Automattic launches VaultPress backup & protection service

April 1, 2010 | No Comments Yet

VaultPress

VaultPress is a premium offering from Automattic that lets you backup and even more interesting, protect your WordPress-powered site:

In the future, if your site is tampered with in any way, we’ll know within minutes and can take appropriate steps. The VaultPress core engine will be able to protect you against zero-day security vulnerabilities by updating your blog with hot-fixes, even while you sleep.

VaultPress runs as a plugin that runs and responds in real-time. It will also be closely integrated with WordPress.com. On the invitation-only beta signup page, the service costs $20 monthly. It also classifies users into personal, pro-blogger, small business, and enterprise.

Leave a Comment | Tags: , , , , , , ,

WordPress Plugin: Injection Attack Protector

July 1, 2009 | No Comments Yet

There are a lot of types of security breaches that threaten your WordPress blog, and spam/malware injection seems to be the most popular of the lot. Fortunately there’s a plugin that helps prevent that called the Injection Attack Protector. This script allows to you to scan your site for possible injection attacks and even a heal tool for the compromised files.

Make sure to follow the given instructions for the plugin to work properly. You’ll need to know how to create a password-protected folder on your site and edit certain files thru a text editor.

Download Injection Attack Protector

Leave a Comment | Tags: , , , , ,

Protect your WordPress blog with these plugins

June 17, 2009 | No Comments Yet

With WordPress 2.8 out, that means it’s upgrade season for us. That also means older, unupdated versions of WP more vulnerable to attacks. Keith Dsouza of Weblog Tools Collection has a list of recommended anti-spam and antivirus plugins to help improve security on your blog:

Anti-spam WordPress Plugins

  1. Akismet
  2. WP-SpamFree Anti-Spam
  3. WP-Hashcash
  4. WP reCAPTCHA
  5. Math Comment Spam Protection

Security WordPress Plugins

  1. WP Security Scan
  2. WordPress Exploit Scanner
  3. AskApache Password Protect
  4. TTC WordPress Security Tool
  5. Secure WordPress
  6. WordPress Firewall

Check out the blog post for details and download links to each of the plugins listed above. Got any more plugins you can recommend? You can never have enough!

Leave a Comment | Tags: , , , , ,

10 ways to secure your WordPress administration panel

January 27, 2009 | No Comments Yet

Sergej Müller and Alex Frison on Smashing Magazine have written a 10-step guide to protecting and ensuring your WordPress admin area is as safe as can be. Here’s the list:

  1. Rename and upload the wordpress Folder
  2. Extend the file wp-config.php
  3. Move the wp-config.php file
  4. Protect the wp-config.php file
  5. Delete the admin User Account
  6. Choose strong passwords
  7. Protect the wp-admin Directory
  8. Suppress Error Feedback on the Log-In Page
  9. Restrict Erroneous Log-In Attempts
  10. Keep Software Up to Date

Read the whole thing here.

It’s best if you perform these safety measures right after installing WordPress, and add it to your routine in case you’ve got a slew of WP-powered sites.

Leave a Comment | Tags: , , , , , , ,