Gospel. Culture. Technology. Music.

Tag: Hackers


Security Mashup: Four Steps to Secure WordPress

After working through a number of WordPress sites over the years and either preventing hack attempts or intervening in cleaning up hacked sites, I’ve “engineered” a free way to keep your site secure with the use of these plugins in conjunction:

  1. iQ Block Country: This plugin will prevent certain countries that you set from accessing either the front-end of your site, or (in the cases I use it for almost exclusively) the back-end. For the purposes of the sites I manage, I block all except the United States on the back-end and leave the front-end open to all.
  2. Jetpack: this is a great plugin to utilize anyway just for stats collection, image/CDN offloading, but included within this plugin is the ability to turn on brute force login protection. Another very helpful prevent if these other tools don’t catch something.
  3. WordFence: this free tool (that actually does have a subscription service for even better protection) is a web application firewall for use directly within WordPress. One of the big things it prevents are brute force login attacks, XSS attacks and SQL injection attacks, amongst others. Now, a web app firewall (like ModSecurity or some other hardware appliance like a Barricuda or Cisco firewall) in front of the application itself would work even better at preventing attacks before they even got to your WordPress site (if setup correctly), but can be quite advanced to install and configure. Regardless, this plugin is a great way to keep those kinds of attacks at bay.
  4. Invisible reCaptcha: this utilizes the newer version 3 of Google’s reCaptcha to prevent automated bots from either spamming the comment sections of your posts or pages or from brute force attempts to login to your site as admin.

None of these methods are fool proof from attacks getting through some other threat vector, but I’ve found this to catch quite a bit of junk on all the sites I’ve set them up on.

And one last thing: make sure and secure your site with SSL?!? 🙂

Latest on ClimateGate

Found on DrudgeReport:

UK: Pretending the climate email leak isn’t a crisis won’t make it go away…
US: Impression left by emails is that global warming game has been rigged from start…
AUSTRALIA: Five MPs lead the way by resigning in disgust over carbon tax…
NEW ZEALAND: Climate Science Coalition caught lying about temp trends…
RUSSIA: Что скрывают ученые о глобальном потеплении?…
…ONWARD COPENHAGEN!

The Global Management of our Planet

Blog from the Herald Sun in Australia:

“Sure, this talk of the warmists at Copenhagen planning a new ‘world government’ is crazy. I just wish the warmists wouldn’t talk of it themselves. Take the new and first president of the European Union, Herman Van Rompuy:

The Climate Conference in Copenhagen is another step forward towards the ‘global management of our planet…'”

Powered by WordPress & Theme by Anders Norén