2014)
 
Every Artist needs a Great Website: Getting Started with WordPress
Every Artist needs a Great Website: Getting Started with WordPressEvery Artist needs a Great Website: Getting Started with WordPress
Every Artist needs a Great Website: Getting Started with WordPress
 
2010 11 pubcon_hendison-hosting
2010 11 pubcon_hendison-hosting2010 11 pubcon_hendison-hosting
2010 11 pubcon_hendison-hosting
 
PHP Code And Search Engine Optimation
PHP Code And Search Engine OptimationPHP Code And Search Engine Optimation
PHP Code And Search Engine Optimation
 
JakartaJS - How I Learn Javascript From Basic
JakartaJS - How I Learn Javascript From BasicJakartaJS - How I Learn Javascript From Basic
JakartaJS - How I Learn Javascript From Basic
 
WordPress best practices by billrice
WordPress best practices by billriceWordPress best practices by billrice
WordPress best practices by billrice
 
Score intro wordpress 4.3.2013
Score intro wordpress 4.3.2013Score intro wordpress 4.3.2013
Score intro wordpress 4.3.2013
 
Word press 101
Word press 101Word press 101
Word press 101
 
WordPress Theme Workshop: Part 4
WordPress Theme Workshop: Part 4WordPress Theme Workshop: Part 4
WordPress Theme Workshop: Part 4
 
WordPress Theme Basics
WordPress Theme BasicsWordPress Theme Basics
WordPress Theme Basics
 
Wordpress plugin
Wordpress pluginWordpress plugin
Wordpress plugin
 
Social media management wordpress ppt
Social media management wordpress pptSocial media management wordpress ppt
Social media management wordpress ppt
 
Introduction wordpress
Introduction wordpressIntroduction wordpress
Introduction wordpress
 
Why Switching To WordPress 3.0 Is The Best Thing You Can Do For Your Clients
Why Switching To WordPress 3.0 Is The Best Thing You Can Do For Your ClientsWhy Switching To WordPress 3.0 Is The Best Thing You Can Do For Your Clients
Why Switching To WordPress 3.0 Is The Best Thing You Can Do For Your Clients
 
WordPress 101 wcmelb 2013
WordPress 101 wcmelb 2013WordPress 101 wcmelb 2013
WordPress 101 wcmelb 2013
 
Apas
ApasApas
Apas
 
WordPress, Domain Names and Web Hosting Basics
WordPress, Domain Names and Web Hosting BasicsWordPress, Domain Names and Web Hosting Basics
WordPress, Domain Names and Web Hosting Basics
 

Semelhante a WordPress Security

WordPress Security Essentials
WordPress Security EssentialsWordPress Security Essentials
WordPress Security EssentialsAngela Bowman
 
Building Secure WordPress Sites
Building Secure WordPress Sites Building Secure WordPress Sites
Building Secure WordPress Sites Catch Themes
 
WordPress Security Basics
WordPress Security BasicsWordPress Security Basics
WordPress Security BasicsRyan Plas
 
WordPress Security 101 - Meetup Nairobi March 2020
WordPress Security 101 - Meetup Nairobi March 2020 WordPress Security 101 - Meetup Nairobi March 2020
WordPress Security 101 - Meetup Nairobi March 2020 stk_jj
 
Prevent Hacking: 10 Steps to Secure your WordPress Site
Prevent Hacking: 10 Steps to Secure your WordPress SitePrevent Hacking: 10 Steps to Secure your WordPress Site
Prevent Hacking: 10 Steps to Secure your WordPress SiteDr. Rachna Jain
 
WordPress Plugins and Security
WordPress Plugins and SecurityWordPress Plugins and Security
WordPress Plugins and SecurityThink Media Inc.
 
WordPress Security - WordPress Meetup Copenhagen 2013
WordPress Security - WordPress Meetup Copenhagen 2013WordPress Security - WordPress Meetup Copenhagen 2013
WordPress Security - WordPress Meetup Copenhagen 2013Thor Kristiansen
 
How to Create (use use) Strong & Unique Passwords
How to Create (use use) Strong & Unique PasswordsHow to Create (use use) Strong & Unique Passwords
How to Create (use use) Strong & Unique PasswordsConnectSafely
 
Be Securious – Hack Your Own Site for Better Security
Be Securious – Hack Your Own Site for Better SecurityBe Securious – Hack Your Own Site for Better Security
Be Securious – Hack Your Own Site for Better Securitysecuriously
 
How to Protect Yourself From Heartbleed Security Flaw
How to Protect Yourself From Heartbleed Security FlawHow to Protect Yourself From Heartbleed Security Flaw
How to Protect Yourself From Heartbleed Security FlawConnectSafely
 
Don't Forget Your (Virtual) Keys: Creating and Using Strong Passwords
Don't Forget Your (Virtual) Keys: Creating and Using Strong PasswordsDon't Forget Your (Virtual) Keys: Creating and Using Strong Passwords
Don't Forget Your (Virtual) Keys: Creating and Using Strong Passwordsrmortiz66
 
11 Amazing things I Learnt At Word Camp Sydney 2014
11 Amazing things I Learnt At Word Camp Sydney 201411 Amazing things I Learnt At Word Camp Sydney 2014
11 Amazing things I Learnt At Word Camp Sydney 2014WordPressBrisbane
 
WordPress Security
WordPress SecurityWordPress Security
WordPress SecurityNathan Platt
 
WordPress Intermediate Workshop
WordPress Intermediate WorkshopWordPress Intermediate Workshop
WordPress Intermediate WorkshopThe Toolbox, Inc.
 
Your Site Has Been Hacked, Now What?
Your Site Has Been Hacked, Now What?Your Site Has Been Hacked, Now What?
Your Site Has Been Hacked, Now What?Michele Butcher-Jones
 
There's No Crying In Wordpress! (an intro to WP)
There's No Crying In Wordpress! (an intro to WP)There's No Crying In Wordpress! (an intro to WP)
There's No Crying In Wordpress! (an intro to WP)Grace Solivan
 
Protect Your WordPress From The Inside Out
Protect Your WordPress From The Inside OutProtect Your WordPress From The Inside Out
Protect Your WordPress From The Inside OutSiteGround.com
 
WordPress Optimization - Pubcon Las Vegas 2014
WordPress Optimization - Pubcon Las Vegas 2014WordPress Optimization - Pubcon Las Vegas 2014
WordPress Optimization - Pubcon Las Vegas 2014Brian LaFrance
 

Semelhante a WordPress Security (20)

WordPress Security Essentials
WordPress Security EssentialsWordPress Security Essentials
WordPress Security Essentials
 
Building Secure WordPress Sites
Building Secure WordPress Sites Building Secure WordPress Sites
Building Secure WordPress Sites
 
WordPress Security Basics
WordPress Security BasicsWordPress Security Basics
WordPress Security Basics
 
WordPress Security 101 - Meetup Nairobi March 2020
WordPress Security 101 - Meetup Nairobi March 2020 WordPress Security 101 - Meetup Nairobi March 2020
WordPress Security 101 - Meetup Nairobi March 2020
 
Prevent Hacking: 10 Steps to Secure your WordPress Site
Prevent Hacking: 10 Steps to Secure your WordPress SitePrevent Hacking: 10 Steps to Secure your WordPress Site
Prevent Hacking: 10 Steps to Secure your WordPress Site
 
WordPress Plugins and Security
WordPress Plugins and SecurityWordPress Plugins and Security
WordPress Plugins and Security
 
WordPress Security - WordPress Meetup Copenhagen 2013
WordPress Security - WordPress Meetup Copenhagen 2013WordPress Security - WordPress Meetup Copenhagen 2013
WordPress Security - WordPress Meetup Copenhagen 2013
 
How to Create (use use) Strong & Unique Passwords
How to Create (use use) Strong & Unique PasswordsHow to Create (use use) Strong & Unique Passwords
How to Create (use use) Strong & Unique Passwords
 
Be Securious – Hack Your Own Site for Better Security
Be Securious – Hack Your Own Site for Better SecurityBe Securious – Hack Your Own Site for Better Security
Be Securious – Hack Your Own Site for Better Security
 
How to Protect Yourself From Heartbleed Security Flaw
How to Protect Yourself From Heartbleed Security FlawHow to Protect Yourself From Heartbleed Security Flaw
How to Protect Yourself From Heartbleed Security Flaw
 
Don't Forget Your (Virtual) Keys: Creating and Using Strong Passwords
Don't Forget Your (Virtual) Keys: Creating and Using Strong PasswordsDon't Forget Your (Virtual) Keys: Creating and Using Strong Passwords
Don't Forget Your (Virtual) Keys: Creating and Using Strong Passwords
 
11 Amazing things I Learnt At Word Camp Sydney 2014
11 Amazing things I Learnt At Word Camp Sydney 201411 Amazing things I Learnt At Word Camp Sydney 2014
11 Amazing things I Learnt At Word Camp Sydney 2014
 
WordPress Security
WordPress SecurityWordPress Security
WordPress Security
 
WordPress Intermediate Workshop
WordPress Intermediate WorkshopWordPress Intermediate Workshop
WordPress Intermediate Workshop
 
Your Site Has Been Hacked, Now What?
Your Site Has Been Hacked, Now What?Your Site Has Been Hacked, Now What?
Your Site Has Been Hacked, Now What?
 
I Have My WordPress Site Now What?
I Have My WordPress Site Now What?I Have My WordPress Site Now What?
I Have My WordPress Site Now What?
 
There's No Crying In Wordpress! (an intro to WP)
There's No Crying In Wordpress! (an intro to WP)There's No Crying In Wordpress! (an intro to WP)
There's No Crying In Wordpress! (an intro to WP)
 
Protect Your WordPress From The Inside Out
Protect Your WordPress From The Inside OutProtect Your WordPress From The Inside Out
Protect Your WordPress From The Inside Out
 
Haltech WordPress102
Haltech WordPress102Haltech WordPress102
Haltech WordPress102
 
WordPress Optimization - Pubcon Las Vegas 2014
WordPress Optimization - Pubcon Las Vegas 2014WordPress Optimization - Pubcon Las Vegas 2014
WordPress Optimization - Pubcon Las Vegas 2014
 

Último

Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 3652toLead Limited
 
Factors to Consider When Choosing Accounts Payable Services Providers.pptx
Factors to Consider When Choosing Accounts Payable Services Providers.pptxFactors to Consider When Choosing Accounts Payable Services Providers.pptx
Factors to Consider When Choosing Accounts Payable Services Providers.pptxKatpro Technologies
 
Maximizing Board Effectiveness 2024 Webinar.pptx
Maximizing Board Effectiveness 2024 Webinar.pptxMaximizing Board Effectiveness 2024 Webinar.pptx
Maximizing Board Effectiveness 2024 Webinar.pptxOnBoard
 
Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024BookNet Canada
 
[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdfhans926745
 
Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...
Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...
Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...HostedbyConfluent
 
Salesforce Community Group Quito, Salesforce 101
Salesforce Community Group Quito, Salesforce 101Salesforce Community Group Quito, Salesforce 101
Salesforce Community Group Quito, Salesforce 101Paola De la Torre
 
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptxHampshireHUG
 
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmaticsKotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmaticscarlostorres15106
 
Swan(sea) Song – personal research during my six years at Swansea ... and bey...
Swan(sea) Song – personal research during my six years at Swansea ... and bey...Swan(sea) Song – personal research during my six years at Swansea ... and bey...
Swan(sea) Song – personal research during my six years at Swansea ... and bey...Alan Dix
 
Presentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreterPresentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreternaman860154
 
AI as an Interface for Commercial Buildings
AI as an Interface for Commercial BuildingsAI as an Interface for Commercial Buildings
AI as an Interface for Commercial BuildingsMemoori
 
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking MenDelhi Call girls
 
Benefits Of Flutter Compared To Other Frameworks
Benefits Of Flutter Compared To Other FrameworksBenefits Of Flutter Compared To Other Frameworks
Benefits Of Flutter Compared To Other FrameworksSoftradix Technologies
 
Injustice - Developers Among Us (SciFiDevCon 2024)
Injustice - Developers Among Us (SciFiDevCon 2024)Injustice - Developers Among Us (SciFiDevCon 2024)
Injustice - Developers Among Us (SciFiDevCon 2024)Allon Mureinik
 
How to convert PDF to text with Nanonets
How to convert PDF to text with NanonetsHow to convert PDF to text with Nanonets
How to convert PDF to text with Nanonetsnaman860154
 
How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerHow to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerThousandEyes
 
My Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 PresentationMy Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 PresentationRidwan Fadjar
 
Unblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen FramesUnblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen FramesSinan KOZAK
 
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking MenDelhi Call girls
 

Último (20)

Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
 
Factors to Consider When Choosing Accounts Payable Services Providers.pptx
Factors to Consider When Choosing Accounts Payable Services Providers.pptxFactors to Consider When Choosing Accounts Payable Services Providers.pptx
Factors to Consider When Choosing Accounts Payable Services Providers.pptx
 
Maximizing Board Effectiveness 2024 Webinar.pptx
Maximizing Board Effectiveness 2024 Webinar.pptxMaximizing Board Effectiveness 2024 Webinar.pptx
Maximizing Board Effectiveness 2024 Webinar.pptx
 
Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
 
[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf
 
Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...
Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...
Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...
 
Salesforce Community Group Quito, Salesforce 101
Salesforce Community Group Quito, Salesforce 101Salesforce Community Group Quito, Salesforce 101
Salesforce Community Group Quito, Salesforce 101
 
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
 
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmaticsKotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
 
Swan(sea) Song – personal research during my six years at Swansea ... and bey...
Swan(sea) Song – personal research during my six years at Swansea ... and bey...Swan(sea) Song – personal research during my six years at Swansea ... and bey...
Swan(sea) Song – personal research during my six years at Swansea ... and bey...
 
Presentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreterPresentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreter
 
AI as an Interface for Commercial Buildings
AI as an Interface for Commercial BuildingsAI as an Interface for Commercial Buildings
AI as an Interface for Commercial Buildings
 
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
 
Benefits Of Flutter Compared To Other Frameworks
Benefits Of Flutter Compared To Other FrameworksBenefits Of Flutter Compared To Other Frameworks
Benefits Of Flutter Compared To Other Frameworks
 
Injustice - Developers Among Us (SciFiDevCon 2024)
Injustice - Developers Among Us (SciFiDevCon 2024)Injustice - Developers Among Us (SciFiDevCon 2024)
Injustice - Developers Among Us (SciFiDevCon 2024)
 
How to convert PDF to text with Nanonets
How to convert PDF to text with NanonetsHow to convert PDF to text with Nanonets
How to convert PDF to text with Nanonets
 
How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerHow to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected Worker
 
My Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 PresentationMy Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 Presentation
 
Unblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen FramesUnblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen Frames
 
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
 

WordPress Security

  • 1.
  • 2. Do you use the same password on multiple sites?
  • 3. If you don’t follow password best practices, your hacked WordPress account could lead to other compromised accounts
  • 4. What’s at risk? • Redirect visitors to a completely different website • Compromise shared hosting server and infect other sites • Phish for sensitive info • Hijack links • Blacklisted by Google and other search engines • And more…
  • 5.
  • 6. Things you can do • Keep your core, themes & plugins updated • Remove unused themes & plugins from server • Remove the WP version number • Select a good username • Never write as an Administrator • Create & use a strong password • Secure WordPress further
  • 7. Keep up-to-date • The majority of hacked WordPress sites are not updated! • Before ever making updates, ensure you backup your database AND content • Use a plugin like Backup Buddy to automate the task or other free options • Update WordPress, themes & plugins
  • 8. Clean up your house • Remove unused themes (twentyten, etc) • Remove inactive plugins from WordPress and the server • Don’t keep .sql files (or other backups) stored on your server
  • 9. Remove the WP version number http://www.wpbeginner.com/wp-tutorials/the-right-way-to-remove-wordpre
  • 10. Select a good username • Never use ‘admin’ or ‘administrator’ as your username • Never use the sitename as your username • If you have one of these, get rid of it…now • Your personal name is OK, but your password needs to be strong
  • 11. Never write as an Admin user • In no time at all a username can be determined • If a post is written as an admin, half the job is already done
  • 12. Create & use a strong password When creating a password, do NOT use: • Your birthdate, • Only numbers or wedding anniversary, letters or dates of birth of • A short, easy to your children or remember password spounse • The word ‘password’ • Your name, • No words found in a username, company dictionary* name, names of your children • Your SIN number
  • 13. Create & use a strong password When creating a password, do use: • At least 10 characters • A mix of numbers, upper and lower case letters and special characters • A password you have never used before • Consider ‘salting’ your password • Have a system or mnemonic
  • 14. Create & use a strong password Consider a multi-word combo password Credit: http://xkcd.com/936/
  • 15. Create & use a strong password Consider a multi-word combo password • More likely to be remembered • Words must be random • Words must not relate • Upper & lower cases still matter • Add a number or two • Special character as well
  • 16. Create & use a strong password DO NOT store your password in an obvious place! • NOT on a sticky note on your monitor • NOT in your daily planner Use a Password Keeper • LastPass.com • AgileBits.com/OnePassword
  • 17. Create & use a strong password Don’t panic, password recovery is built in!
  • 18. Create & use a strong password Password Generator • www.StrongPasswordGenerator.com • www.random.org/passwords/ Test your password • www.PasswordMeter.com • www.grc.com/haystack.htm
  • 19. Secure WordPress further Four free plugins you can use to secure WP • Limit login attempts • Better WP security • Wordfence • WP-Security scan All are located in the WordPress plugin repository
  • 20. Resources Sucuri.net • $89.99/year • Malware cleanup, monitoring and more Duo Security • Free* • Add two-factor sign in for your installation
  • 21. Next steps? • Implement this stuff!! • Start with the basics – A strong password – A good username – Writing with an editor username
  • 22. WordCamp Calgary 2013 • Tickets on sale April 24 • $40 for two-day conference • http://2013.calgary.wordcamp.org