• Website Home
  • About
  • Services
  • Portfolio
    • Recent
    • Archives
  • Shop
    • Catalog
    • Order

ASK Design Blog

Designer | Artist | Teacher

  •  
    • Blog Home
    • Web Design
    • Graphic Design
    • Art
      • Licensed Art
    • Links
    • Calendar
    • Contact

    What Should I Do to Protect My Site from Hackers?

    October 5, 2020 by ProfK Leave a Comment

    WordPress is the most popular content-management system in the world. For that reason alone, it is vulnerable to hackers who delight in finding large pools of potentially insecure websites. Cleaning up a hacked site is not fun or easy. So, it’s important to take some simple measures to protect your site.

    My Recommendations

    1. Choose a reliable webhost that ensures a safe platform for your site.
    2. All user accounts should use strong passwords: at least 12 characters, including a number and a special character. Password managers can generate passwords for you. Check out Last Pass, 1Password, and Dashlane.
      password-generator
    3. Passwords should be changed at least twice per year.
    4. Never use the name “admin” for a user account. Hackers are well-aware of this default username. Usernames should be obscure and difficult to remember.
    5. Protect the login page. You can enhance the security of the login page in the following ways:
      (a) Limit the number of login attempts.
      (b) Add a second layer to the login process (reCAPTCHA or 2-factor authentication).
      (c) Change the login page URL address.
      login-recapcha
    6. Backup your site on a regular basis. Both the database and files (images, plugins, WordPress, etc.) should be backed up at least once per month (more frequently if the site content changes often). You can backup the site manually in your webhost account or use a backup plugin. Check out my blog post about backup options.
      BUB-create-backup

    7. Keep all themes, plugins and WordPress installations current. Outdated software is one of the causes of hacked WordPress sites.

      Each new version of WordPress fixes bugs and security vulnerabilities. If you’re not updating WordPress, then you are intentionally leaving your site vulnerable.
      ~ WPBeginner

    8. Never use illegal downloads of themes and plugins, because they could contain malicious code (virus, trojan horse, hacker code, etc.)
    9. Always check ratings and reviews for themes and plugins before installing them.
      Akismet-ratings-reviews

    10. Install an SSL certificate. This certificate makes the website more secure, providing encrypted traffic and domain authentication. The “s” in the “HTTPS” part of the URL address indicates that SSL has been configured. Double-click on the URL address to reveal the HTTPS. With SSL, a padlock appears to the left of the URL address. When the address is merely “HTTP”, there will be no padlock and a warning may appear about the site not being secure.
    SSL-lock
    SSL-https-lock

    You obtain, install, and activate SSL in your webhost account. Many hosts provide the certificate for free, others charge an annual fee.

    1. Install a security plugin, like Wordfence or Sucuri, to monitor site activity and help block unwanted visitors. Watch for security notifications about themes and plugins.
    2. Use a SPAM filter, like Akismet or Antispam Bee.
    3. Restrict file uploads. If your site allows users to upload images or text files (via a plugin), be very cautious. You can restrict the types of files allowed (no PHP files, for example) as well as their size.
    4. Install Google Analytics and Search Console. These tools provide a lot of useful information about your site’s traffic and performance. For example, you’ll be able to spot SPAM in the keywords area and receive security alerts.

    Protecting your site is not a one and done effort. If you take the time to monitor things on a regular basis, you’ll sleep better knowing that your site is safe. Reach out to me if you have any questions or concerns!

    Related Posts

    Manually Clone a WordPress Site in 5 Steps
    Site Migration From WordPress.com to WordPress.org
    Why and How You Create WordPress Child Themes
    How to Choose a WordPress Theme

    Filed Under: Software Tips, WordPress Tagged With: Google Analytics, login page, passwords, Search Console, site backup, SPAM filter, SSL certificate, usernames, website security

    Reader Interactions

    Leave a Reply

    Your email address will not be published. Required fields are marked *

    Primary Sidebar

    Subscribe to Mailing List

    Sign up to get periodic updates on Anne's design and art adventures, and receive useful info. via her blog.
    * = required field

    We never share our email list with anyone.

    Looking for Something on this Site?

    Search the Web

    New Book Published!

    Kornegger book: Inside the Rainbow

    Art and design for book cover and interior

    Inside the Rainbow: Soul Connection in Nature, by Peggy Kornegger

    BUY THE BOOK!

    Peggy and I have completed our 3rd book together! This one is about soul connection in nature. Peggy is the writer, I'm the designer and artist. I think it's pretty darn special and hope you agree 🙂. Printed book and eBook are both available on Amazon.

     
    kornegger loseyourmind front cover
    Several of my paintings are in this book (including the cover)
    BUY THE BOOK!
     
    Check out my blog post about designing books: Self-Publishing Adventures

    Testimonials

    I received the notecards on Friday and it was on my to do list today to email you my deep appreciation for them. They are amazing and I am so glad to have them to share. I am sure I will order more in the future. You are such a gifted artist and I thank you for sharing in a way others can use the art.

    — Shari Spokes

    Your new pastel "Lettuce Lake” is really beautiful. Very, very nice.

    — Tony from Belmont, MA

    My dear sweet sister. I can’t tell you how much I love your pictures. I so much wanted something and was so sorry that I couldn’t pick something out at your sale. On the other hand, I so much wanted something that you had chosen for me. Its been on my mind and suddenly, your beautiful pictures arrived. They are beyond beautiful and I cried when I saw them. Sending you love and my bestness.

    — Marti from Reno, NV

    Affiliate Partners

    We receive compensation when you purchase a service or product via the links on this blog.

    Web Hosting

    StudioPress

    Photo, Video & Design Software

    Copyright

    © 2000-2022 Anne S. Katzeff. All rights reserved. Unless noted, all artwork and text are copyrighted by the artist. Images may not be reproduced, manipulated, or used in any way without Anne’s written permission.

    Categories

    Graphic Design

    • AIGA
    • Design Is History
    • Janice Moore
    • Mass. Contractors

    Web Design

    • 978 Grid System
    • A List Apart
    • Adobe Color Tools (formerly Kuler)
    • AWWWards
    • Smashing Magazine
    • underthesite
    • www schools

    Tech-Computer

    • Adobe TV
    • Orramac
    • Teknoziz

    Comments

    In an effort to reduce spam, comments are restricted. Please email Anne if you have a comment or question that you are unable to post. Thanks for understanding.


    Archives

    Typography

    • 1001fonts
    • Adobe Type
    • Adobe Web Type
    • Bitstream
    • Dafont.com
    • Emigre
    • Font converter (free)
    • Font Spring
    • Font Squirrel
    • Google Fonts
    • I Love Typography
    • identifont
    • Typeinspire
    • Typewolf
    • Typoretum

    Photography

    • Creative Commons

    Footer

    Subscribe to Mailing List

    Sign up to get periodic updates on Anne's design and art adventures, and receive useful info. via her blog.
    * = required field

    We never share our email list with anyone.

    Contact

    Website
    Email

    Subscribe to RSS Feed

  •  ASK Design Blog
  • Connect and Share

  •  
  • Copyright © 2022 · Optimal Theme · Built on the WordPress Genesis Framework· Customization and design by ASK Design