Hardening WordPress against the ongoing brute-force attack

April 12, 2013 ~ Leo Petrazickis

There’s an ongoing brute-force attack against WordPress and Joomla sites. The attack tries to brute-force the admin password. (Reddit)

I had to harden my WordPress some time ago. Here are the guides I followed when hardening my installation:

My WordPress Site Was Hacked
Hardening WordPress
Ultimate Security Checker plugin (guide)

Additional steps I’ve taken today:

Install the Limit Login Attempts plugin

Published by Leo Petrazickis

I’m a Senior Site Reliability Engineer at Autonomic. I do Golang, Ruby, JS, Python, Elixir, as well as web scale devops with Terraform, Ansible, Kubernetes and Docker. View all posts by Leo Petrazickis

Leave a Reply Cancel reply

Enter your comment here...

Fill in your details below or click an icon to log in:

Email (required) (Address never made public)

Name (required)

Website

You are commenting using your WordPress.com account. ( Log Out / Change )

You are commenting using your Twitter account. ( Log Out / Change )

You are commenting using your Facebook account. ( Log Out / Change )

Cancel

Connecting to %s

This site uses Akismet to reduce spam. Learn how your comment data is processed.

%d bloggers like this:

Share this:

Like this:

Related

Published by Leo Petrazickis

Leave a Reply Cancel reply