1. Anti-Hack: Someone always try to hack your wordpress using new methods. One of them is brute force attack. Hacker send a huge number of request to login wordpress Admin dashboard. To Aviod such attacks. I recommend to use following plugins: http://wordpress.org/plugins/limit-login-attempts/ Rating: 4.8 out of 5 As per the description. This plugin limit the number of login attempts http://wordpress.org/plugins/whiteli...ogin-attempts/ Rating: 5 out of 5 With amazing rating. If you have a dedicated IP / Static IP from your ISP. Then this would be amazing plugin to completely block any brute force attack (Until your system not hacked. ) Just whitelist the IP provided by your ISP/ Internet service provider. You can add unlimited number of IP's. So you can whitelist your staff/users IP's as well. 2. Anti-comment is very important now to aviod unwanted comment spam being done by spammers/Webmasters/SEO companies. http://wordpress.org/plugins/wp-recaptcha/ Rating: 4.1 out of 5 Re-captcha is now aquired by Google. This is very useful to aviod anti spam not only on comments but registeration and email spam protection. So you can say no more to comment spam. This even reduce load on your server. 3. Adding security with Firewall is a plus to protect your Wordpress. All In One WP Security & Firewall http://wordpress.org/plugins/all-in-...-and-firewall/ Rating: 4.9 out of 5 This plugin give multiple functionality to your Wordpress. it helps to add some extra security and firewall to your site by using a security plugin that enforces a lot of good security practices. Othe recommend plugins WordFence Security Plugin Better wp security If you have some amazing plugins to share please do.
Hello there, All this plugins are very useful, but as always, all depend about your Hosting package... if you are on shared hosting so it's better to use One plugin.. otherwise the website will be so slow.. the best one is the Better WP security plugin.. using only this one is more than enough...
I heard too much of plugins affect the blogs? Is that so? Some of plugins I used to protect started sharing its links on my blog, where indirectly giving backlinks for third party sites
I have Wordfence Security running on mine. It's done a decent job and foiled some attempts to log in as admin by others. I am happy with it...
I use Limit Login Attempts plugin -- every now and then some jerks try passwords like 1234, hello, welcome etc. The plugin limits number of password input attempts, and if wrong password input persists, block IP for 48 hours.
If you guys want to foucs on security and maintenance in general, you might be interested in WPGuards plugin linked in my signature. Don't have time to write everything here, just take a look on the website I hope you'll like it!
All plugins are good but am in favor of less plugins. WordPress limit login attempts works like a charm.
Consider using TimThumb Scanner (by Peter Butler ). It is very good to find out if your timthumb script is up to date or not. Alot of hacking is made trough that script.
1: first use the rename plugin to rename wp-admin (duh) 2: Then use bruteprotect plugin for brute attacks....