WordPress Security(Part 07) by Sajid Javed

 This is 7th part of our WordPress security course. If you didn't read them, please click on below links and read them one by one.

  1. WordPress Security Part 01
  2. WordPress Security Part 02
  3. WordPress Security Part 03
  4. WordPress Security Part 04
  5. WordPress Security Part 05
  6. WordPress Security Part 06


Don't use Shared Hosting: 

Some companies providing shared hosting which means they host multiple websites on a single server. It comes with some cons and pros.
Some advantages are:
  1. Very Cheap
  2. Easy to setup and use
  3. Sometimes best Support
I will not talk too much about the advantages. The main target of this course is WordPress Security and shared hosting can affect your website security.

If any website on the same server is hacked then other websites also come under potential threat. And if the server itself gets hacked, then every website on the server goes with it. Thats why I strongly recommend not to use shared hosting. 

There are some other disadvantages too like if other website are getting more traffic then the entire server would slow down, which would in turn slow down your website as well.

Not only this, there is one another big disadvantage which people often ignore during writing about WordPress security. 

Any website on the server can have some illegal contents like gamling and pornography etc. And these days,  all countries are filtering the internet for the safety of their residents. If a website has illegal content then it can be banned based on the server's IP. So, if the server is blacklisted by a country or regulatory then all websites hosted on the same servers will not open in that specific country which can be a big problem for you.

So, whats the solution for this problem? Don't worry these days you can get a VPS on the same price from different companies like AWS Lighsail and Digital Ocean etc.

They are easy to use too. They provides one click-installer for WordPress. Here you can read more about WordPress on VPS



Enable Auto Update: 

WordPress auto update feature is introduced in version 3.7. Now WordPress can update itself when a security or minor release is available.

But you have to enable the auto-update feature for the plugins and themes yourself.

There are two ways to do so:

  1. Admin Panel: Inside the admin panel you can enable the auto update for your themes and plugins as descriped here
  2. functions.php: In functions.php of your theme you should paste below code:
add_filter('auto_update_plugin','__return_true');
add_filter('auto_update_theme','__return_true');



Stop indexing Admin Panel:

By default the search engines crawlers crawl and index the whole website. But think for a while, do you want to expose your admin panel links etc to your visitors? If no, thene you should stop bots for crawling it.

You can achieve this task easily by using robots.txt. This is a text file which instructs the crawlers how to crawl and index your site. For more details please read this article.

There are various tools available online free which you can use for creating this file very easily. These kind of tools are called "Robots.txt Generators". One popular tool is here

There are also various WordPress plugins available which are can create this file. 

For the WordPress specific "Robots.txt" you can read this article

Comments

Popular posts from this blog

AVT Khyber TV Live Streaming

HTTP Live Streaming(HLS) With VAST by Using Fluid Player