16 Excellent WordPress Security Plugins To Secure Your Blog
Lots of bloggers and website administrators fail to recognize the importance of securing their site. I couldn’t imagine running a site that brought in some decent money a month and not taking a few minutes to secure it. From attacks like the hidden iFrame injection (Trojan virus) or even someone hacking the password and attempting to blackmail you, the work needed to fix these problems is much greater than the effort it takes to make sure it doesn’t happen to you.
Google takes it very seriously if your site is spreading malware content (which you will more than likely have no clue your site is even doing it) and will post an advisory to such sites in the search engine results. Visitors will see the message “This site may harm your computer” when trying to access your website/blog and by that time the damage is done. The cascading effect on the search engine rankings, resulting in low traffic and money. Advertisers may not show interest on your website.
Use the below link to see what Google thinks about your website (input your blog name instead of http://artfans.info).
TAC (Theme Authenticity Checker)
TAC stands for Theme Authenticity Checker. Currently, TAC searches the source files of every installed theme for signs of malicious code. If such code is found, TAC displays the path to the theme file, the line number, and a small snippet of the suspect code. As of v1.3 TAC also searches for and displays static links.
Chap Secure Login
Whenever you try to login into your website, you can use this plugin to trasmit your password encrypted. The encryption process is done by the Chap protocol; this is particularly useful when you can’t use ssl or other kinds of secure protocols. By activating the ChapSecureLogin plugin, the only information transmitted unencrypted is the username; password is hided with a random number (nonce) generated by the session – and opportunely transformed by the md5 algorithm.
This plugin protects registration, login and comment forms from spambots by adding two extra fields hidden by CSS. This approach gave me 100% anti-spam protection on one of my sites.
NoSpamNX automaticly adds additional formfields to your comment form, invisible to the users. If a spambot fills these fields blindly (which 99.9% of all spambots do), the comment will not be saved. You can decide if you want to block these spambots, mark them as spam or put them in moderation queue. Furthermore, you can put common spam-phrases on a blacklist.
Semisecure Login Reimagined
This plugin allows you to create custom URLs for logging in, logging out, administration and registering for your WordPress blog. Instead of advertising your login url on your homepage, you can create a url of your choice that can be easier to remember than wp-login.php, for example you could set your login url to http://www.myblog.com/login for an easy way to login to your website.
WordPress Database Backup
WordPress File Monitor
WordPress Firewall Plugin
This WordPress plugin investigates web requests with simple WordPress-specific heuristics to identify and stop most obvious attacks. There exist a few powerful generic modules that do this; but they’re not always installed on web servers, and difficult to configure.
It intelligently whitelists and blacklists pathological-looking phrases based on which field they appear within in a page request (unknown/numeric parameters vs. known post bodies, comment bodies, etc.)
WordPress Guard Plugin
Allows you to optimize database, repair database, backup database, restore database, delete backup database , drop/empty tables and run selected queries. Supports automatic scheduling of backing up and optimizing of database.
wp-dephorm protects your users from the prying eyes of phorm. This is achieved by setting a cookie to opt out of the phorm information mining. Your blog viewers will not have their information stored and used in marketing campaigns whilst viewing your site.
WP Security Scan
Scans your WordPress installation for security vulnerabilities and suggests corrective actions.
-WordPress admin protection/security
-removes WP Generator META tag from core code
WP-SpamFree WordPress Spam Plugin – Powerful Anti-Spam Protection!
An extremely powerful anti-spam plugin for WordPress that eliminates comment spam, including trackback and pingback spam. It works invisibly without CAPTCHA’s, or other inconvenience to site visitors. The plugin includes spam-free contact form feature as well.
Original post by Bariski
LEAVE THE FIRST COMMENT
AND MAKE ME REALLY HAPPY!
- Shawn Rubel : Thanks guys, easy to follow tips that will come in handy for... more
- Shawn Rubel : Derek, if you've got the time, it would be nice to see a ... more
- Shawn Rubel : Great stuff, I'm always trying to follow these aspects whene... more
- Dani : Trimakasih Pak.. Izin unduh ya... more
- Dani : Motif-motif batiknya bagus sekali Pak. Mksh sudah mempostin... more