The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Wordpress Security Concerns

Discussion in 'Security' started by jazee, Feb 25, 2017.

Tags:
  1. jazee

    jazee Active Member

    Joined:
    Jan 12, 2015
    Messages:
    44
    Likes Received:
    0
    Trophy Points:
    6
    cPanel Access Level:
    Root Administrator
    I'm hosting a few Wordpress sites and my approach to security thus far is to make sure the core and all plug-ins and themes are kept up-to-date, and I run Configserver Firewall (CSF) / LFD on my VPS.

    There's a number of Wordpress Security plug-ins out there including ones that attempt to "hide" the fact you are running Wordpress. I've got one site owner that is interested in doing this hiding. I've read some articles in the past on the subject that concluded essentially these hide plugins are in effective as you can't 100% hide you have a Wordpress site from any knowledgable hacker.

    I really have two questions regarding Wordpress Security:

    (1) For those that are already familiary with BOTH CSF/LFD AND the most popular Wordpress Security Plug-Ins, are there any plug-ins worth installing that increase security but don't unecessarily duplicate security functions that CSF/LFD is already performing, AND, don't add bells & whistles that are unecessary and just overcomplicate the Wordpress setup and potentially effect performance.

    (2) Disregarding the "hide" Wordpress plugins from a security standpoint, what would be the best one to use taking into considerating the first question?

    Essentially, I'm looking for someone that has experience running CSF/LFD hosting Wordpress sites that has experimented with various Wordpress Security Plug-Ins. They seem hard to come by as it seems the vast majority (not all) Wordpress users aren't running on a VPS or Dedicated Server running CSF/LFD, or, the vast majority of Sys Admins knowledgable about CSF/LFD, aren't Wordpress Security Experts. There's got to be a few "Unicorns" out there though?
     
  2. Infopro

    Infopro cPanel Sr. Product Evangelist
    Staff Member

    Joined:
    May 20, 2003
    Messages:
    15,618
    Likes Received:
    296
    Trophy Points:
    433
    Location:
    Pennsylvania
    cPanel Access Level:
    Root Administrator
    Twitter:
    That's not going to happen.

    You should probably install a few for yourself and check them out. They've all got ratings and feedback posted you can go thru. Sucuri and wordfence are two very popular security plugins for wordpress, for example. You might try installing one or both of them and look at the options they offer (free and paid versions are available):
    wordpress.org/plugins


    This question might be better asked over on the Wordpress forums as it has to do with Wordpress.
     
Loading...

Share This Page