Securing WordPress is a very important topic. Now that WordPress powers 23% of the internet nefarious individuals actively seeking ways to hack your site.
Below are the slides and audio recording from my presentation. I have edited the slides to include two slides that were missing.
Summary of the WordPress Security Workshop
WordPress is a robustly secure platform on which to build your website, if you keep it current with WordPress, plugin, and theme updates. In this beginners session we’ll cover how hacking and malware work (Most attacks are automated, not personal), basic security tasks to ensure your site safety, and immediate actions steps to jump on if you are hacked.
All links are below in the links section.
Link to slide deck: http://www.slideshare.net/ChristopherHarris/word-press-security-49917139
Listen to the Workshop
Links to Resources:
- Good Hosting – WP Engine
- Force Strong Passwords
- Limit Login Attempts
- iThemes Security
- WP Updated Notifier
- Password Article
- Advanced Tips
- Clean Talk – suggested by Tony for blocking spam user signup
- Electronic Freedom Foundation
- 1 Password
During our discussion there was many comments about adding two-factor authentication to WordPress. At this time, I do not have a specific plugin recommendation, but there are many available in the repository: https://wordpress.org/plugins/tags/two-factor-authentication
Please share your WordPress security tips in the comments below.