WordPress Security Tips
Change your passwords regularlySet a date every month and change your WordPress admin password (Go to ‘Users‘ and click on ‘Your Profile‘ then scroll down to the bottom. Find the ‘New Password’ fields and add a new password.), your hosting control panel password, and your hosting FTP password. Never use any words or terms from the dictionary, always use a string of letters and numbers, uppercase and lowercase. A good place to start is strongpasswordgenerator.com if you need help choosing a password.
More tips for choosing a password:
- Avoid words found in the dictionary
- Avoid familiar items (names, titles, phone numbers, etc. that you might think are easy to remember – those are usually the easiest ones to crack!)
- Use a combination of letters, numbers, and special characters
- Use more than 7 characters
Schedule Monthly Maintenance and Keep a LogSet a date on your calendar to maintain your website and hosting account once a month. Also, keep a log of all the changes you make, updated passwords, etc. so you can always refer back to it if necessary.
Control Panel BackupsFind the ‘Backups’ icon (in the ‘Files’ section). Backup your database(s) and files on the server. If you do not perform regular backups and your site does in fact become compromised, you will be sorry! Seriously, you will not have a backup to restore. 1. Scroll down to ‘Partial Backups’ and click on the ‘Home Directory’ button to ‘Download a Home Directory Backup’. This will save a .zip file to your computer (and it may take a while, so grab a cup o’joe). 2. Under ‘Partial Backups’, select the database used for your site (in some cases, this might be more than one) and click on the database link to ‘Download a MySQL Database Backup’ If you ever need to restore your files or database, you can go to the same ‘Backups’ area and ‘Restore’ using the files you’ve downloaded.
WordPress Updates – PluginsUpdate any Plugins that have available updates. You’ll notice a number in a circle next to the Plugins menu item, if there are any updates available. Click on the ‘Plugins’ button and then the ‘Update Available’ link at the top. This will show you all the plugins that need to be updated. If you are comfortable updating the plugins listed (for instance, you’ve updated them before, and you’re sure that none of them will break with the update), check the box at the top of the list to select all of them. Then select ‘Update’ from the dropdown menu at the top, and click the ‘Apply’ button.
NOTE: During Plugin Updates, your website will automatically go into Maintenance Mode (temporarily) so visitors see a message on your website that says you’re performing website maintenance, until the updates are completed. Tip: Install the ‘WP-Maintenance’ plugin if you want to control that message. You’ll be able to Activate Maintenance Mode and use any message you like. Another Tip: Install the ‘Visitor Maps & Who’s Online’ plugin to see how many visitors are on your website (live!) before you perform maintenance tasks.
WordPress Version UpdatesUpdate your version of WordPress whenever it’s available. You will see a message at the top of the admin when you login, if there is a new version available.
The following two tabs change content below.
Jane is the WordPress website designer and developer at JV Media Design, and owner / designer at Gravity Station. With nearly 14 years experience in website design, Jane's focus is in custom WordPress design and CSS. She also designs print materials such as business cards, one-sheets, brochures, and CD packaging. Besides web design, Jane also enjoys Sci-Fi (Doctor Who Rules!), keeping up with the latest findings in science, reading strange phenomenon and action/adventure books, making jewelry, and playing Lord of the Rings Monopoly with her 2 children.
Latest posts by jane (see all)
- Add Functionality to your WordPress Website with Plugins - November 29, 2012
- Project Management Tips – Using Basecamp - September 17, 2012
- Hosting providers: what to look for, what to avoid. - August 14, 2012
This free ebook is a quick read of 50 solid tips on how to ensure success while working with a web or graphic designer.Check it out >
Recommended Web Hosts
Wordpress exclusive hosting:
General and Wordpress hosting:
PCI Compliant Hosting:
Recommended Ecommerce Gateway
Stock Photo Source
We also like ...
A note about advertising on this blog: we personally select the advertisers that appear here because we have either used their products/services or feel they would be helpful to the readers of this blog.