12 Steps to take to help make your WordPress site more secure

WordPress security is a big deal.

Imagine this:

You’re up early because you’re excited about finally cranking out that project on your website that you’ve been so excited about.

You’ve got your coffee brewed and the aroma is filling the room; you’re super excited and ready to go.

You sit down at your computer, ready to get to work and open up your browser and type in your website’s login URL.

When the page comes up you’re floored because there is something else on your site that you most definitely did NOT put there.

You feel like someone punched you in the gut and all the air has left the room.

Your site has been hacked.

It sucks. I hear from website owners and they’re desperate to get their site cleaned up.

If they’d only have taken some precautionary steps they wouldn’t be having this problem.

It’s more prevalent than you may think.

Nothing on the internet is 100% secure.

There are big data failures that happen all the time. Just watch the news.

In between the stories on the Kardashians and the weather there just might be a story about how, once again, a big company or organization was compromised.

it’s safe to say that if it can happen to the biggest companies around, then it can happen to us as website owners.

But there are some things you can do to get your site locked up tight. Doesn’t mean that you’re impenetrable, but it does mean that you’re not going down without a fight and you can do a lot to make sure you’ve got yourself covered.

Keeping your WordPress site safe and secure really is a big deal. Here are a few things that I do on my sites to make sure that I keep them locked up tight.

Make a Backup Plan

Make sure you have a plan for backing up your site. I mentioned Backup Buddy in the plugins section so make sure you’ve got that set up and regularly taking backups!

Secure Your Site

Install and configure a security plugin like Wordfence, or iThemes Security. These plugins are easy to set up and will wonders for helping you secure your site!

Use a Secure Password

Pick a secure password. Secure passwords aren’t usually easy to remember, so you can start using password manager like LastPass, Roboform or KeePass. Don’t ever put it in Notepad or any other unsecure document.

Make a local backup

Make a backup copy of your entire website and save it to something like Google Drive, Dropbox, or on your local computer.

Plugins like BackupBuddy or UpdfraftPlus can do this for you.

Always Backup for Running Updates

Make sure you have a backup each time before doing major version update of WordPress core, your theme or plugins.

Disallow Unauthorized Access

Keep those who are testing your security fences away by disallowing unauthorized access. Check out this post on how to add an extra layer of security.

Do Not use “Admin” as your username

In addition to making sure you’ve got a secure password, make sure that you don’t use “admin” as your username. It’s probably the most commonly attempted username to be tried by hackers. Come up with something more unique.

Setup an anti-spam solution

Comment spam is a huge problem for WordPress site owners. Using an anti-spam tool like Akismet, or reCAPTCHA can go a long way in helping keep your site clean.

Keep your login page safe

Good usernames and passwords are a good start to protecting your login page, but I like to use a tool called Login Lockdown that will limit login attempts and provide a variety of other options to keep hackers out of your site.

Configure your domain to use CloudFlare

In addition to being a fantastic CDN (content delivery network) tool, CloudFlare adds a nice layer of security to your site.

Add additional protection to your login page

For those wanting an even greater level of security you can restrict access to your login page altogether.

Learn more about securing your login page here

Use an SSL certificate to secure your WordPress site

Browsers now alert users to unsecured sites that contain forms so make sure you’ve got an SSL certificate in place.

Learn more about setting an SSL here

Download the WordPress start-up checklist here to get everything you need to know about starting your own self-hosted WordPress site.

See Also:

Is ClickFunnels Safe? Read this First!


"Is ClickFunnels safe? ClickFunnels is making a lot of noise these days in the online business world and for good reason. Thousands of businesses of all kinds are using it to power their online business, and in the process, bringing in millions in revenue. And one of the things that’s made ClickFunnels so popular is […]"

Keep Reading...

The Quick and Dirty Guide to Launching Your Own Website


"Building your own website is an absolutely essential step all budding entrepreneurs, soloprenuers, bloggers, artists, etc. need to take to build their platform. But you knew that already. What you may not know is that you can do it quickly, relatively painlessly, and be up and running in no time at all. If you’re looking to get […]"

Keep Reading...

Why should I start a blog in 2021?


"There are several reasons to start a blog now. Despite reports you may have seen or heard about, blogging is not dead. In fact, it’s doing better than ever and it’s going to keep growing. Just like everything else, blogging has evolved, so what blogging was just a few years ago is a lot different […]"

Keep Reading...

Is it worth it to start a blog in 2021?


"Without a doubt it’s worth it to start a blog this year! Here’s an example: For the longest time people have been saying that newspapers are a dead and dying breed. But consuming news is as important as it’s ever been! So what have creators done? They’ve improvised, adapted and have overcome. Newspapers have shifted […]"

Keep Reading...

How to Choose a Domain Name


"You choose a domain name by thinking about what people will type into their browser when they want to visit your website. You also need to think about how easy it is to remember and spell, as well as whether or not there are any other websites with that exact same name. The first thing […]"

Keep Reading...

Can I start a blog for free?


"You can totally start a blog for free. All you need to start a blog for free is a little inspiration, a lot of perspiration and to sign up for one of the numerous free websites that will allow you to start a blog for free. You can check this post here for several options […]"

Keep Reading...

What Is A Value Ladder And Why Does It Matter?


"If your business is going to survive and thrive in 2021 then you need to make sure that your value ladder is dialed up and ready to go! But maybe you’re wondering – what is a value ladder? The definition of a value ladder is: the value ladder is a tool used in a business as […]"

Keep Reading...

Can I use ClickFunnels for clients?


"With the widespread adoption of the ClickFunnels platform by so many online businesses these days, a vibrant and thriving done-for-you service industry as grown up around it. Marketing agencies, web design & development companies, graphic designers and more are all building amazing sales funnels using ClickFunnels. If you’re a creative who’s looking to expand your […]"

Keep Reading...

How To Set Up And Configure Your MailChimp Plugin | How To Make A WordPress Blog Step-by-Step 2020


"Today, we’re going to talk about how to set up and configure your Mailchimp plugin in your new self-hosted WordPress site. The idea goes a little like this: You want to start building your email list. It’s probably the single most important marketing task you can do. Russell Brunson has talked about how vital his […]"

Keep Reading...

How To Promote Your Blog – Tested And Proven Strategies For Maximum Exposure


"Promoting your blog posts is an essential part of blogging that many bloggers overlook. So you’ve got your blog started and you’ve created some awesome content? That’s great! But publishing awesome content is only one part of blogging. Here’s a quick rundown of how to promote your blog: Recruit Your Friends & Family Share Your […]"

Keep Reading...

Join The

Leave a Reply

Your email address will not be published.

Name (required)