Sponsors


WordPress security tips (part 3) – Keep your blog secure




A lot of posts that I find while trying to make my blog more secure are long, long enough that I get bored while reading them. I am looking to make posts that are small enough to read easily in a 10-15 minute period, and implement easily. As a result, you may see multiple such posts with the title of WordPress Security tips, and do let me know if you are looking for me to create larger posts; although I cannot really say that I will oblige :-).
This post talks about a plugin called “AskApache Password Protect WordPress Plugin”, and is available at this site (link), or you can download it here (link). From the site:

This plugin doesn’t control WordPress or mess with your database, instead it utilizes fast, tried-and-true built-in Security features to add multiple layers of security to your blog. This plugin is specifically designed and regularly updated specifically to stop automated and unskilled attackers attempts to exploit vulnerabilities on your blog resulting in a hacked site. You can set up Password Protection for your blog using HTTP Basic Authentication, or you can choose to use the more secure HTTP Digest Authentication.
Has a user-contributed attack signature system modeled after the Snort Intrusion Detection and Prevention system, Nessus Vulnerability Scanner, and the Web Application Firewall ModSecurity.

However, you would need access to your .htaccess file, and you web service should be running an Apache web server.




Leave a Reply

You can use these HTML tags

<a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <s> <strike> <strong>