| User | Post |
|
4:19 pm
September 25, 2011
|
Financial Samurai
| | |
| Admin
| posts 1803 | 
|
|
|
Here are some WordPress plug-ins to consider installing:
Exploit Scanner
Login Lockdown
WP Security Scan
Wordpress Firewall 2
Some background on the InMotion hack. http://yakezie.com/196142/featured/inmotion-hacked-and-looking-out-for-one-another/
Any other great security plug-ins you can recommend?
Sam
|
Regards,
Sam
Financial Samurai - Helping you achieve financial freedom sooner, rather than later.
Yakezie Network Founder
|
|
|
6:04 pm
September 25, 2011
|
krantcents
| | |
| Member | posts 909 |
|
|
|
|
7:36 pm
September 25, 2011
|
Budgeting in the Fun Stuff
| | |
| Member
| posts 3048 |
|
|
|
I hired Jesse Michelsen (jmichelsen4*at*gmail.com) to handle all of my site backups and backend maintenance from here on out so I will not have to worry again, lol. Here's his services if anyone is interested:
So, to set up fully automatic, daily and weekly incremental backups on your system I charge a one time $35, my hourly technical rate. I also provide a continual maintenance plan where I will monitor backups on a regular basis, secure your hosting platform as much is possible against hackers, deal with restores, secure your WordPress install, manage updates and essentially take care of anything you need done on the server side to run smoothly. For this plan I charge 125$ a quarter and that includes ~6 hours of work per quarter, dropping my hourly rate to $20/hour.
|
|
|
|
|
11:23 pm
September 25, 2011
|
The College Investor
| | San Diego, CA | |
| Admin
| posts 1935 |
|
|
|
I do love using CloudFlare as a reverse DNS. I filters out so much, and puts up CAPTCHA challenges to all suspicious activity.
|
|
|
|
|
4:26 am
September 26, 2011
|
Glen Craig
| | |
| Member
| posts 1087 | |
|
|
Though not a security plugin, WP-DBManager can send you daily database backups in case something did happen and you needed to restore.
Keep in mind, I don't think the InMotion issue could be prevented by any plugins (if it could I'd love to hear about it). It was server-side, not from a WP exploit.
|
|
|
|
|
6:46 am
September 26, 2011
|
Forest Parks
| | Cairo, Egypt | |
| Admin
| posts 1337 |
|
|
|
Hey College Investor, how does cloudflare work exactly? I briefly looked at it…..
|
|
|
|
|
8:17 am
September 26, 2011
|
Financial Samurai
| | |
| Admin
| posts 1803 |
|
|
|
Glen Craig – Free From Broke said:
Though not a security plugin, WP-DBManager can send you daily database backups in case something did happen and you needed to restore.
Keep in mind, I don't think the InMotion issue could be prevented by any plugins (if it could I'd love to hear about it). It was server-side, not from a WP exploit.
I agree with this. The hack just highlighted what's out there, and what type of plug-ins there are which I found interesting.
Yakezie.com uses Amazon for back-up.
The WP-DBManager is excellent. Chris just disabled it b/c it created mega files and started bogging down the server. But that was also before Yakezie.com went on dedicated server.
|
Regards,
Sam
Financial Samurai - Helping you achieve financial freedom sooner, rather than later.
Yakezie Network Founder
|
|
|
10:41 am
September 26, 2011
|
Eric – PersonalProfitability.com
| | Portland, OR | |
| Member
| posts 2120 |
|
|
|
I like Sam's list. I use the fake login lockdown and two security scan plugins to find and fix common issues.
|
|
|
|
|
10:48 am
September 26, 2011
|
JP
| | |
| Member | posts 45 |
|
|
|
I'm a bit of a paranoid freak about this stuff since I noticed someone trying to get into my site last month. I few I used:
Limit Login Attempts – similar to Login Lockdown just offers a bit more customization
Secure Wordpress – brought to you by the same people who make WP Security Scan
Though it's not a plugin, an easy deterrent is to replace the "admin" username with one that is unique to only you. That way anyone trying to get in has to get the username and password right.
I'm always on the lookout for more/ better options, so I implemented the ones listed above, Thanks!
|
|
|
|
|
2:09 pm
September 26, 2011
|
Glen Craig
| | |
| Member
| posts 1087 | |
|
|
Yakezie.com uses Amazon for back-up.
Sam, do you know how the backup is implemented? Do the backups automatically go to Amazon? Thanks.
|
|
|
|
|
2:47 pm
September 26, 2011
|
Suba @ Wealth Informatics
| | |
| Moderator
| posts 1876 |
|
|
|
Post edited 2:52 pm – September 26, 2011 by Suba @ Wealth Informatics
Glen,
Yes, the back ups are automatic using a script that Chris wrote.
I use Amazon S3 for WI back up too. I was using Automatic wordpress backup plugin when I was in a shared server. Now that I am in a VPS I got rid of the plugin (because it was not a "complete" back up, all the important parts were included but some things like the thesis customization files were not) and use Amazon S3sync module and a shell script to run the cron job. Either one should do the job for backing up important parts.
If you want to go the cron job route this is the tutorial I used
http://atlchris.com/828/how-to…..matically/
If you prefer a plugin I recommend this one
http://wordpress.org/extend/pl…..ss-backup/
|
|
|
|
|
4:29 pm
September 26, 2011
|
Forest Parks
| | Cairo, Egypt | |
| Admin
| posts 1337 |
|
|
|
I use S3 for a CDN, def going to set up the backup. Thanks Suba.
|
|
|
|
|
8:34 pm
September 26, 2011
|
The College Investor
| | San Diego, CA | |
| Admin
| posts 1935 |
|
|
|
Forest Parks said:
Hey College Investor, how does cloudflare work exactly? I briefly looked at it…..
It funnels all of your DNS requests for your domain through their DNS servers versus your host's. So, instead of ns.yourserver.com, it would go through ns.cloudflare.com. As a result, it can screen your traffic very effectively. It keeps a long list of known threats and blocks them.
There are also a lot of options to speed up your site and other options.
|
|
|
|
|
5:45 am
September 27, 2011
|
Glen Craig
| | |
| Member
| posts 1087 | |
|
|
Post edited 5:48 am – September 27, 2011 by Glen Craig – Free From Broke
Thanks Suba, I'll look into that! Once you mentioned shell it was already over my head but I'll see what I can do to figure it out.
Update: just read through the article and I think it's a bit over my head. It's gonna be manual updates for now with manual uploads to Amazon.
|
|
|
|
|
8:55 am
September 27, 2011
|
Tom Drake
| | Canada | |
| Member | posts 148 |
|
|
|
Post edited 8:56 am – September 27, 2011 by Tom @ Canadian Finance Blog
Glen Craig – Free From Broke said:
I think it's a bit over my head. It's gonna be manual updates for now with manual uploads to Amazon.
Hey Glen, I use BackupBuddy (affiliate link)… it'll send backups almost anywhere… amazon, dropbox, ftp. It backs up both the files and database and when needed, you can install everything from a single php page you upload with the backup. I use it when I buy sites as well, easy way to grab everything with a couple clicks and then install on my server with a couple clicks.
|
|
|
|
|
1:19 pm
September 27, 2011
|
Mike – Saving Money Today
| | |
| Member | posts 520 |
|
|
|
Tom @ Canadian Finance Blog said:
Glen Craig – Free From Broke said:
I think it's a bit over my head. It's gonna be manual updates for now with manual uploads to Amazon.
Hey Glen, I use BackupBuddy (affiliate link)… it'll send backups almost anywhere… amazon, dropbox, ftp. It backs up both the files and database and when needed, you can install everything from a single php page you upload with the backup. I use it when I buy sites as well, easy way to grab everything with a couple clicks and then install on my server with a couple clicks.
Tom, how does that work when you are buying a site? Does the seller have to install something that will create the backup file?
|
|
|
|
|
5:25 am
September 28, 2011
|
Glen Craig
| | |
| Member
| posts 1087 | |
|
|
Thanks Tom. I've heard of the plugin before. I think I'll give it another look (I'll use yr aff link if I buy it).
|
|
|
|
|
7:37 pm
September 28, 2011
|
Tom Drake
| | Canada | |
| Member | posts 148 |
|
|
|
Post edited 7:38 pm – September 28, 2011 by Tom @ Canadian Finance Blog
Mike – Saving Money Today said:
Tom, how does that work when you are buying a site? Does the seller have to install something that will create the backup file?
Mike, I just get them to set me up as an admin… I'd need to be anyways. Then I install backup buddy, download the zip and I'm all set. Much easier than explaining how to ftp the files, pull a full database backup, etc. Then I just head over to my ftp account, upload the zip and php file and run the script.
|
|
|
|
|
4:56 am
September 29, 2011
|
Glen Craig
| | |
| Member
| posts 1087 | |
|
|
Wow Tom, it's that easy? The plugin basically pays for itself the first time you use it.
|
|
|
|
Login
Search 
Home
Print this Topic 
Topic RSS 
