Ripefruit

  • About Us
    • About Us
      • Acceptable Use Policy
      • Privacy Policy
      • Terms & Conditions
    • Contact Ripefruit
      • Account Set-up
    • Partners
    • Site Map
  • What We Do!
    • Design
      • Web Design
      • Portfolio
      • In Progress – June 2022
    • Domain Names
      • New For Sale
      • PreRegistered For Sale
    • Hosting Services
    • Payment Gateway
    • Publishing
    • Software
    • Virtual Services
  • Digital
    • Ripefruit
      • All Digital Products
      • City Digital Products
      • Automotive Digital Products
      • Advertising
    • Partners
    • Not For Profit
  • Clients
    • Billing
    • Client Login
    • Resources
      • Friends
      • Site Map
      • WordPress
      • Service Status
    • Support
  • IT Talk
    • Domain Names
      • Domain Names For Sale
    • Hosting
    • Internet
    • Search
    • Services
    • Software
    • Technical
      • Technical Support
  • Contact Us
    • Contact Us
      • Account Set-up
    • Site Map

Best WordPress Security Fix

How we locked down our WordPress web sites, but in one move drastically improved server performance.

Keeping in mind that the most common attack against WordPress is brute force passwords, then why not stop it in it’s tracks by blocking access to wp-admin.

By blocking all access to WordPress Admin except to known IP Addresses, it stops the attacks before they start, but also improves server performance because the server is not having to process millions of attacks.

  • How To Protect WordPress Admin

Great For

  • Small business web sites
  • Less than 10 admin users
  • Most web sites

Not For

  • Forums
  • Intranets
  • Any site that has multiple admin users

How They Attack

The most common attack against the WordPress user is brute forcing the password of an account to gain access to the back-end of the WordPress system.

Other ways a password can be compromised include sniffing the password in clear text over a HTTP login session or even getting the credentials from a key logger on the workstation of the WordPress administrator.

Accounts with administrator level access are the most sought after due to the amount of mischief an admin user can get up to; adding PHP command shells or malicious javascript directly through admin interface are common examples.

Sources

  • hackertarget.com
  • Admin Protect Fix

Also See..


  • How important is website security?
  • The BEST WordPress Security Plugin of all time
  • WordPress Admin Protection
  • iThemes WordPress Security Webinar – Free
  • Hacked WordPress | What Next?

Recent Posts

  • Adobe Fireworks CS5 Internal Error – FIXED
  • Mailing List Software
  • Optus Mail Block Review

About Brian King

Managing director and senior editor at Ripefruit Media




RIPEFRUIT

PO Box 12728, Franklin Street,
Melbourne VIC, Australia. 8006

  • Contact Us
  • IT Talk
  • Publications
  • Site Map
  • Web Design
  • WordPress




Latest Articles

  • Adobe Fireworks CS5 Internal Error – FIXED
  • Mailing List Software
  • Optus Mail Block Review
  • Good & Bad Affiliate Advertisers’

Tip Of The Day

Always choose

RIPE FRUIT

It tastes the sweetest..

RIPEFRUIT MEDIA

  • Web Design Team
  • Facebook
  • Twitter
  • IT Talk
  • Contact
  • About Us
  • What We Do!
  • Digital
  • Clients
  • IT Talk
  • Contact Us

Copyright © 2022 · Ripefruit | Billing | Support