How To Make WordPress Safe Without Any Plugins

Posted on by

I don’t know about you, but when I was first securing my WordPress blog, and I was researching to see what others were doing to keep their blog safe, I found so much information that I was completely confused. And some of the information was in fact over the top or supersticious. People told me to rename this file, rename this folder and install these ten plugins. It seemed to be quite a bit of work and effort.

An easy way to keep WordPress safe is to use a few built-in tools. First of all, don’t allow people to list the files in your folders, run a web host security scan and automatically backup your entire web hosting account.

By default, the latest version of WordPress is pretty darn secure. Anything that might have been added to any WordPress security plugins has been considered by the development team of WordPress. In the past, WordPress did have holes but now most of them are filled up.

The first thing you should do is check your various folders. For example, your WordPress blog has folders, such as WP-Content, WP-Admin, WP-Includes. So if you went to your site /WP-Content in a web browser, what shows up? Does it list all the folders and files in that folder? And if so, all you have to do is upload a blank file named Index.html into that folder to make sure that no one can view it.

What if you go to WP-Content/plugins, can you view that folder? If so, upload that blank Index.html file into that folder as well so people can’t view what plugins you have. Because even if your current version of WordPress is up to date, if you are using an old plugin or a plugin with a security hole, someone can use that to get access.

Next, most web hosts in the cPanel area allow you to run a security scan and see if anyone has injected any bad code that may be used to grant an authorized access, send emails, or something like that.

Just run that web host security scan and see what comes up, and if anything comes up that looks out of the ordinary or you are not sure of, contact your web host and see what they think. And whether or not you find anything bad, automatically backup your whole account. In cPanel you can backup your entire web hosting account and save it to your hard drive so that even if something goes wrong at some point, at least you have a back up copy of everything that’s there.

Those are three very simple things you can do to keep WordPress safe without plugins. Put a blank Index.html file in your folders, run your web host security scan and backup your entire account.

I bet you want to backup your WordPress blog to have peace of mind and be able to restore it anywhere, anytime you want, and you can now here

 

Related Posts

What Could Happen If Someone Gains Entry Into Your WordPress Blog?

Posted on by

I don’t want to scare you but I want you to be aware of the reasons why you should backup your WordPress blog, and even better protect it against someone getting access to that site.

Someone getting into your WordPress blog can delete anything that is there, can replace it with something else, redirect it and in fact access every single file in that WordPress site, sometimes other websites on the same server. That is why it’s really important to keep people out and backup your site just in case something goes wrong.

Something that is very easy to do if someone gets into your WordPress blog is delete it. There is in fact a plugin called Bulk Delete that can delete all plugins within that blog, kind of a scary thought. But if you keep your blog backed up, then no one can really hurt you, even if you just use something once per month or once per week.

Let’s say in the worst case you back up your site on a Monday, and someone gets into your site and deletes it on a Friday, at least you have only lost the past five days of work. You haven’t lost the past two years, if not more.

What is even scarier is that someone who gets into your WordPress site might replace it with something else. Many terrorists, religious and activist groups have in fact used hackers to gain entrance to weakly protected WordPress sites and replace it with their own images and content.

What also might happen is someone might set up your site to redirect to a new site, or display some ads. And even worse, if your site gets flagged as an attack site, as a problem site other people will not be able to see it.

That is something that might happen, is if you load your WordPress site and it seems to be redirecting to some far off place on the internet, it might have been hacked and you should investigate that.

One of the scariest things about someone getting into your WordPress site is that they will probably be able to get access to all files in your site using the using the file manager plugin in WordPress. And even if you don’t have this file plugin installed, they can easily install it from the WordPress dashboard. And depending on how your server is configured, they might be able to see every single website and account on that server. Kind of a scary thought.

If someone gets into your WordPress blog, it’s not just about them changing content or redirecting to a new place, they now can see all your files, all your blogs, all your videos, all of your information. And all this is a reason for you to lock down WordPress.

Use a hard to guess password and be very careful about where you log into your blog from. And above all, backup your site, so just in case the worst happens you are still protected and you can still get your stuff back.

Backup your WordPress blog so you can get your stuff back later here


 

 

Related Posts

Alternative to Digi Traffic Accelerator

Posted on by

Pligg Submitter – Good Alternative to Digi Traffic Accelerator

I just come across an alternative auto backlink tool to Digi Traffic Accelerator (which require monthly fees). It’s called Pligg Submitter, which will submit your website to 1000s of Social Bookmarking (Pligg) sites automatically with One Time payment of $27 only, No more monthly fees.

Check out  Pligg Submitter here

Pligg Submitter will:

  • register you to thousands of Pligg Sites
  • submit your articles to these Pligg sites
  • verify the email for you
  • solve the captcha codes for you (you do need captcha service account)
  • post organic-looking comments for you for even more backlinks
  • rotate IP addresses for you so you don’t get nabbed by the ‘internet police’

…All on AUTOPILOT!

Watch the short video below to see how Pligg Submitter works

ToonChooi

PS: If you want to get a decent ranking on the search engines, you need quality backlinks for your websites,and Pligg Submitter can get you 1000s of backlink from Social Bookmarking (Pligg) sites automatically

PPS: And the best is, all future updates for Pligg Submitter will be free of charge

Download it now and try it risk free for 60 days

Related Posts