Your SlideShare is downloading. ×
0
WordPress Security - Kulpreet Singh
WordPress Security - Kulpreet Singh
WordPress Security - Kulpreet Singh
WordPress Security - Kulpreet Singh
WordPress Security - Kulpreet Singh
WordPress Security - Kulpreet Singh
WordPress Security - Kulpreet Singh
WordPress Security - Kulpreet Singh
WordPress Security - Kulpreet Singh
WordPress Security - Kulpreet Singh
WordPress Security - Kulpreet Singh
WordPress Security - Kulpreet Singh
WordPress Security - Kulpreet Singh
WordPress Security - Kulpreet Singh
WordPress Security - Kulpreet Singh
WordPress Security - Kulpreet Singh
Upcoming SlideShare
Loading in...5
×

Thanks for flagging this SlideShare!

Oops! An error has occurred.

×
Saving this for later? Get the SlideShare app to save on your phone or tablet. Read anywhere, anytime – even offline.
Text the download link to your phone
Standard text messaging rates apply

WordPress Security - Kulpreet Singh

1,628

Published on

Presentation on WordPress Security by Kulpreet Singh (www.kulpreetsingh.com) from WordPress Fraser Valley at Cascades Hotel & Convention Centre, Langley, BC on July 16, 2008 hosted by BlueFur hosting …

Presentation on WordPress Security by Kulpreet Singh (www.kulpreetsingh.com) from WordPress Fraser Valley at Cascades Hotel & Convention Centre, Langley, BC on July 16, 2008 hosted by BlueFur hosting (www.bluefur.com).

Published in: Technology, News & Politics
0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total Views
1,628
On Slideshare
0
From Embeds
0
Number of Embeds
0
Actions
Shares
0
Downloads
33
Comments
0
Likes
0
Embeds 0
No embeds

Report content
Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
No notes for slide

Transcript

  • 1. Safety First, Kids! flickr.com/photos/dwulff
  • 2. Kulpreet Singh
  • 3. Summary
    • Intro
    • Your Computer
    • WordPress Installation
    • WordPress Database
    • WP Folders
    • Admin Login
    • Themes
    • Forms, Logs & Code
    • Plugins
    • More Resources
  • 4. SECURITY: Believe the Hype
    • Be Proactive and Vigilant
    • Save Time
    • Save Money
    • Reduce Stress
    • Prevent Loss of Readership or Clients
    • Prevent Loss of Content
  • 5. SECURITY: DON'T Believe the Hype
    • Every application has security concerns
    • Open source
    • More Users =
      • More attempts to compromise security
      • More people working on solutions
      • More preventative tools to prevent security breach
  • 6. Your Computer
    • Scan for adware, spyware, virus, etc.
  • 7. WordPress Installation
    • Upgrade to 2.6!
    • Use “WP Automatic Upgrade” plugin
    • Don't share your version
    • Remove version from meta tags
    • [email_address]
  • 8. Database
    • Setup
      • Only use one-click if you can modify the database name
      • Use a custom name, not the default name
      • Use a custom prefix for tables
    • Passwords
    • Backup Regularly! – many plugins
  • 9. WP Folders
    • Plugins and other unprotected folders should have an index file or fix with htaccess
    • Delete unnecessary files like wp-install
    • Password protect wp-admin
    • Restrict access to wp-config
    • Change default secret key value in wp-config
  • 10. Admin Login
    • Don't use default “admin”
    • Improve password
  • 11. Themes
    • Check themes before installing
    • Ads? Links? Scripts?
  • 12. Forms
    • Secure Forms
    • Secure Contact Forms
    • Cforms
  • 13. Watch: Logs & Code
    • Watch usage stats
    • Watch login attempts
    • New scripts in your theme?
    • New code in your htaccess file?
    • New random jpgs in your uploaded images?
  • 14. Plugins
    • Disable and delete unused plugins
    • Check plugins before installing
    • Keep plugins updated (easier in 2.6)
  • 15. Security Plugins
    • Login LockDown
    • WP Security Scan*
    • Tripwire
    • WP Exploit Scanner
    • Akismet
    • Bad Behaviour
    • TTC WP Security
    • Postlogger
    • Phone Factor
  • 16. Further Reading
    • WordPress Security Whitepaper
      • blogsecurity.net
    • Site Link Analyzer
      • seochat.com
    • Did Your WordPress Get Hacked?
      • ocaoimh.ie
    • WP Security Prevention, Reaction and Scares
      • lorelle.wordpress.com
    • Fun and Games with WordPress Hacker
      • pajamadeen.com

×