SlideShare ist ein Scribd-Unternehmen logo

10 Steps to Secure Wordpress Sites

‱
‱
Aapna Infotech
Aapna Infotech

While core installation of Wordpress is easy to use, this presentation will explain in 10 steps with specific measures how to protect your WordPress websites.

Internet
1 von 22
Downloaden Sie, um offline zu lesen
10 Steps to secure Wordpress Sites
Area: Username and Password 1 Wordpress security
Use random username generator to set a unique username  Change default “Administrator" usernames  Avoid typical “Administrator” usernames like admin, administrator, root, manager, debug, user, system, default, netman, superuser, guest, backup, sys, sysadmin, siteadmin, test, 
 Wordpress security
Area: Username and Password 2 Wordpress security
Set a secure password  Use a password service such as LastPass  Use a random 16 (at least) character password UPPER, lower, digits, punctuation Wordpress security
Area: Login Limits 3 Wordpress security
Block IP address after X number of login attempts within a period.  Use Limit Login Attempts plugin – http://wordpress.org/plugins/limit-login- attempts/ Wordpress security
Area: Folder and File permissions 4 Wordpress security
Change directory permissions.  WordPress folders/directories = 755  WordPress files = 644  .htaccess, php.ini, wp-config.php = 444 Wordpress security
Area: Protect configuration files 5 Wordpress security
Use .htaccess to protect your wp- config.php file.  Add to .htaccess – <files wp-config.php> order allow,deny deny from all </files> Wordpress security
Area: SQL Injection Protection 6 Wordpress security
Use .htaccess to stop SQL Injection attacks.  Add to .htaccess – Options +FollowSymLinks RewriteEngine On RewriteCond %{QUERY_STRING} (<|%3C).*script.*(>|%3E) [NC,OR] RewriteCond %{QUERY_STRING} GLOBALS(=|[|%[0-9A-Z]{0,2}) [OR] RewriteCond %{QUERY_STRING} _REQUEST(=|[|%[0-9A-Z]{0,2}) RewriteRule ^(.*)$ index.php [F,L] Wordpress security
Area: Prevent Directory Browsing 7 Wordpress security
Use .htaccess to stop SQL Injection attacks. Wordpress security  Add to .htaccess – Options - Indexes
Area: Disable User File Editor 8 Wordpress security
Remove the WordPress dashboard Editor for themes and plugins.  Add to wp-config.php – define('DISALLOW_FILE_EDIT', true); Wordpress security
Area: Change Default Table Prefix 9 Wordpress security
Default MySQL DB table prefix is wp_ Change before installing new WP sites.  Add to wp-config.php – $table_prefix = ‘mynewprefix_'; Wordpress security
Area: Audit Changes 10 Wordpress security
Default MySQL DB table prefix is wp_ Change before installing new WP sites.  Add WP Security Audit Log plugin - http://wordpress.org/plugins/wp-security- audit-log/ Wordpress security
This presentation has been submitted by:- Anuj Mathur Anuj has over 14 years experience in planning, managing and executing software projects on the open source platform. At AAPNA Infotech, he is presently managing product initiatives and process improvements. Wordpress security

Empfohlen

Wordpress security issues
Wordpress security issuesWordpress security issues
Wordpress security issuesDeepu Thomas
 
Top Ten WordPress Security Tips for 2012
Top Ten WordPress Security Tips for 2012Top Ten WordPress Security Tips for 2012
Top Ten WordPress Security Tips for 2012Brad Williams
 
Joomla! security jday2015
Joomla! security jday2015Joomla! security jday2015
Joomla! security jday2015Shaiffulnizam Mohamad
 
How to install and configure lamp (linux,apache mysql mariadb,php) with jooml...
How to install and configure lamp (linux,apache mysql mariadb,php) with jooml...How to install and configure lamp (linux,apache mysql mariadb,php) with jooml...
How to install and configure lamp (linux,apache mysql mariadb,php) with jooml...CloudMinister Technologies Pvt. Ltd
 
Presentation_On_25June09
Presentation_On_25June09Presentation_On_25June09
Presentation_On_25June09Sanjay Kumar
 
Protect Your WordPress Website - Setting Up IThemes Security
Protect Your WordPress Website - Setting Up IThemes SecurityProtect Your WordPress Website - Setting Up IThemes Security
Protect Your WordPress Website - Setting Up IThemes SecurityRed8 Interactive
 
LAMP security practices
LAMP security practicesLAMP security practices
LAMP security practicesAmit Kejriwal
 
Wordpress
WordpressWordpress
Wordpressvinoth kumar
 

Empfohlen

Wordpress security issues
Wordpress security issuesWordpress security issues
Wordpress security issuesDeepu Thomas
 
Top Ten WordPress Security Tips for 2012
Top Ten WordPress Security Tips for 2012Top Ten WordPress Security Tips for 2012
Top Ten WordPress Security Tips for 2012Brad Williams
 
Joomla! security jday2015
Joomla! security jday2015Joomla! security jday2015
Joomla! security jday2015Shaiffulnizam Mohamad
 
How to install and configure lamp (linux,apache mysql mariadb,php) with jooml...
How to install and configure lamp (linux,apache mysql mariadb,php) with jooml...How to install and configure lamp (linux,apache mysql mariadb,php) with jooml...
How to install and configure lamp (linux,apache mysql mariadb,php) with jooml...CloudMinister Technologies Pvt. Ltd
 
Presentation_On_25June09
Presentation_On_25June09Presentation_On_25June09
Presentation_On_25June09Sanjay Kumar
 
Protect Your WordPress Website - Setting Up IThemes Security
Protect Your WordPress Website - Setting Up IThemes SecurityProtect Your WordPress Website - Setting Up IThemes Security
Protect Your WordPress Website - Setting Up IThemes SecurityRed8 Interactive
 
LAMP security practices
LAMP security practicesLAMP security practices
LAMP security practicesAmit Kejriwal
 
Wordpress
WordpressWordpress
Wordpressvinoth kumar
 
ElasticSearch Meetup 30 - 10 - 2014
ElasticSearch Meetup 30 - 10 - 2014ElasticSearch Meetup 30 - 10 - 2014
ElasticSearch Meetup 30 - 10 - 2014Alberto Paro
 
Securing Your Moodle
Securing Your MoodleSecuring Your Moodle
Securing Your Moodlemoorejon
 
Security in the AWS Cloud - Steve Riley
Security in the AWS Cloud - Steve RileySecurity in the AWS Cloud - Steve Riley
Security in the AWS Cloud - Steve RileyAmazon Web Services
 
WordPress Security - What to do, What NOT to do
WordPress Security - What to do, What NOT to doWordPress Security - What to do, What NOT to do
WordPress Security - What to do, What NOT to doWordPress Trivandrum
 
PHP Training Session 7
PHP Training Session 7PHP Training Session 7
PHP Training Session 7Vishal Kothari
 
Isa
IsaIsa
Isadeshvikas
 
WordPress 3.0 overview
WordPress 3.0 overviewWordPress 3.0 overview
WordPress 3.0 overviewPat Ramsey
 
Intro to Wordpress Security
Intro to Wordpress SecurityIntro to Wordpress Security
Intro to Wordpress SecurityChris Dodds
 
HOWTO: Protect your websites/apps from cyber attacks
HOWTO: Protect your websites/apps from cyber attacksHOWTO: Protect your websites/apps from cyber attacks
HOWTO: Protect your websites/apps from cyber attacksUniversity of Toronto
 
Sql installation
Sql installationSql installation
Sql installationBalakumaran Arunachalam
 
WordPress MU 101
WordPress MU 101WordPress MU 101
WordPress MU 101Pete Mall
 
Introduction of Ghost CMSGhost cms
Introduction of Ghost CMSGhost cmsIntroduction of Ghost CMSGhost cms
Introduction of Ghost CMSGhost cmsKhademulBasher
 
WordPress Meetup Ieper - 15/03/2018 - WordPress Security Best Practices
WordPress Meetup Ieper - 15/03/2018 - WordPress Security Best PracticesWordPress Meetup Ieper - 15/03/2018 - WordPress Security Best Practices
WordPress Meetup Ieper - 15/03/2018 - WordPress Security Best PracticesBrecht Ryckaert
 
Űč۱۶ ŰȘÙ‚ŰŻÙŠÙ…ÙŠ2
Űč۱۶ ŰȘÙ‚ŰŻÙŠÙ…ÙŠ2Űč۱۶ ŰȘÙ‚ŰŻÙŠÙ…ÙŠ2
Űč۱۶ ŰȘÙ‚ŰŻÙŠÙ…ÙŠ2alwi12345
 
WordPress in the enterprise - can it work?
WordPress in the enterprise - can it work?WordPress in the enterprise - can it work?
WordPress in the enterprise - can it work?DMWMartin
 
12 Ways to Improve Magento 2 Security and Performance
12 Ways to Improve Magento 2 Security and Performance12 Ways to Improve Magento 2 Security and Performance
12 Ways to Improve Magento 2 Security and PerformanceElogic Magento Development
 
WordCamp Chicago 2011 - WordPress End User Security - Dre Armeda
WordCamp Chicago 2011 - WordPress End User Security - Dre ArmedaWordCamp Chicago 2011 - WordPress End User Security - Dre Armeda
WordCamp Chicago 2011 - WordPress End User Security - Dre ArmedaDre Armeda
 
Buildstrapping Aloofix
Buildstrapping AloofixBuildstrapping Aloofix
Buildstrapping AloofixKevin Johnson
 
Session wp
Session wpSession wp
Session wpdenish38
 
WordPress Security 2018
WordPress Security 2018WordPress Security 2018
WordPress Security 2018Adrian Mikeliunas
 
Hands on workshop on word press
Hands on workshop on word pressHands on workshop on word press
Hands on workshop on word pressMohammad Shoriful Islam Ronju
 
Word Press Security
Word Press SecurityWord Press Security
Word Press SecurityRandall Rode
 

Weitere Àhnliche Inhalte

Was ist angesagt?

ElasticSearch Meetup 30 - 10 - 2014
ElasticSearch Meetup 30 - 10 - 2014ElasticSearch Meetup 30 - 10 - 2014
ElasticSearch Meetup 30 - 10 - 2014Alberto Paro
 
Securing Your Moodle
Securing Your MoodleSecuring Your Moodle
Securing Your Moodlemoorejon
 
Security in the AWS Cloud - Steve Riley
Security in the AWS Cloud - Steve RileySecurity in the AWS Cloud - Steve Riley
Security in the AWS Cloud - Steve RileyAmazon Web Services
 
WordPress Security - What to do, What NOT to do
WordPress Security - What to do, What NOT to doWordPress Security - What to do, What NOT to do
WordPress Security - What to do, What NOT to doWordPress Trivandrum
 
PHP Training Session 7
PHP Training Session 7PHP Training Session 7
PHP Training Session 7Vishal Kothari
 
WordPress 3.0 overview
WordPress 3.0 overviewWordPress 3.0 overview
WordPress 3.0 overviewPat Ramsey
 
Intro to Wordpress Security
Intro to Wordpress SecurityIntro to Wordpress Security
Intro to Wordpress SecurityChris Dodds
 
HOWTO: Protect your websites/apps from cyber attacks
HOWTO: Protect your websites/apps from cyber attacksHOWTO: Protect your websites/apps from cyber attacks
HOWTO: Protect your websites/apps from cyber attacksUniversity of Toronto
 
WordPress MU 101
WordPress MU 101WordPress MU 101
WordPress MU 101Pete Mall
 
Introduction of Ghost CMSGhost cms
Introduction of Ghost CMSGhost cmsIntroduction of Ghost CMSGhost cms
Introduction of Ghost CMSGhost cmsKhademulBasher
 
WordPress Meetup Ieper - 15/03/2018 - WordPress Security Best Practices
WordPress Meetup Ieper - 15/03/2018 - WordPress Security Best PracticesWordPress Meetup Ieper - 15/03/2018 - WordPress Security Best Practices
WordPress Meetup Ieper - 15/03/2018 - WordPress Security Best PracticesBrecht Ryckaert
 
Űč۱۶ ŰȘÙ‚ŰŻÙŠÙ…ÙŠ2
Űč۱۶ ŰȘÙ‚ŰŻÙŠÙ…ÙŠ2Űč۱۶ ŰȘÙ‚ŰŻÙŠÙ…ÙŠ2
Űč۱۶ ŰȘÙ‚ŰŻÙŠÙ…ÙŠ2alwi12345
 
WordPress in the enterprise - can it work?
WordPress in the enterprise - can it work?WordPress in the enterprise - can it work?
WordPress in the enterprise - can it work?DMWMartin
 
12 Ways to Improve Magento 2 Security and Performance
12 Ways to Improve Magento 2 Security and Performance12 Ways to Improve Magento 2 Security and Performance
12 Ways to Improve Magento 2 Security and PerformanceElogic Magento Development
 
WordCamp Chicago 2011 - WordPress End User Security - Dre Armeda
WordCamp Chicago 2011 - WordPress End User Security - Dre ArmedaWordCamp Chicago 2011 - WordPress End User Security - Dre Armeda
WordCamp Chicago 2011 - WordPress End User Security - Dre ArmedaDre Armeda
 
Buildstrapping Aloofix
Buildstrapping AloofixBuildstrapping Aloofix
Buildstrapping AloofixKevin Johnson
 
Session wp
Session wpSession wp
Session wpdenish38
 

Was ist angesagt? (19)

ElasticSearch Meetup 30 - 10 - 2014
ElasticSearch Meetup 30 - 10 - 2014ElasticSearch Meetup 30 - 10 - 2014
ElasticSearch Meetup 30 - 10 - 2014
 
Securing Your Moodle
Securing Your MoodleSecuring Your Moodle
Securing Your Moodle
 
Security in the AWS Cloud - Steve Riley
Security in the AWS Cloud - Steve RileySecurity in the AWS Cloud - Steve Riley
Security in the AWS Cloud - Steve Riley
 
WordPress Security - What to do, What NOT to do
WordPress Security - What to do, What NOT to doWordPress Security - What to do, What NOT to do
WordPress Security - What to do, What NOT to do
 
PHP Training Session 7
PHP Training Session 7PHP Training Session 7
PHP Training Session 7
 
Isa
IsaIsa
Isa
 
WordPress 3.0 overview
WordPress 3.0 overviewWordPress 3.0 overview
WordPress 3.0 overview
 
Intro to Wordpress Security
Intro to Wordpress SecurityIntro to Wordpress Security
Intro to Wordpress Security
 
HOWTO: Protect your websites/apps from cyber attacks
HOWTO: Protect your websites/apps from cyber attacksHOWTO: Protect your websites/apps from cyber attacks
HOWTO: Protect your websites/apps from cyber attacks
 
Sql installation
Sql installationSql installation
Sql installation
 
WordPress MU 101
WordPress MU 101WordPress MU 101
WordPress MU 101
 
Introduction of Ghost CMSGhost cms
Introduction of Ghost CMSGhost cmsIntroduction of Ghost CMSGhost cms
Introduction of Ghost CMSGhost cms
 
WordPress Meetup Ieper - 15/03/2018 - WordPress Security Best Practices
WordPress Meetup Ieper - 15/03/2018 - WordPress Security Best PracticesWordPress Meetup Ieper - 15/03/2018 - WordPress Security Best Practices
WordPress Meetup Ieper - 15/03/2018 - WordPress Security Best Practices
 
Űč۱۶ ŰȘÙ‚ŰŻÙŠÙ…ÙŠ2
Űč۱۶ ŰȘÙ‚ŰŻÙŠÙ…ÙŠ2Űč۱۶ ŰȘÙ‚ŰŻÙŠÙ…ÙŠ2
Űč۱۶ ŰȘÙ‚ŰŻÙŠÙ…ÙŠ2
 
WordPress in the enterprise - can it work?
WordPress in the enterprise - can it work?WordPress in the enterprise - can it work?
WordPress in the enterprise - can it work?
 
12 Ways to Improve Magento 2 Security and Performance
12 Ways to Improve Magento 2 Security and Performance12 Ways to Improve Magento 2 Security and Performance
12 Ways to Improve Magento 2 Security and Performance
 
WordCamp Chicago 2011 - WordPress End User Security - Dre Armeda
WordCamp Chicago 2011 - WordPress End User Security - Dre ArmedaWordCamp Chicago 2011 - WordPress End User Security - Dre Armeda
WordCamp Chicago 2011 - WordPress End User Security - Dre Armeda
 
Buildstrapping Aloofix
Buildstrapping AloofixBuildstrapping Aloofix
Buildstrapping Aloofix
 
Session wp
Session wpSession wp
Session wp
 

Ähnlich wie 10 Steps to Secure Wordpress Sites

WordPress Security 2018
WordPress Security 2018WordPress Security 2018
WordPress Security 2018Adrian Mikeliunas
 
Word Press Security
Word Press SecurityWord Press Security
Word Press SecurityRandall Rode
 
WordPress Security 101: Practical Techniques & Best Practices
WordPress Security 101: Practical Techniques & Best PracticesWordPress Security 101: Practical Techniques & Best Practices
WordPress Security 101: Practical Techniques & Best PracticesJonathan Hall
 
Ithemes presentation
Ithemes presentationIthemes presentation
Ithemes presentationJason Yingling
 
Complete Wordpress Security By CHETAN SONI - Cyber Security Expert
Complete Wordpress Security By CHETAN SONI - Cyber Security ExpertComplete Wordpress Security By CHETAN SONI - Cyber Security Expert
Complete Wordpress Security By CHETAN SONI - Cyber Security ExpertChetan Soni
 
WordPress Security - Kulpreet Singh
WordPress Security - Kulpreet SinghWordPress Security - Kulpreet Singh
WordPress Security - Kulpreet Singhguest4fe370
 
WordPress Security Hardening
WordPress Security HardeningWordPress Security Hardening
WordPress Security HardeningTimothy Wood
 
WordPress Security Best Practices 2019 Update
WordPress Security Best Practices 2019 UpdateWordPress Security Best Practices 2019 Update
WordPress Security Best Practices 2019 UpdateZero Point Development
 
Neo word press meetup ehermits - how to keep your blog from being hacked 2012
Neo word press meetup ehermits - how to keep your blog from being hacked 2012Neo word press meetup ehermits - how to keep your blog from being hacked 2012
Neo word press meetup ehermits - how to keep your blog from being hacked 2012Brian Layman
 
WordPress End-User Security
WordPress End-User SecurityWordPress End-User Security
WordPress End-User SecurityDre Armeda
 
WordPress Setup and Security (Please look for the newer version!)
WordPress Setup and Security (Please look for the newer version!)WordPress Setup and Security (Please look for the newer version!)
WordPress Setup and Security (Please look for the newer version!)Michael Carnell
 
AEM (CQ) Dispatcher Security and CDN+Browser Caching
AEM (CQ) Dispatcher Security and CDN+Browser CachingAEM (CQ) Dispatcher Security and CDN+Browser Caching
AEM (CQ) Dispatcher Security and CDN+Browser CachingAndrew Khoury
 
WordPress Security - WordPress Meetup Copenhagen 2013
WordPress Security - WordPress Meetup Copenhagen 2013WordPress Security - WordPress Meetup Copenhagen 2013
WordPress Security - WordPress Meetup Copenhagen 2013Thor Kristiansen
 
Protect Your WordPress From The Inside Out
Protect Your WordPress From The Inside OutProtect Your WordPress From The Inside Out
Protect Your WordPress From The Inside OutSiteGround.com
 
Locking down word press
Locking down word pressLocking down word press
Locking down word pressZachary Russell
 
Security Function
Security FunctionSecurity Function
Security FunctionSamuel Soon
 

Ähnlich wie 10 Steps to Secure Wordpress Sites (20)

WordPress Security 2018
WordPress Security 2018WordPress Security 2018
WordPress Security 2018
 
Hands on workshop on word press
Hands on workshop on word pressHands on workshop on word press
Hands on workshop on word press
 
Word Press Security
Word Press SecurityWord Press Security
Word Press Security
 
WordPress Security 101: Practical Techniques & Best Practices
WordPress Security 101: Practical Techniques & Best PracticesWordPress Security 101: Practical Techniques & Best Practices
WordPress Security 101: Practical Techniques & Best Practices
 
Ithemes presentation
Ithemes presentationIthemes presentation
Ithemes presentation
 
Complete Wordpress Security By CHETAN SONI - Cyber Security Expert
Complete Wordpress Security By CHETAN SONI - Cyber Security ExpertComplete Wordpress Security By CHETAN SONI - Cyber Security Expert
Complete Wordpress Security By CHETAN SONI - Cyber Security Expert
 
WordPress Security
WordPress Security WordPress Security
WordPress Security
 
WordPress Security - Kulpreet Singh
WordPress Security - Kulpreet SinghWordPress Security - Kulpreet Singh
WordPress Security - Kulpreet Singh
 
WordPress Security Hardening
WordPress Security HardeningWordPress Security Hardening
WordPress Security Hardening
 
WordPress Security Best Practices 2019 Update
WordPress Security Best Practices 2019 UpdateWordPress Security Best Practices 2019 Update
WordPress Security Best Practices 2019 Update
 
Neo word press meetup ehermits - how to keep your blog from being hacked 2012
Neo word press meetup ehermits - how to keep your blog from being hacked 2012Neo word press meetup ehermits - how to keep your blog from being hacked 2012
Neo word press meetup ehermits - how to keep your blog from being hacked 2012
 
WordPress End-User Security
WordPress End-User SecurityWordPress End-User Security
WordPress End-User Security
 
WordPress Setup and Security (Please look for the newer version!)
WordPress Setup and Security (Please look for the newer version!)WordPress Setup and Security (Please look for the newer version!)
WordPress Setup and Security (Please look for the newer version!)
 
Apache Web Server Setup 4
Apache Web Server Setup 4Apache Web Server Setup 4
Apache Web Server Setup 4
 
AEM (CQ) Dispatcher Security and CDN+Browser Caching
AEM (CQ) Dispatcher Security and CDN+Browser CachingAEM (CQ) Dispatcher Security and CDN+Browser Caching
AEM (CQ) Dispatcher Security and CDN+Browser Caching
 
WordPress Security - WordPress Meetup Copenhagen 2013
WordPress Security - WordPress Meetup Copenhagen 2013WordPress Security - WordPress Meetup Copenhagen 2013
WordPress Security - WordPress Meetup Copenhagen 2013
 
Protect Your WordPress From The Inside Out
Protect Your WordPress From The Inside OutProtect Your WordPress From The Inside Out
Protect Your WordPress From The Inside Out
 
Brendon Hatcher Joomla Security
Brendon Hatcher Joomla SecurityBrendon Hatcher Joomla Security
Brendon Hatcher Joomla Security
 
Locking down word press
Locking down word pressLocking down word press
Locking down word press
 
Security Function
Security FunctionSecurity Function
Security Function
 

Mehr von Aapna Infotech

How Much Does it Cost to Develop an App
How Much Does it Cost to Develop an AppHow Much Does it Cost to Develop an App
How Much Does it Cost to Develop an AppAapna Infotech
 
Build a Minimum Viable Product (MVP) for Your Startups.pptx
Build a Minimum Viable Product (MVP) for Your Startups.pptxBuild a Minimum Viable Product (MVP) for Your Startups.pptx
Build a Minimum Viable Product (MVP) for Your Startups.pptxAapna Infotech
 
Top HR Processes to Automate
Top HR Processes to AutomateTop HR Processes to Automate
Top HR Processes to AutomateAapna Infotech
 
Laravel Web Development
Laravel Web Development Laravel Web Development
Laravel Web Development Aapna Infotech
 
ElectroNeek Partner - AAPNA Infotech
ElectroNeek Partner - AAPNA InfotechElectroNeek Partner - AAPNA Infotech
ElectroNeek Partner - AAPNA InfotechAapna Infotech
 
RPA Case Studies - AAPNA Infotech
RPA Case Studies - AAPNA InfotechRPA Case Studies - AAPNA Infotech
RPA Case Studies - AAPNA InfotechAapna Infotech
 
Top Reasons to use RPA in Financial Services
Top Reasons to use RPA in Financial ServicesTop Reasons to use RPA in Financial Services
Top Reasons to use RPA in Financial ServicesAapna Infotech
 
Advantages of Automation in Mortgage Processing
Advantages of Automation in Mortgage ProcessingAdvantages of Automation in Mortgage Processing
Advantages of Automation in Mortgage ProcessingAapna Infotech
 
Enterprise App Development
Enterprise App DevelopmentEnterprise App Development
Enterprise App DevelopmentAapna Infotech
 
Software Development Company Corporate Presentation
Software Development Company Corporate Presentation Software Development Company Corporate Presentation
Software Development Company Corporate Presentation Aapna Infotech
 
Enterprise Application Development Corporate Presentation - AAPNA Infotech
Enterprise Application Development Corporate Presentation - AAPNA InfotechEnterprise Application Development Corporate Presentation - AAPNA Infotech
Enterprise Application Development Corporate Presentation - AAPNA InfotechAapna Infotech
 
Artificial Intelligence Services - AAPNA Infotech
Artificial Intelligence Services - AAPNA InfotechArtificial Intelligence Services - AAPNA Infotech
Artificial Intelligence Services - AAPNA InfotechAapna Infotech
 
Robotic process automation (rpa)
Robotic process automation (rpa)Robotic process automation (rpa)
Robotic process automation (rpa)Aapna Infotech
 
Software QA Testing Company India Presentation - AAPNA Infotech
Software QA Testing Company India Presentation - AAPNA InfotechSoftware QA Testing Company India Presentation - AAPNA Infotech
Software QA Testing Company India Presentation - AAPNA InfotechAapna Infotech
 
End-to-End solution - Mobile APP, Web & Smart Iot Bin
End-to-End solution - Mobile APP, Web & Smart Iot Bin End-to-End solution - Mobile APP, Web & Smart Iot Bin
End-to-End solution - Mobile APP, Web & Smart Iot Bin Aapna Infotech
 
Challenges Of Outsourcing
Challenges Of OutsourcingChallenges Of Outsourcing
Challenges Of OutsourcingAapna Infotech
 
Aapna Infotech - A web development company- Corporate Presentation
Aapna Infotech - A web development company- Corporate PresentationAapna Infotech - A web development company- Corporate Presentation
Aapna Infotech - A web development company- Corporate PresentationAapna Infotech
 
6 simple tips to become a better PHP developer
6 simple tips to become a better PHP developer6 simple tips to become a better PHP developer
6 simple tips to become a better PHP developerAapna Infotech
 
Aapna presentation
Aapna presentationAapna presentation
Aapna presentationAapna Infotech
 
Pourquoi externaliser
Pourquoi externaliserPourquoi externaliser
Pourquoi externaliserAapna Infotech
 

Mehr von Aapna Infotech (20)

How Much Does it Cost to Develop an App
How Much Does it Cost to Develop an AppHow Much Does it Cost to Develop an App
How Much Does it Cost to Develop an App
 
Build a Minimum Viable Product (MVP) for Your Startups.pptx
Build a Minimum Viable Product (MVP) for Your Startups.pptxBuild a Minimum Viable Product (MVP) for Your Startups.pptx
Build a Minimum Viable Product (MVP) for Your Startups.pptx
 
Top HR Processes to Automate
Top HR Processes to AutomateTop HR Processes to Automate
Top HR Processes to Automate
 
Laravel Web Development
Laravel Web Development Laravel Web Development
Laravel Web Development
 
ElectroNeek Partner - AAPNA Infotech
ElectroNeek Partner - AAPNA InfotechElectroNeek Partner - AAPNA Infotech
ElectroNeek Partner - AAPNA Infotech
 
RPA Case Studies - AAPNA Infotech
RPA Case Studies - AAPNA InfotechRPA Case Studies - AAPNA Infotech
RPA Case Studies - AAPNA Infotech
 
Top Reasons to use RPA in Financial Services
Top Reasons to use RPA in Financial ServicesTop Reasons to use RPA in Financial Services
Top Reasons to use RPA in Financial Services
 
Advantages of Automation in Mortgage Processing
Advantages of Automation in Mortgage ProcessingAdvantages of Automation in Mortgage Processing
Advantages of Automation in Mortgage Processing
 
Enterprise App Development
Enterprise App DevelopmentEnterprise App Development
Enterprise App Development
 
Software Development Company Corporate Presentation
Software Development Company Corporate Presentation Software Development Company Corporate Presentation
Software Development Company Corporate Presentation
 
Enterprise Application Development Corporate Presentation - AAPNA Infotech
Enterprise Application Development Corporate Presentation - AAPNA InfotechEnterprise Application Development Corporate Presentation - AAPNA Infotech
Enterprise Application Development Corporate Presentation - AAPNA Infotech
 
Artificial Intelligence Services - AAPNA Infotech
Artificial Intelligence Services - AAPNA InfotechArtificial Intelligence Services - AAPNA Infotech
Artificial Intelligence Services - AAPNA Infotech
 
Robotic process automation (rpa)
Robotic process automation (rpa)Robotic process automation (rpa)
Robotic process automation (rpa)
 
Software QA Testing Company India Presentation - AAPNA Infotech
Software QA Testing Company India Presentation - AAPNA InfotechSoftware QA Testing Company India Presentation - AAPNA Infotech
Software QA Testing Company India Presentation - AAPNA Infotech
 
End-to-End solution - Mobile APP, Web & Smart Iot Bin
End-to-End solution - Mobile APP, Web & Smart Iot Bin End-to-End solution - Mobile APP, Web & Smart Iot Bin
End-to-End solution - Mobile APP, Web & Smart Iot Bin
 
Challenges Of Outsourcing
Challenges Of OutsourcingChallenges Of Outsourcing
Challenges Of Outsourcing
 
Aapna Infotech - A web development company- Corporate Presentation
Aapna Infotech - A web development company- Corporate PresentationAapna Infotech - A web development company- Corporate Presentation
Aapna Infotech - A web development company- Corporate Presentation
 
6 simple tips to become a better PHP developer
6 simple tips to become a better PHP developer6 simple tips to become a better PHP developer
6 simple tips to become a better PHP developer
 
Aapna presentation
Aapna presentationAapna presentation
Aapna presentation
 
Pourquoi externaliser
Pourquoi externaliserPourquoi externaliser
Pourquoi externaliser
 

KĂŒrzlich hochgeladen

Call Girls Service Chandigarh Lucky ❀ 7710465962 Independent Call Girls In C...
Call Girls Service Chandigarh Lucky ❀ 7710465962 Independent Call Girls In C...Call Girls Service Chandigarh Lucky ❀ 7710465962 Independent Call Girls In C...
Call Girls Service Chandigarh Lucky ❀ 7710465962 Independent Call Girls In C...Sheetaleventcompany
 
FULL ENJOY Call Girls In Mayur Vihar Delhi Contact Us 8377087607
FULL ENJOY Call Girls In Mayur Vihar Delhi Contact Us 8377087607FULL ENJOY Call Girls In Mayur Vihar Delhi Contact Us 8377087607
FULL ENJOY Call Girls In Mayur Vihar Delhi Contact Us 8377087607dollysharma2066
 
Chennai Call Girls Porur Phone 🍆 8250192130 👅 celebrity escorts service
Chennai Call Girls Porur Phone 🍆 8250192130 👅 celebrity escorts serviceChennai Call Girls Porur Phone 🍆 8250192130 👅 celebrity escorts service
Chennai Call Girls Porur Phone 🍆 8250192130 👅 celebrity escorts servicesonalikaur4
 
Call Girls Dubai Prolapsed O525547819 Call Girls In Dubai Princes$
Call Girls Dubai Prolapsed O525547819 Call Girls In Dubai Princes$Call Girls Dubai Prolapsed O525547819 Call Girls In Dubai Princes$
Call Girls Dubai Prolapsed O525547819 Call Girls In Dubai Princes$kojalkojal131
 
Hot Service (+9316020077 ) Goa Call Girls Real Photos and Genuine Service
Hot Service (+9316020077 ) Goa Call Girls Real Photos and Genuine ServiceHot Service (+9316020077 ) Goa Call Girls Real Photos and Genuine Service
Hot Service (+9316020077 ) Goa Call Girls Real Photos and Genuine Servicesexy call girls service in goa
 
VIP 7001035870 Find & Meet Hyderabad Call Girls Dilsukhnagar high-profile Cal...
VIP 7001035870 Find & Meet Hyderabad Call Girls Dilsukhnagar high-profile Cal...VIP 7001035870 Find & Meet Hyderabad Call Girls Dilsukhnagar high-profile Cal...
VIP 7001035870 Find & Meet Hyderabad Call Girls Dilsukhnagar high-profile Cal...aditipandeya
 
DDoS In Oceania and the Pacific, presented by Dave Phelan at NZNOG 2024
DDoS In Oceania and the Pacific, presented by Dave Phelan at NZNOG 2024DDoS In Oceania and the Pacific, presented by Dave Phelan at NZNOG 2024
DDoS In Oceania and the Pacific, presented by Dave Phelan at NZNOG 2024APNIC
 
'Future Evolution of the Internet' delivered by Geoff Huston at Everything Op...
'Future Evolution of the Internet' delivered by Geoff Huston at Everything Op...'Future Evolution of the Internet' delivered by Geoff Huston at Everything Op...
'Future Evolution of the Internet' delivered by Geoff Huston at Everything Op...APNIC
 
Delhi Call Girls Rohini 9711199171 ☎✔👌✔ Whatsapp Hard And Sexy Vip Call
Delhi Call Girls Rohini 9711199171 ☎✔👌✔ Whatsapp Hard And Sexy Vip CallDelhi Call Girls Rohini 9711199171 ☎✔👌✔ Whatsapp Hard And Sexy Vip Call
Delhi Call Girls Rohini 9711199171 ☎✔👌✔ Whatsapp Hard And Sexy Vip Callshivangimorya083
 
Radiant Call girls in Dubai O56338O268 Dubai Call girls
Radiant Call girls in Dubai O56338O268 Dubai Call girlsRadiant Call girls in Dubai O56338O268 Dubai Call girls
Radiant Call girls in Dubai O56338O268 Dubai Call girlsstephieert
 
â‚č5.5k {Cash Payment}New Friends Colony Call Girls In [Delhi NIHARIKA] 🔝|97111...
â‚č5.5k {Cash Payment}New Friends Colony Call Girls In [Delhi NIHARIKA] 🔝|97111...â‚č5.5k {Cash Payment}New Friends Colony Call Girls In [Delhi NIHARIKA] 🔝|97111...
â‚č5.5k {Cash Payment}New Friends Colony Call Girls In [Delhi NIHARIKA] 🔝|97111...Diya Sharma
 
GDG Cloud Southlake 32: Kyle Hettinger: Demystifying the Dark Web
GDG Cloud Southlake 32: Kyle Hettinger: Demystifying the Dark WebGDG Cloud Southlake 32: Kyle Hettinger: Demystifying the Dark Web
GDG Cloud Southlake 32: Kyle Hettinger: Demystifying the Dark WebJames Anderson
 
Call Girls In Saket Delhi 💯Call Us 🔝8264348440🔝
Call Girls In Saket Delhi 💯Call Us 🔝8264348440🔝Call Girls In Saket Delhi 💯Call Us 🔝8264348440🔝
Call Girls In Saket Delhi 💯Call Us 🔝8264348440🔝soniya singh
 
VIP 7001035870 Find & Meet Hyderabad Call Girls LB Nagar high-profile Call Girl
VIP 7001035870 Find & Meet Hyderabad Call Girls LB Nagar high-profile Call GirlVIP 7001035870 Find & Meet Hyderabad Call Girls LB Nagar high-profile Call Girl
VIP 7001035870 Find & Meet Hyderabad Call Girls LB Nagar high-profile Call Girladitipandeya
 
Call Girls In Ashram Chowk Delhi 💯Call Us 🔝8264348440🔝
Call Girls In Ashram Chowk Delhi 💯Call Us 🔝8264348440🔝Call Girls In Ashram Chowk Delhi 💯Call Us 🔝8264348440🔝
Call Girls In Ashram Chowk Delhi 💯Call Us 🔝8264348440🔝soniya singh
 
Networking in the Penumbra presented by Geoff Huston at NZNOG
Networking in the Penumbra presented by Geoff Huston at NZNOGNetworking in the Penumbra presented by Geoff Huston at NZNOG
Networking in the Penumbra presented by Geoff Huston at NZNOGAPNIC
 

KĂŒrzlich hochgeladen (20)

Model Call Girl in Jamuna Vihar Delhi reach out to us at 🔝9953056974🔝
Model Call Girl in Jamuna Vihar Delhi reach out to us at 🔝9953056974🔝Model Call Girl in Jamuna Vihar Delhi reach out to us at 🔝9953056974🔝
Model Call Girl in Jamuna Vihar Delhi reach out to us at 🔝9953056974🔝
 
Rohini Sector 6 Call Girls Delhi 9999965857 @Sabina Saikh No Advance
Rohini Sector 6 Call Girls Delhi 9999965857 @Sabina Saikh No AdvanceRohini Sector 6 Call Girls Delhi 9999965857 @Sabina Saikh No Advance
Rohini Sector 6 Call Girls Delhi 9999965857 @Sabina Saikh No Advance
 
Call Girls Service Chandigarh Lucky ❀ 7710465962 Independent Call Girls In C...
Call Girls Service Chandigarh Lucky ❀ 7710465962 Independent Call Girls In C...Call Girls Service Chandigarh Lucky ❀ 7710465962 Independent Call Girls In C...
Call Girls Service Chandigarh Lucky ❀ 7710465962 Independent Call Girls In C...
 
FULL ENJOY Call Girls In Mayur Vihar Delhi Contact Us 8377087607
FULL ENJOY Call Girls In Mayur Vihar Delhi Contact Us 8377087607FULL ENJOY Call Girls In Mayur Vihar Delhi Contact Us 8377087607
FULL ENJOY Call Girls In Mayur Vihar Delhi Contact Us 8377087607
 
Chennai Call Girls Porur Phone 🍆 8250192130 👅 celebrity escorts service
Chennai Call Girls Porur Phone 🍆 8250192130 👅 celebrity escorts serviceChennai Call Girls Porur Phone 🍆 8250192130 👅 celebrity escorts service
Chennai Call Girls Porur Phone 🍆 8250192130 👅 celebrity escorts service
 
Call Girls Dubai Prolapsed O525547819 Call Girls In Dubai Princes$
Call Girls Dubai Prolapsed O525547819 Call Girls In Dubai Princes$Call Girls Dubai Prolapsed O525547819 Call Girls In Dubai Princes$
Call Girls Dubai Prolapsed O525547819 Call Girls In Dubai Princes$
 
Hot Service (+9316020077 ) Goa Call Girls Real Photos and Genuine Service
Hot Service (+9316020077 ) Goa Call Girls Real Photos and Genuine ServiceHot Service (+9316020077 ) Goa Call Girls Real Photos and Genuine Service
Hot Service (+9316020077 ) Goa Call Girls Real Photos and Genuine Service
 
VIP 7001035870 Find & Meet Hyderabad Call Girls Dilsukhnagar high-profile Cal...
VIP 7001035870 Find & Meet Hyderabad Call Girls Dilsukhnagar high-profile Cal...VIP 7001035870 Find & Meet Hyderabad Call Girls Dilsukhnagar high-profile Cal...
VIP 7001035870 Find & Meet Hyderabad Call Girls Dilsukhnagar high-profile Cal...
 
DDoS In Oceania and the Pacific, presented by Dave Phelan at NZNOG 2024
DDoS In Oceania and the Pacific, presented by Dave Phelan at NZNOG 2024DDoS In Oceania and the Pacific, presented by Dave Phelan at NZNOG 2024
DDoS In Oceania and the Pacific, presented by Dave Phelan at NZNOG 2024
 
'Future Evolution of the Internet' delivered by Geoff Huston at Everything Op...
'Future Evolution of the Internet' delivered by Geoff Huston at Everything Op...'Future Evolution of the Internet' delivered by Geoff Huston at Everything Op...
'Future Evolution of the Internet' delivered by Geoff Huston at Everything Op...
 
Delhi Call Girls Rohini 9711199171 ☎✔👌✔ Whatsapp Hard And Sexy Vip Call
Delhi Call Girls Rohini 9711199171 ☎✔👌✔ Whatsapp Hard And Sexy Vip CallDelhi Call Girls Rohini 9711199171 ☎✔👌✔ Whatsapp Hard And Sexy Vip Call
Delhi Call Girls Rohini 9711199171 ☎✔👌✔ Whatsapp Hard And Sexy Vip Call
 
Call Girls In South Ex đŸ“± 9999965857 đŸ€© Delhi đŸ«Š HOT AND SEXY VVIP 🍎 SERVICE
Call Girls In South Ex đŸ“± 9999965857 đŸ€© Delhi đŸ«Š HOT AND SEXY VVIP 🍎 SERVICECall Girls In South Ex đŸ“± 9999965857 đŸ€© Delhi đŸ«Š HOT AND SEXY VVIP 🍎 SERVICE
Call Girls In South Ex đŸ“± 9999965857 đŸ€© Delhi đŸ«Š HOT AND SEXY VVIP 🍎 SERVICE
 
Radiant Call girls in Dubai O56338O268 Dubai Call girls
Radiant Call girls in Dubai O56338O268 Dubai Call girlsRadiant Call girls in Dubai O56338O268 Dubai Call girls
Radiant Call girls in Dubai O56338O268 Dubai Call girls
 
â‚č5.5k {Cash Payment}New Friends Colony Call Girls In [Delhi NIHARIKA] 🔝|97111...
â‚č5.5k {Cash Payment}New Friends Colony Call Girls In [Delhi NIHARIKA] 🔝|97111...â‚č5.5k {Cash Payment}New Friends Colony Call Girls In [Delhi NIHARIKA] 🔝|97111...
â‚č5.5k {Cash Payment}New Friends Colony Call Girls In [Delhi NIHARIKA] 🔝|97111...
 
GDG Cloud Southlake 32: Kyle Hettinger: Demystifying the Dark Web
GDG Cloud Southlake 32: Kyle Hettinger: Demystifying the Dark WebGDG Cloud Southlake 32: Kyle Hettinger: Demystifying the Dark Web
GDG Cloud Southlake 32: Kyle Hettinger: Demystifying the Dark Web
 
Call Girls In Saket Delhi 💯Call Us 🔝8264348440🔝
Call Girls In Saket Delhi 💯Call Us 🔝8264348440🔝Call Girls In Saket Delhi 💯Call Us 🔝8264348440🔝
Call Girls In Saket Delhi 💯Call Us 🔝8264348440🔝
 
VIP 7001035870 Find & Meet Hyderabad Call Girls LB Nagar high-profile Call Girl
VIP 7001035870 Find & Meet Hyderabad Call Girls LB Nagar high-profile Call GirlVIP 7001035870 Find & Meet Hyderabad Call Girls LB Nagar high-profile Call Girl
VIP 7001035870 Find & Meet Hyderabad Call Girls LB Nagar high-profile Call Girl
 
Call Girls In Ashram Chowk Delhi 💯Call Us 🔝8264348440🔝
Call Girls In Ashram Chowk Delhi 💯Call Us 🔝8264348440🔝Call Girls In Ashram Chowk Delhi 💯Call Us 🔝8264348440🔝
Call Girls In Ashram Chowk Delhi 💯Call Us 🔝8264348440🔝
 
Dwarka Sector 26 Call Girls | Delhi | 9999965857 đŸ«Š Vanshika Verma More Our Se...
Dwarka Sector 26 Call Girls | Delhi | 9999965857 đŸ«Š Vanshika Verma More Our Se...Dwarka Sector 26 Call Girls | Delhi | 9999965857 đŸ«Š Vanshika Verma More Our Se...
Dwarka Sector 26 Call Girls | Delhi | 9999965857 đŸ«Š Vanshika Verma More Our Se...
 
Networking in the Penumbra presented by Geoff Huston at NZNOG
Networking in the Penumbra presented by Geoff Huston at NZNOGNetworking in the Penumbra presented by Geoff Huston at NZNOG
Networking in the Penumbra presented by Geoff Huston at NZNOG
 

10 Steps to Secure Wordpress Sites

  • 2. Area: Username and Password 1 Wordpress security
  • 3. Use random username generator to set a unique username  Change default “Administrator" usernames  Avoid typical “Administrator” usernames like admin, administrator, root, manager, debug, user, system, default, netman, superuser, guest, backup, sys, sysadmin, siteadmin, test, 
 Wordpress security
  • 4. Area: Username and Password 2 Wordpress security
  • 5. Set a secure password  Use a password service such as LastPass  Use a random 16 (at least) character password UPPER, lower, digits, punctuation Wordpress security
  • 7. Block IP address after X number of login attempts within a period.  Use Limit Login Attempts plugin – http://wordpress.org/plugins/limit-login- attempts/ Wordpress security
  • 8. Area: Folder and File permissions 4 Wordpress security
  • 9. Change directory permissions.  WordPress folders/directories = 755  WordPress files = 644  .htaccess, php.ini, wp-config.php = 444 Wordpress security
  • 11. Use .htaccess to protect your wp- config.php file.  Add to .htaccess – <files wp-config.php> order allow,deny deny from all </files> Wordpress security
  • 12. Area: SQL Injection Protection 6 Wordpress security
  • 13. Use .htaccess to stop SQL Injection attacks.  Add to .htaccess – Options +FollowSymLinks RewriteEngine On RewriteCond %{QUERY_STRING} (<|%3C).*script.*(>|%3E) [NC,OR] RewriteCond %{QUERY_STRING} GLOBALS(=|[|%[0-9A-Z]{0,2}) [OR] RewriteCond %{QUERY_STRING} _REQUEST(=|[|%[0-9A-Z]{0,2}) RewriteRule ^(.*)$ index.php [F,L] Wordpress security
  • 15. Use .htaccess to stop SQL Injection attacks. Wordpress security  Add to .htaccess – Options - Indexes
  • 16. Area: Disable User File Editor 8 Wordpress security
  • 17. Remove the WordPress dashboard Editor for themes and plugins.  Add to wp-config.php – define('DISALLOW_FILE_EDIT', true); Wordpress security
  • 18. Area: Change Default Table Prefix 9 Wordpress security
  • 19. Default MySQL DB table prefix is wp_ Change before installing new WP sites.  Add to wp-config.php – $table_prefix = ‘mynewprefix_'; Wordpress security
  • 21. Default MySQL DB table prefix is wp_ Change before installing new WP sites.  Add WP Security Audit Log plugin - http://wordpress.org/plugins/wp-security- audit-log/ Wordpress security
  • 22. This presentation has been submitted by:- Anuj Mathur Anuj has over 14 years experience in planning, managing and executing software projects on the open source platform. At AAPNA Infotech, he is presently managing product initiatives and process improvements. Wordpress security