Base de Conocimientos

Securing your WordPress store

Being a webstore owner, it is obvious that you are much concerned about its security. We all like to keep our sites secure against the hackers. WordPress users are lucky enough that there are several security plugins to safeguard your site from hacking attempts. One of such plugins we can recommend you is WP Cerber plugin.

This plugin protects your site from brute force attacks by limiting the number of login attempts through the login form. WP Cerber tracks time, IP addresses and usernames for successful and failed login attempts, logins, logouts, password changes, blocked IP and actions taken by itself.

Even though the plugin is straight forward to use, you should definitely apply the right settings. Below you will find out how to setup WP Cerber plugin properly.

Go to WP Cerber -> Antispam:

Go to Dashboard -> Hardening:

Another plugin that helps you to prevent hackers attacks is WordFence which is open source and free.

Here are other recommendations to secure your site:

  • change login and password from time to time using a real email in order you will be able to restore the credentials if you lose them;
  • follow up the updates;
  • regularly do a back up of your site;
  • block WordPress xmlrpc.php requests with .htaccess

You can deny all requests to the xmlrpc.php file, using the following .htaccess rules:

# Block WordPress xmlrpc.php requests
<Files xmlrpc.php>
order deny,allow
deny from all
¿Te ha resultado útil este artículo?
El 45% de las personas encontraron esto útil

¿Tienes alguna pregunta o necesitas obtener más información sobre el producto? De cualquier manera, estás en el lugar correcto.