Money Online Blueprint

WordPress Training » Module 5

How to Make Your Site Secure

In this module we teach you how to make your blog secure. Security is vitally important. Everyday, thousands of sites are being attacked by hackers and vandals. These people target blogs particularly because typically, they have weak security. Most of the time, they hack your site for fun and rag about what hey have done to their victim on hack forums. Other hackers are more malicious and may install malware on your site so that your site infects the computers of your visitors.

It is your responsibility to make your blog secure, and this module will empower you to do that.

5.1 Backups

In this video we show you how to manually backup your website. We also introduce you to a free, powerful plugin that will automate the back up your site. It is very important that you backup your site on a regular basis.

5.2 Computer Security

In this video we talk about the importance of securing the computer you work on against virus & malware. If your computer is infected and you work on your site, you can infect the server it is hosted on and your site could receive warnings telling people not to open the site. That could stop any ongoing income you might have built up.

5.3 Secure WordPress Installation

In this video we show you how to set up a secure WordPress installation. You should make specific alterations to various settings to ensure that your site is protected against hackers that take advantage of default settings.

5.4 How to Remove the User ID

WordPress by default does not secure the admin user ID. This is a security vulnerability, and hackers take advantage of that. You should definitely carry out the steps in this video that show you how to remove the ID so hackers can’t find it.

Resources

How to Remove WP UserID Reference (TXT)

5.5 How To Remove The User ID – Alternative Method

This video covers an alternative way to secure the admin username. We show you how you can edit the theme and also recommend a plugin if you are concerned about editing code in the theme.

Resources

 How To Remove The User ID – Code Snippets (TXT)

5.6 Changing the Database Prefix – Method 1

Hackers love to hack websites databases. It is simple to do unless you change the default prefix. In this video, we show you how to change the Database prefix to secure the database against attack.

5.7 Changing the Database Prefix – Method 2

This video is method 2 showing you an alternative way to change the database prefix to secure your sites database against hacker attack.

Resources

Changing the Database Prefix – Method 2 Reference (TXT)

5.8 How to Change the WordPress Security Keys

If you think your site has been hacked, you will need to change the sites security keys (also known as Salts). This video shows you how to do that.

5.9 How to Secure Your WP-Config.php File

The WP-Config.php file is one of the most important files on your site. It is also one of the most vulnerable files to be attacked by hackers. It is so important that you secure this file. In this video we show you how to do that.

5.10 How to Customize the Login Error Messages

In this video we show you how to change the default login error messages in WordPress. We show you how to do this using the plugin we recommended in video 5 of this module.

Resources

This text document is for your reference and has been mentioned in the above video.
How to Customize the Login Error Messages Reference (TXT)

5.11 Prevent Brute Force Attacks – Method 1

Brute Force attacks are a common way hackers try to hack your site. In this video we show you how to prevent a successful Brute Force attack. This is method 1.

Resources

This text document is for your reference and has been mentioned in the above video.
How to Prevent Brute Force Attacks – Method 1 Reference (TXT)

5.12 Prevent Brute Force Attacks – Method 2

This video is an alternative method to prevent a successful Brute Force attack on your site. This is the simplest way to secure your site against a Brute Force attack as it uses a simple to use, free plugin which we show you how to set up.

5.13 Prevent Brute Force Attacks – Method 3

This video shows you a third way to protect your site against Brute Force attack. This method changes the login URL. We show you how to do this by using a simple free plugin. We also show you how to add additional security by adding reCaptcha to the new login page. You can do this with a second plugin in this method. We show you the set up process in this video.

5.14 Remove the WordPress Version Numbers

By default, WordPress lists the version number on your site. If you don’t update your version number, WordPress list what the older versions vulnerabilities are. Hackers can exploit this and hack your site. In this video we show you how to hide your sites WordPress version number so that hackers can’t exploit this vulnerability.

Resources

This text document is for your reference and has been mentioned in the above video.
How to Remove The WordPress Version Numbers Reference (TXT)

5.15 How to Know if Your Site Has Been Hacked

In this video we show you how to find out if your site has been hacked.

5.16 Hacked Site Cleanup

If your site has been hacked, it is a nightmare to fix. You should implement all the advice and tips mentioned in this module. However, if your site has been hacked, there are some basic steps that you should go through to clean up the hack. This video covers those basic steps.

5.17 What to Do After a Hacked Site Cleanup

If your site has been hacked and you have cleaned it from the hack, you may need to notify Google if they detected that your site had been hacked. This video shows you what you need to do.