Start your free trial now, and begin learning software, business and creative skills—anytime, anywhere—with video instruction from recognized industry experts.

Start Your Free Trial Now

Implementing strong passwords


WordPress 3: Developing Secure Sites

with Jeff Starr

Video: Implementing strong passwords

Implementing strong passwords provides you with in-depth training on Developer. Taught by Jeff Starr as part of the WordPress 3: Developing Secure Sites
please wait ...
Watch the Online Video Course WordPress 3: Developing Secure Sites
Video Duration: 3m 55s2h 36m Intermediate Jun 27, 2011

Viewers: in countries Watching now:

View Course Description

This course explains how to secure self-hosted WordPress sites, including site configuration, code modification, and the use of free plug-ins. Beginning with the basics of site security, author Jeff Starr explains how to harden a WordPress site by configuring authentication keys, setting proper file permissions, and removing version numbers. The course shows how to implement a firewall, prevent automated spam, and control proxy access, and concludes with a series of advanced tips and site security best practices.

Topics include:
  • Backing up and restoring your site
  • Setting up strong passwords
  • Choosing trusted plugins and themes
  • Protecting the configuration file and the admin directory
  • Securing the login page
  • Fighting comment spam
  • Blocking access and detecting hacks
  • Finding and reporting vulnerabilities
Developer Web
Jeff Starr

Implementing strong passwords

This screencast is all about using strong passwords to improve the security of your WordPress-powered web site. Choosing strong passwords for your users helps to keep the bad guys out. Weak passwords are things like 'password1234' and other easy-to-guess phrases. Conversely, strong passwords contain numbers, upper- and lowercase letters, and in WordPress they can also contain special characters like these. Using a good random mix of upper- and lowercase letters, numbers, and symbols is a great way to create strong passwords.

And doing so is an important part of good security. With WordPress there are three key things to remember: You create your admin password during installation. A password must be created for each new user, and passwords should be changed frequently. During installation, you'll see the setup screen, and right here it asks for your password, twice. There are many ways to pick a strong password, but the easiest is to use an online password generator, like this one at

Just click the button, and grab a password, copy, and paste then it into the password fields. Of course you can, and should, change the admin password regularly after installation, but setting a strong password from the get-go is an excellent way to begin your new site. In addition to the primary admin account, you may also need to set up accounts for other users, which is done here in the User Settings page.

Click the Users menu to see a list of your users. For existing users, just click on the User Name and scroll down a bit. There you will see fields for resetting your password, here and here. This should be done on a periodic basis according to your own security policy, and for new users we click Add New and fill out the details, with the username, email, and then choose a strong password, and repeat it.

Notice here on the strength meter that this user's password is strong, which is always the desired setting, and with that, click the Add New user button and you're done. Strong passwords are going to help keep your site secure, and it's a good practice to change them on a regular basis. I like to change my passwords every few months for most sites. Admittedly, it's not always the first thing on the mind, but when I see the opportunity to change password, I will just go ahead and do it.

To help with things like changing passwords and choosing strong passwords, here are plug-ins worth checking out. WordPress Password Cracker is a useful tool for auditing your users' choice of passwords. The WordPress Password Generator is an easy-to-use plug-in the autocompletes the password field that is required for new users. And lastly, Bulk Password Reset makes it easy to update the passwords of all users all at once, and there are way more plug-ins available in the WordPress Plugin directory.

We return to the WordPress admin area, click on the Plugins menu, and then click on Add New, type in the 'password' in the search field, and there you will see many plug-ins available to you, for free, for better password management. In this screencast, we've seen how to create strong passwords and change them for different users. WordPress provides tools for doing this, and there are some great plug-ins to make things even easier.

There are currently no FAQs about WordPress 3: Developing Secure Sites.

Share a link to this course

What are exercise files?

Exercise files are the same files the author uses in the course. Save time by downloading the author's files instead of setting up your own files, and learn by following along with the instructor.

Can I take this course without the exercise files?

Yes! If you decide you would like the exercise files later, you can upgrade to a premium account any time.

Become a member Download sample files See plans and pricing

Please wait... please wait ...
Upgrade to get access to exercise files.

Exercise files video

How to use exercise files.

Learn by watching, listening, and doing, Exercise files are the same files the author uses in the course, so you can download them and follow along Premium memberships include access to all exercise files in the library.

Exercise files

Exercise files video

How to use exercise files.

For additional information on downloading and using exercise files, watch our instructional video or read the instructions in the FAQ .

This course includes free exercise files, so you can practice while you watch the course. To access all the exercise files in our library, become a Premium Member.

Join now Already a member? Log in

* Estimated file size

Are you sure you want to mark all the videos in this course as unwatched?

This will not affect your course history, your reports, or your certificates of completion for this course.

Mark all as unwatched Cancel


You have completed WordPress 3: Developing Secure Sites.

Return to your organization's learning portal to continue training, or close this page.


Upgrade to View Courses Offline


With our new Desktop App, Annual Premium Members can download courses for Internet-free viewing.

Upgrade Now

After upgrading, download Desktop App Here.

Become a member to add this course to a playlist

Join today and get unlimited access to the entire library of video courses—and create as many playlists as you like.

Get started

Already a member ?

Exercise files

Learn by watching, listening, and doing! Exercise files are the same files the author uses in the course, so you can download them and follow along. Exercise files are available with all Premium memberships. Learn more

Get started

Already a Premium member?

Exercise files video

How to use exercise files.

Ask a question

Thanks for contacting us.
You’ll hear from our Customer Service team within 24 hours.

Please enter the text shown below:

Exercise files

Access exercise files from a button right under the course name.

Mark videos as unwatched

Remove icons showing you already watched videos if you want to start over.

Control your viewing experience

Make the video wide, narrow, full-screen, or pop the player out of the page into its own window.

Interactive transcripts

Click on text in the transcript to jump to that spot in the video. As the video plays, the relevant spot in the transcript will be highlighted.

Learn more, save more. Upgrade today!

Get our Annual Premium Membership at our best savings yet.

Upgrade to our Annual Premium Membership today and get even more value from your subscription:

“In a way, I feel like you are rooting for me. Like you are really invested in my experience, and want me to get as much out of these courses as possible this is the best place to start on your journey to learning new material.”— Nadine H.

Start your FREE 10-day trial

Begin learning software, business, and creative skills—anytime,
anywhere—with video instruction from recognized industry experts. provides
Unlimited access to over 4,000 courses—more than 100,000 video tutorials
Expert-led instruction
On-the-go learning. Watch from your computer, tablet, or mobile device. Switch back and forth as you choose.
Start Your FREE Trial Now

A trusted source for knowledge.


We provide training to more than 4 million people, and our members tell us that helps them stay ahead of software updates, pick up brand-new skills, switch careers, land promotions, and explore new hobbies. What can we help you do?

Thanks for signing up.

We’ll send you a confirmation email shortly.

Sign up and receive emails about and our online training library:

Here’s our privacy policy with more details about how we handle your information.

Keep up with news, tips, and latest courses with emails from

Sign up and receive emails about and our online training library:

Here’s our privacy policy with more details about how we handle your information.

submit Lightbox submit clicked
Terms and conditions of use

We've updated our terms and conditions (now called terms of service).Go
Review and accept our updated terms of service.