Plugin Untuk Mencegah Hacker WordPress

Ada beberapa cara untuk mencegah hack pada wordpress dan cara yang paling mudah adalah dengan menggunakan plugin yang sudah disediakan gratis oleh wordpress-org. Plugin keamanan wordpress di bawah ini wajib dipasang pada mesin wordpress untuk mencegah hal-hal yang dapat merugikan blog wordpress kita, apalagi jika kita menjadikan blog sarana mendapatkan uang tambahan sebagai uang saku.

Pencegahan adalah cara yang terbaik untuk kita menanggulangi bahaya blog terserang para pihak yang tak bertanggungjawab demi kesenangan semata, iri dengki atau hal yang lainnya, hacker. Apalagi untuk blog yang menggunakan WordPress sebagai CMS-nya. WordPress sepertinya masih lemah dan banyak celah untuk dibobol oleh para hacker.

Mencegah lebih baik daripada menyembuhkan, kalau blog kita belum pernah terserang atau kena hack, kita masih bisa mempersempit celah hacker untuk menjebol password atau membobol untuk mengacak-acak blog kita. Kita bisa memanfaatkan beberapa plugin anti hacker yang telah disediakan oleh WordPress untuk mencegah adanya serangan hacker pada blog kita. Apa saja plugin itu? Berikut plugin yang saya maksudkan.

*Login LockDown*
Login LockDown records the IP address and timestamp of every failed WordPress login attempt. If more than a certain number of attempts are detected within a short period of time from the same IP range, then the login function is disabled for all requests from that range. This helps to prevent brute force password discovery. Currently the plugin defaults to a 1 hour lock out of an IP block after 3 failed login attempts within 5 minutes. This can be modified via the Options panel. Admisitrators can release locked out IP ranges manually from the panel.

*WP Security Scan*
Memantau serangan hacker dalam beberapa fungsi yang deskripsinya bisa anda lihat langsung di tempat anda men-download plugin ini karena terlalu panjang jika dimasukkan sini, hehe.

*WordPress Firewall*
This WordPress plugin investigates web requests with simple WordPress-specific heuristics to identify and stop most obvious attacks. There exist a few powerful generic modules that do this; but they’re not always installed on web servers, and difficult to configure.

*Exploit Scanner*
This plugin searches the files and database of your website for signs of suspicious activity. It will not stop someone hacking into your site, but it may help you find any uploaded or compromised files left by the hacker.

When a website is compromised, hackers leave behind scripts and modified content that can be found by manually searching through all the files on a site. Some of the methods used to hide their code or spam links are obvious, like using CSS to hide text, and we can search for those strings.

The database can also be used to hide content or be used to run code. Spam links are sometimes added to blog posts and comments. They’re hidden by CSS so visitors don’t see them, but search engines do. Recently, hackers took advantage of the WP plugin system to run their own malicious code. They uploaded files with the extensions of image files and added them to the list of active plugins. So, despite the fact that the file didn’t have a .php file extension, the code in them was still able to run!

This plugin searches through your site and attempts to find those changed files and db records. It’s far from perfect, so if you have suggestions for improving it, I’d like to hear them!

*Bulletproof Security*
Website Security Protection: Protects your website from ALL XSS & SQL Injection hacking attempts. Base64_encode code injection blocked. One-click .htaccess security file protection. Protects wp-config.php, php.ini, php5.ini, install.php and readme.html with .htaccess security protection. One-click website under maintenance (HTTP 503). WP META Generator tag removed, WP version hidden, ensure WordPress DB errors are off, file and folder permissions check, system info display (PHP, MySQL, OS, Memory Usage, IP, Max file sizes, etc.). File editing, file uploading and file downloading from within the WP Dashboard.

Semoga dengan plugin keamanan wordpress diatas blog kesayangan kita dapat terhindar dari serangan hacker. Jadi pesan saya segera pasang plugin untuk mencegah hacked pada wordpress anda sebelum anda melanjutkan posting artikel anda.

Other articles you might like;

Comments

comments

Comments

  1. By adyplek

    Balas

    • By admin

      Balas

  2. By yeppy

    Balas

  3. By tips diet

    Balas

    • By admin

      Balas

  4. By zamseng

    Balas

Tinggalkan Balasan

Alamat email Anda tidak akan dipublikasikan. Ruas yang wajib ditandai *

*