Suche senden
Hochladen
WordCamp St. Louis 2011 WordPress Security Presentation
•
0 gefällt mir
•
382 views
A
acrofford
Folgen
The slides from the presentation I gave at WordCamp Fayetteville on Guest Blogging.
Weniger lesen
Mehr lesen
Technologie
Business
Melden
Teilen
Melden
Teilen
1 von 36
Jetzt herunterladen
Downloaden Sie, um offline zu lesen
Empfohlen
E resources
E resources
Sujit Chandak
Ldv tour
Ldv tour
latterdayvillage
Ing. industrial tec. de culiacan
Ing. industrial tec. de culiacan
TecnologicoCuliacan
Ibitgs syllabus 2011-2012
Ibitgs syllabus 2011-2012
Yvonne Mafunga
Itgs scheme 2011-2012
Itgs scheme 2011-2012
Yvonne Mafunga
Rop clasificación pedro mattar
Rop clasificación pedro mattar
Edwin Martinez
National Literature in a Multilingual Nation. Sujit chandak pre ph d presenta...
National Literature in a Multilingual Nation. Sujit chandak pre ph d presenta...
Sujit Chandak
Staff study talk/ on search engine & internet in 2008
Staff study talk/ on search engine & internet in 2008
Sujit Chandak
Empfohlen
E resources
E resources
Sujit Chandak
Ldv tour
Ldv tour
latterdayvillage
Ing. industrial tec. de culiacan
Ing. industrial tec. de culiacan
TecnologicoCuliacan
Ibitgs syllabus 2011-2012
Ibitgs syllabus 2011-2012
Yvonne Mafunga
Itgs scheme 2011-2012
Itgs scheme 2011-2012
Yvonne Mafunga
Rop clasificación pedro mattar
Rop clasificación pedro mattar
Edwin Martinez
National Literature in a Multilingual Nation. Sujit chandak pre ph d presenta...
National Literature in a Multilingual Nation. Sujit chandak pre ph d presenta...
Sujit Chandak
Staff study talk/ on search engine & internet in 2008
Staff study talk/ on search engine & internet in 2008
Sujit Chandak
OOD Principles and Patterns
OOD Principles and Patterns
Nguyen Tung
perhitungan bekisting
perhitungan bekisting
rudi rudi aprilia
Raj Gaurav Singh Resume WS
Raj Gaurav Singh Resume WS
Gaurav Singh
Architecture Patterns - Open Discussion
Architecture Patterns - Open Discussion
Nguyen Tung
SaaS Introduction-May2014
SaaS Introduction-May2014
Nguyen Tung
Microservice Architecture
Microservice Architecture
Nguyen Tung
Presentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreter
naman860154
Google AI Hackathon: LLM based Evaluator for RAG
Google AI Hackathon: LLM based Evaluator for RAG
Sujit Pal
🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘
RTylerCroy
[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf
hans926745
#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
BookNet Canada
Handwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed texts
Maria Levchenko
08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking Men
Delhi Call girls
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
Delhi Call girls
Data Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt Robison
Anna Loughnan Colquhoun
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Drew Madelung
The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024
Rafal Los
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
Pooja Nehwal
Injustice - Developers Among Us (SciFiDevCon 2024)
Injustice - Developers Among Us (SciFiDevCon 2024)
Allon Mureinik
A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024
Results
A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)
Gabriella Davis
My Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 Presentation
Ridwan Fadjar
Weitere ähnliche Inhalte
Andere mochten auch
OOD Principles and Patterns
OOD Principles and Patterns
Nguyen Tung
perhitungan bekisting
perhitungan bekisting
rudi rudi aprilia
Raj Gaurav Singh Resume WS
Raj Gaurav Singh Resume WS
Gaurav Singh
Architecture Patterns - Open Discussion
Architecture Patterns - Open Discussion
Nguyen Tung
SaaS Introduction-May2014
SaaS Introduction-May2014
Nguyen Tung
Microservice Architecture
Microservice Architecture
Nguyen Tung
Andere mochten auch
(6)
OOD Principles and Patterns
OOD Principles and Patterns
perhitungan bekisting
perhitungan bekisting
Raj Gaurav Singh Resume WS
Raj Gaurav Singh Resume WS
Architecture Patterns - Open Discussion
Architecture Patterns - Open Discussion
SaaS Introduction-May2014
SaaS Introduction-May2014
Microservice Architecture
Microservice Architecture
Kürzlich hochgeladen
Presentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreter
naman860154
Google AI Hackathon: LLM based Evaluator for RAG
Google AI Hackathon: LLM based Evaluator for RAG
Sujit Pal
🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘
RTylerCroy
[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf
hans926745
#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
BookNet Canada
Handwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed texts
Maria Levchenko
08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking Men
Delhi Call girls
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
Delhi Call girls
Data Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt Robison
Anna Loughnan Colquhoun
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Drew Madelung
The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024
Rafal Los
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
Pooja Nehwal
Injustice - Developers Among Us (SciFiDevCon 2024)
Injustice - Developers Among Us (SciFiDevCon 2024)
Allon Mureinik
A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024
Results
A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)
Gabriella Davis
My Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 Presentation
Ridwan Fadjar
Understanding the Laravel MVC Architecture
Understanding the Laravel MVC Architecture
Pixlogix Infotech
SQL Database Design For Developers at php[tek] 2024
SQL Database Design For Developers at php[tek] 2024
Scott Keck-Warren
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
Safe Software
Histor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slide
vu2urc
Kürzlich hochgeladen
(20)
Presentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreter
Google AI Hackathon: LLM based Evaluator for RAG
Google AI Hackathon: LLM based Evaluator for RAG
🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘
[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf
#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
Handwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed texts
08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
Data Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt Robison
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
Injustice - Developers Among Us (SciFiDevCon 2024)
Injustice - Developers Among Us (SciFiDevCon 2024)
A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024
A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)
My Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 Presentation
Understanding the Laravel MVC Architecture
Understanding the Laravel MVC Architecture
SQL Database Design For Developers at php[tek] 2024
SQL Database Design For Developers at php[tek] 2024
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
Histor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slide
WordCamp St. Louis 2011 WordPress Security Presentation
1.
WORDPRESS SECURITY
Tips and Tricks to Secure Your Site
2.
A LITTLE ABOUT ANDY
CROFFORD CONTACT INFO Email: acrofford@gmail.com Twitter: @andycrofford WEBSITES AppTa.co - http://appta.co TechKing - http://testking.com/techking Mobile Orchard - http://mobileorchard.com ThemeFuse - http://theme fuse.com
3.
HTTP://J.MP/WORDCAMPSTL Slides available
for download
4.
#WCSTLSEC #hashtag
5.
WHY IS WORDPRESS SECURITY
IMPORTANT?
6.
YOU VALUE YOUR
SITE AND ITS CONTENTS
7.
WHY IS WORDPRESS
INSECURE?
8.
IT IS OPEN
SOURCE AND ANYONE HAS ACCESS TO THE CODE
9.
PLUGINS CAN LEAVE
THE DOOR OPEN
10.
SO WHAT CAN
YOU DO?
11.
1. KEEP WORDPRESS
UP TO DATE
12.
2. UPDATE PLUGINS
REGULARLY
13.
3. DO NOT
USE ADMIN AS YOUR USERNAME
14.
4. USE A
SECURE PASSWORD
15.
CHECK YOUR PASSWORD
STRENGTH AT: HTTP://WWW.PASSWORDMETER.COM
16.
5. KEEP YOUR
THEME UPDATED
17.
6. RESTRICT ACCESS
TO THE ADMIN LOGIN PAGE BY IP ADDRESS
18.
.HTACCESS AuthUserFile /dev/null AuthGroupFile /dev/null AuthName
"Access Control" AuthType Basic order deny,allow deny from all #IP address to whitelist allow from xxx.xxx.xxx.xxx Replace xxx.xxx.xxx.xxx with your IP address.
19.
.HTACCESS AuthUserFile /dev/null AuthGroupFile /dev/null AuthName
"Access Control" AuthType Basic order deny,allow deny from all #IP address to whitelist allow from xxx.xxx.xxx.* Replace xxx.xxx.xxx.* with your IP address.
20.
7. MOVE YOUR
WP- CONFIG.PHP FILE
21.
8. CHANGE THE
WORDPRESS TABLE PREFIX
22.
UPDATE $TABLE_PREFIX
23.
9. USE SECRET
KEYS
24.
SECRET KEY GENERATOR https://api.wordpress.org/secret-key/1.1/salt
25.
SECURE KEYS
26.
10. HIDE LOGIN
ERROR MESSAGES
27.
HIDE LOGIN ERRORS add_filter('login_errors',
create_function('$a', "return null;"));
28.
11. BACKUP, BACKUP,
BACKUP
29.
UTILIZE SECURITY
PLUGINS
30.
1. LOGIN LOCK
DOWN http://j.mp/wp-lockdown
31.
2. STEALTH LOGIN
http://j.mp/wp-stealth
32.
3. ADMIN SSL http://j.mp/wp-adminssl
33.
4. BACKWPUP http://j.mp/backwpup
34.
PAID BACKUP SERVICES •
VaultPress - http://www.vaultpress.com • Backup Buddy - http://j.mp/wp-backup buddy
35.
QUESTIONS?
36.
GET 6 MONTHS
FREE SHARED HOSTING FROM SITE5 (WWW.SITE5.COM) WORDCAMP
Jetzt herunterladen