Since its emergence back in 2003, WordPress has evolved from a humble blogging platform to a sophisticated CMS which today powers the websites of some of the world’s largest companies. However, with security flaws making the news every once in a while, many may still see WordPress as a risk not worth taking. But what is crucial in order to maintain a WordPress site that is both secure and efficient?
In this eBook we’ve compiled valuable advice from seasoned WordPress pros and web security experts to help you avoid the most common security pitfalls. You’ll learn how to patch potential loopholes to prepare your site against hacks, but also how to swiftly put up a recovery plan in case the worst case scenario of an attack should take place.
The second part of this eBook focuses on practical tips to make your site as efficient as possible, and for those who haven’t jumped on the bandwagon yet, our authors also provide a bulletproof guide on how to migrate an existing website to WordPress. This eBook is all about the big and small pitfalls that working with WordPress might possibly bring along. Learn how to overcome them so that you can tap WordPress’ great potential to its fullest.
TABLE OF CONTENTS
- WordPress Security: What You Need To Do To Keep Your Website Safe
by Tom Ewer
- Proper WordPress Filesystem Permissions And Ownerships
by Benjamin Intal
- Are You Prepared Against A Hack?
by Daniel Kanchev
- The Ultimate Guide To Choosing A WordPress Host
by Mark Gavalda
- WordPress Performance Improvements That Can Go Wrong
by Hristo Pandjarov
- Better Dependency Management In Team-Based WordPress Projects With Composer
by David Smith
- Migrating A Website To WordPress Is Easier Than You Think
by Jonathan Wold
- Formats: PDF, EPUB, Kindle (DRM-free)
- Pages: 146
- Language: English
- Released: January 2015
- Publisher: Smashing Magazine GmbH
- ISBN (PDF): 978-3-94454099-3
- ISBN (EPUB): 978-3-94454030-6
- ISBN (KINDLE): 978-3-94454031-3
Excerpt From Chapter 2
Proper WordPress Filesystem Permissions And Ownerships — by
When people talk about WordPress security, file permissions and ownership are usually the last thing on their minds. Installing security plugins is a good practice and a must for every WordPress website. However, if your filesystem permissions aren’t set up correctly, most of your security measures could be easily bypassed by intruders.
Permissions and ownership are quite important in WordPress installations. Setting these up properly on your Web server should be the first thing you do after installing WordPress. Having the wrong set of permissions could cause fatal errors that stop your website dead. Wrong permissions can also compromise your website and make it prone to attacks.
Excerpt From Chapter 3
Are You Prepared Against A Hack? — by
Many great articles show how to prevent a website from being hacked. Unfortunately, unless you take it offline, your website is not and will never be completely unhackable. Don’t get me wrong, you still need to take preventive measures and regularly improve your website’s security; however, responding accordingly if your website does get hacked is equally important. In this chapter, we’ll provide a simple seven-step disaster-recovery plan for WordPress, which you can follow in case of an emergency. We’ll illustrate it with a real hack and specific commands that you can use when analyzing and cleaning the website.