This article was published 12 years ago, therefore the contents of this post may be out of date.

WordPress is the most popular blogging platform today. As it’s being used by thousands of people all around the world for many things then just blogging but as the popularity it’s gaining more attention by hackers and spammers too. WordPress is already very secure by itself.

For simple users,who don’t code a lot or don’t want to reinvent the wheel plugins is the best way to secure your blog. Some I will be featuring in this blog are free and featuring great paid one that are easily usable and safe.

1. Backup Buddy

Backup your entire Single or Multisite WordPress install. Including the widgets, themes and plugins. Backup to your server, Amazon S3, Rackspace Cloud, FTP, or e-mail. Quickly and easily restore your site on the same server or migrate to a new server with a different domain and database. The process is easy, fast, and reliable.

2. WP-DB-Backup

WP-DB-Backup allows you easily to backup your core WordPress database tables. You may also backup other tables in the same database.

3.  myEasyBackup

Backup, restore, migrate your WordPress installation, both code and MySQL tables, with a single click.

4. Backup Scheduler

With this plugin, you may plan the backup of your entire website (folders, files and/or database).

You can choose:

  • which folders you want to save;
  • the frequency of the backup process;
  • whether your database should be saved;
  • whether the backup is stored on the local website, sent by email or stored on a distant FTP (support of multipart zip files)

5. Hide Login

This plugin allows you to create custom URLs for logging in, logging out, administration and registering for your WordPress blog. Instead of advertising your login url on your homepage, you can create a url of your choice that can be easier to remember than wp-login.php, for example you could set your login url to http://www.myblog.com/login for an easy way to login to your website.

6. Login Lockdown

Login LockDown records the IP address and timestamp of every failed login attempt. If more than a certain number of attempts are detected within a short period of time from the same IP range, then the login function is disabled for all requests from that range. This helps to prevent brute force password discovery.

Currently the plugin defaults to a 1 hour lock out of an IP block after 3 failed login attempts within 5 minutes. This can be modified via the Options panel. Admisitrators can release locked out IP ranges manually from the panel.

7. BAW More Secure Login

This is a strong authentication plugin. You have to fill a second field, kind of password but this one comes from a printed card you own (FR/EN).

8. Akismet

Akismet is brought to you by Automattic, the creators of WordPress.com. For over 5 years, Automattic has been committed to fighting spam by continually improving the Akismet algorithm. Akismet is a hosted web service that saves you time by automatically detecting comment and trackback spam.

9. WP-reCAPTCHA

Integrates reCAPTCHA anti-spam methods with WordPress including comment, registration, and email spam protection. WPMU Compatible.

10. Math Comment Spam Protection

Math Comment Spam Protection asks the visitor making the comment to answer a simple math question. This is intended to prove that the visitor is a human being and not a spam robot.

11. Antispam Bee

Antispam Bee is simple to use, has many options and filters. Does not store data on remote servers. Really.

Some Features

  • Very fast execution
  • Spam counter on dashboard
  • Anonymous and confidential
  • Trackback and pingback check
  • Saves no data on remote servers
  • No need to adjust any templates
  • Cleaning up after plugin removal
  • Support for the Project Honey Pot

12. Defensio Anti-Spam

Defensio is an advanced spam filtering web service that learns and adapts to your behaviors and those of your users. In addition to simple spam filtering, we also provide world-class malicious content detection, profanity filtering, URL categorization, script detection and much more.

13. SI CAPTCHA Anti-Spam

Adds CAPTCHA anti-spam methods to WordPress forms for comments, registration, lost password, login, or all. In order to post comments or register, users will have to type in the code shown on the image. This prevents spam from automated bots. Adds security. Works great with Akismet. Also is fully WP, WPMU, and BuddyPress compatible.

14. WP Security Scan

WP Security Scan checks your WordPress website/blog for security vulnerabilities and suggests corrective actions such as:

  1. Passwords
  2. File permissions
  3. Database security
  4. Version hiding
  5. WordPress admin protection/security
  6. Removes WP Generator META tag from core code

15. Bulletproof Security

WordPress Website Security Protection: BulletProof Security protects your WordPress website against XSS, RFI, CRLF, CSRF, Base64, Code Injection and SQL Injection hacking attempts. One-click .htaccess WordPress security protection. Protects wp-config.php, bb-config.php, php.ini, php5.ini, install.php and readme.html with .htaccess security protection. One-click Website Maintenance Mode (HTTP 503).

Additional website security checks: DB errors off, file and folder permissions check… System Info: PHP, MySQL, OS, Server, Memory Usage, IP, SAPI, DNS, Max Upload… Built-in .htaccess file editing, uploading and downloading.

16. Secure WordPress

Secure WordPress beefs up the security of your WordPress installation by removing error information on login pages, adds index.html to plugin directories, hides the WordPress version and much more.

17. Content Security Policy

Content Security Policy prevents content injection attacks by allowing admins to specify which sites they trust to serve JavaScript and other types of content in their site. Any content which is not explicitly allowed by the policy will be blocked from loading.

18. AntiVirus for WordPress

Viruses, worms and malware exist for WordPress and could easily attack your WordPress installation. AntiVirus for WordPress monitors malicious injections and warns you of any possible attacks. With multilingual support. Simply, the plugin you must have.

19. Better WP Security

Better WP Security takes the best WordPress security features and techniques and combines them in a single plugin thereby ensuring that as many security holes as possible are patched without having to worry about conflicting features or the possibility of missing anything on your site.

Bonus

If you are looking to compare the leading WP backup options click here to read it

Share

19 Best Security Plugins To Make Your WordPress Site Bulletproof

Discussion

2 Responses

Comments are closed.