Join Jeff Starr for an in-depth discussion in this video Using the exercise files, part of WordPress: Developing Secure Sites .
- [Instructor] The exercise files included with this course, provide everything you need to follow along and complete each video. If you have access, just grab a copy of the exercise files and place them on your desktop, so you can quickly open example files, code snippets and notes. If you don't have access to the exercise files, that's okay, you can still follow along, just pause the video when some code is presented, and type it out manually. This course is not too code intensive, so you should have no problems doing so. Also, in this video course, we're working with several key pieces of software.
First and foremost, for our demo site, we're using a default, self-hosted, installation of WordPress, which you can download for free at wordpress.org. There, you can find steps for the famous five-minute installation. A good idea for following along with the course is to set up your own demo site, as I have done. Next, we're using Google Chrome, which is free and ready for download at google.com. And for various parts of the tutorial, we may use Mozilla Firefox, which is available at mozilla.com.
On the other side of the browser, we're using an FTP/file-editing program, called Atom. Atom is 100% free, completely open-source, and available for download here at atom.io. When you hear me mention code editor, file editor, or FTP client, I'm referring to Atom. Of course, any FTP program and file editor will work just fine for this course. To enable Atom to connect to the server, we're using a free package called remote FTP. Installing and configuring packages for Atom is beyond the scope of this course, but feel free to check out "Learn Atom: The Basics." Also, all of the plug-ins, themes, and code featured in this course are open-source and GPL licensed.
The plug-ins and themes are freely available at the wordpress.org website. And all of the code snippets are from my own code tutorial sites, WordPress Mix. One last note before diving in, remember always to make a backup of your files and database before making any changes. That way, if something unexpected happens, you can restore previous functionality. Now, let's dive in.
Author
Jeff Starr
Released
9/16/2016- Backing up and restoring your site
- Setting up strong passwords
- Understanding users and roles
- Choosing trusted plugins and themes
- Changing and recovering passwords
- Configuring authentication keys
- Securing the login page
- Fighting spam in the comments
- Blocking access and detecting hacks
- Building a firewall for WordPress
- Detecting and blocking bots
- Auditing your WordPress security
Skill Level Intermediate
Duration
Views
-
Introduction
-
Welcome1m 3s
-
Using the exercise files2m 14s
-
-
1. Getting Started
-
Back up your site4m 6s
-
Restore your site5m 36s
-
Keep your site up to date4m 37s
-
-
2. Security Essentials
-
Implement strong passwords4m 28s
-
Understand users and roles3m 29s
-
Change and recover passwords3m 30s
-
Disable user registration2m 41s
-
-
3. Hardening WordPress
-
Prevent directory listings3m 59s
-
Remove version numbers3m 47s
-
Disable error display3m 7s
-
4. Improving Security with Plugins
-
Fight comment spam3m 51s
-
Secure your login page4m 34s
-
Stop user enumeration4m 50s
-
Monitor admin users4m 24s
-
Implement a firewall3m 6s
-
Block access6m 5s
-
Detect hacks7m 47s
-
-
5. Advanced Tips and Tricks
-
Stop file hotlinking4m 18s
-
Stop automated spam2m 32s
-
Control proxy access4m 21s
-
Control admin access4m 59s
-
-
6. Applying Best Practices
-
Choose a good host6m 16s
-
Further security techniques6m 55s
-
Conclusion
-
Next steps2m 9s
-
Take notes with your new membership!
Type in the entry box, then click Enter to save your note.
Press on any video thumbnail to jump immediately to the timecode shown.
Notes are saved with you account but can also be exported as plain text, MS Word, PDF, Google Doc, or Evernote.
Share this video
Embed this video
Video: Using the exercise files