Requiring WordPress admins to log in through SSL (Secure Sockets Layer) helps prevent hackers from stealing passwords. But what exactly is SSL, and how do you force it for logins? Until 1995, data was sent across the internet in plain text. If someone ordered a product with their credit card, the account number and all…
Category: Web Security
How to Generate and Manage Strong Passwords
You’ve probably read a lot of advice on everything you need to do to have a secure password. Some common password recommendations include: It has to be at least 12 characters long. It should use uppercase letters, lowercase letters, numbers, and symbols. It’s not a password you’ve used before or elsewhere. Don’t use dictionary words…
Protect Your WordPress Website From Brute Force Attacks
In the classic movie WarGames, the main character programs his computer to guess the passwords of other computers randomly through his modem. This rather crude method of guessing passwords is called a brute force attack and is not uncommon for today’s WordPress sites. While an inelegant and old-fashioned way to attempt to breach other computers,…
Using Security Through Obscurity for Extra WordPress Hardening
Security through obscurity is a process of securing a system by deliberately hiding or concealing information about it. While this alone is not a reliable or sustainable method for securing your website, it can help make your site more difficult for hackers to attack and less of a target. In this post, we will look…