WordPress Right Click Disable

Saturday, July 30th, 2011 at 8:57 am

WordPress Hack Attack and Blogs

WordPress Bloggers careful because it can be attacked and cut due to vulnerabilities in the WordPress platform. This article covers what is happening and then gives you 12 ways to prevent it from happening to you.

So my friends WordPress blogs are being attacked, manipulated, and redirected to other web sites without the owners of blogs that is conscious. Sounds scary right? Imagine if you had a blog or website to earn hundreds of dollars a day!

Let me back for a moment to those who are not Read more:

It all started for me on June 11, 2009, when I received a frantic call one of my friends who runs a great success, WordPress Blog known and profitable.

They were about to mourn because the attack of hackers using WordPress and a lagoon in their self hosted blogging platform to perform two tasks:

1) Redirect traffic away from your wordpress blog to another website that is full of links to different affiliate products

2) Replaced all static web pages using Iframe redirection with drugs at the pharmacy and the other websites type.

How did you find the blog owner? One of your readers clicks on a link on the blog to read a message that they were interested in they were taken to an affiliate website that had nothing to do with the issues discussed in the blog.

Thinking it was just a mistake that he tried again and was taken to a web site completely different from what went to the first time. That sent warning signals to the reader and contacted the owners blog.

The saddest part is that by the time the owners of the blogs were able to correct the attack and cut wordpress had lost about $ 700 sale that day only. The worst thing is that here we are exactly one week later and still working on repairing the damage to their pages Static web.

What can you do to protect the name, brand, reputation, revenues and the WordPress blog to be attacked and hacked?

1. Protect your WordPress database -

Create a WordPress database. WP uses only a few tables, but creating an entire database only for the blog is more likely to limit their access.
Create and grant limited access to a user database. Create a user to access this database and allow access limited to the SQL commands in the database (select, insert, delete, update, create, delete and modify).
Pick a strong password database. Make it as random as possible, since there is no need to remember it.

2. Wp-config.php fill properly - Use WordPress secret key generation tool to generate random cookies WordPress. These keys are used to ensure a better encryption of information stored in cookies WordPress user.
You want to change the table prefix WordPress wp_ for anything other than adding random characters and numbers to the end of wp as wp64mlm_manual.

3. Return Replace the default "admin" user name - Fantastico users are able to collect user admin and password as part of the installation process. Replace defaults to "admin" username is now myadm site administration.

4. Collection of WordPress password for "Admin" - Your password should contain both uppercase and lowercase are numbers.

5. Use Secure login through encrypted channels - WordPress bloggers that have SSL enabled for your domain should use this encrypted channel to access your WordPress dashboard. You can force management sessions over HTTPS by setting the variable of FORCE_SSL_ADMIN the file wp-config.php to TRUE.

6. Update as a new version is available - WordPress bloggers should update once the versions issued by the most recent updates address security issues known vulnerability.

7. Upgrading Word Press Plug-in - just makes sense to do once you upgrade to a new version of WP.

8. Backup your database and files - Install a plug-in or use cronjob to back up your database and WordPress blog files on a regular basis.

9. Disable Directory Browsing - The default on most hosting rates directory are displayed in web browsers reveal the contents of a directory that has no index.html or index.php. You can modify this behavior with Apache by adding a line of code in the file. Htaccess in the root directory.

10. Protect files management WordPress - WordPress administration files resides in the wp-admin of your WordPress blog. You can use. Htaccess to restrict access or allow only specific IP addresses to enter this directory and file. You may also be accessed from a range of IP through mod_access.

11. Restrict access to the files to the wp-content - wp-content directory contains the theme files, images and plug-ins. WordPress blogs do not access the files. PHP on the boards of plug-ins and themes via HTTP. Restricting wp-content through. Htaccess so that only the following files can be accessed to image files, javascript, CSS and prevent people from accessing other files directly.

12. Hide the version of WordPress Header tag.

These practices are nothing new, WordPress has been telling its self-organizing bloggers that must implement these tactics since day one.

Now wordpress and cut the attack in full force and there are millions of bloggers will wake up one day and find all the hard work, effort and income is gone.

I urge all users of WordPress to take emergency measures to protect themselves starting today! While I have listed can be done in this article is not much that was not covered so we recommend that you take the time to research resources listed below in my biography because it is like my friend and I are now protecting us from attacks by WordPress and hack.

About the Author

Paul G. Hackett A.K.A The Medical Billing and Transcription Mastermind and religious blogger uses http://budurl.com/wordpresslockdown to protect his blogs and revenue generating website http://medicalbillingbooks.tripod.com

How to Customize Your WordPress Dashboard