Do you see many attacks on your WordPress dashboard?
Protecting the dashboard from unauthorized access allows you to block many common security threats. In this tutorial, we will offer you some essential tips and tricks to protect your WordPress dashboard.
But before, if you have never installed WordPress discover How to Install a WordPress Blog in 7 Steps et How to search, install and activate a WordPress theme on your blog
Then back to why we are here.
1 - Use a firewall on your website
A Web or WAF firewall monitors website traffic and blocks suspicious requests.
Even if there are several firewall plugins on WordPress, we recommend that you use Sucuri. This is a website tracking and security service that offers a cloud-based WAF firewall to protect it.
2 - Protect the wp-admin folder with a password
Your WordPress dashboard is already protected by your WordPress password. However, adding password protection to your wp-admin directory adds another layer of security.
Discover also our 5 WordPress plugins to protect your blog against malware
You need to access your cPanel then search for the Folder Privacy option, then click on the " Password protection " or " Confidentiality of the file ».
Then you need to select your folder wp-admin Which is normally in the folder " / public_html / ».
On the next screen, you should check the box next to the option "Password protection of this directoryAnd provide a name for the protected folder.
See also our guide on How to view or block IP addresses on WordPress
Then click on the button Save to set permissions.
Then you have to press the button Previous, then create a user. You must provide a username & password, then click the " Save ».
Here is also for you, our 10 WordPress plugins to improve the appearance of your website
Now when someone tries to access the WordPress admin folder or the wp-admin directory on your website, you will be asked to enter the username and password.
3 - always use strong passwords
Always use strong passwords for all of your accounts, including your WordPress website. We recommend that you use a combination of letters, numbers and special characters in your passwords.
See also The best WordPress plugins to manage a multi-author blog
This will make it harder for hackers to guess your password.
Newbies often ask us if they need to remember all of their passwords. The simplest answer is you don't need to. There are some very good password manager apps that you can install on your computer and phones.
4 - use the two-factor connection
Two-step verification adds another layer of security to your passwords. Instead of using the password alone, it asks you to enter an app-generated verification code Google Authenticator on your phone.
Even if someone is able to guess your WordPress password, it will still be necessary to enter the Google Authenticator code.
5 - Limit connection attempts
By default, WordPress allows users to enter passwords as many times as they want. This means that someone can keep trying to guess your WordPress password by entering different combinations. It also allows hackers to use automated scripts to create passwords.
See also How to create a custom login page on WordPress
To solve this problem, you need to install and activate the plugin Login LockDown. After activating the plugin, you must access " Settings> LockDown Connection To configure the plugin settings.
6 - Limit access to access to IP addresses
Another great way to secure access to WordPress is to limit access to specific IP addresses. This tip is especially useful if you or only a few trusted users need to access the dashboard.
To discover also: How to block IP addresses on WordPress
Just add this code to your .htaccess file.
AuthUserFile / dev / null AuthGroupFile / dev / null AuthName "WordPress Admin Access Control" AuthType Basic order deny, allow deny from all # whitelist Syed's IP address allow from xx.xx.xx.xxx # whitelist David's IP address allow from xx.xx.xx.xxx
Remember to replace the xx values with your own IP address. If you are using more than one IP address to access the Internet, be sure to add them.
Discover also some premium WordPress plugins
You can use other WordPress plugins to give a modern appearance and to optimize the handling of your blog or website.
We offer you here some premium WordPress plugins that will help you do that.
1. Calendarista
Calendarista is a WordPress Plugin premium designed to deliver an experience of online booking –Booking- faster and more efficient to your customers. Its objective is to make services very quick and easy to add for companies that offer the booking of sessions or appointments on the internet.
So if you are looking for a complete reservation system for a hotel, car rental company, apartment rental, travel agency, beauty salon, restaurant, etc.…, this plugin will be perfect for you.
Read this article on How to display all your WordPress publications on a single page
As features it offers among other things: 10 ready-to-use reservation system models, support for 3 payment gateways, WooCommerce support, the integration of a customizable form builder, Google Map support, an excellent calendar template for displaying your appointments, and much more.
Download | Demo | Web hosting
2. WooCommerce pickup location
Here is another option you can use to add interactive maps to your website or your WordPress blog. The latter offers several features that will allow you to create beautiful cards with your own configurations.
You'll be able to add colorful markers, custom windows, and even redirect users when they click on a map.
See our article on 5 thermal card plugins and tools for your WordPress site
You can save multiple locations and highlight them with markers.
Download | Demo | Web hosting
3. WordPress Thumby Related Posts Widget
the plugin WP Thumbby Related Posts can help you improve your WordPress website statistics and in particular the engagement of your visitors by setting up an entry page that leads them to other relevant and similar content. You can get more page views for the price of one.
Thanks to this plugin, when visitors come to your website, very nice and high quality thumbnails grab their attention to offer them other useful things on the website.
Download | Demo | Web hosting
Other recommended resources
We also invite you to consult the resources below to go further in the grip and control of your website and blog.
- 8 WordPress plugins to efficiently manage a Newsletter
- Cookies and WordPress: How to create, retrieve and delete
- Some WordPress plugins to add live chat
- 4 WordPress plugins to integrate MailChimp with WooCommerce
Conclusion
Here is ! That's it for this guide. We hope you now know how to properly protect your WordPress dashboard.
However, you will also be able to consult our resources, if you need more elements to carry out your projects of creation of Internet sites, by consulting our guide on the WordPress blog creation or the one on Divi: the best WordPress theme of all time.
If you have some Comments or suggestions, do not hesitate to let us know in the reserved section But in the meantime, share this article on your different social networks.
...
