Excited that your website is finally up? Before you think you can take a break, please read and install the following 4 plugins enhance the security of your website before you let loose.
Google Authenticator – Two Factor Authentication (2FA)
This is particular important to enhance the security of access to your administrative site. Having a username and password is no longer sufficient. Banks have moved into 2 factor authentication ages ago. Brute force can easily hack into your administrator site. They provides several mode of authentication including Google Authenticator where you need to install Google Authenticator app on your mobile phone. The pin will refresh on your mobile every x seconds and you will to enter the pin after you have entered your username and password credentials.
Protect Your Admin
By MR Web Solution
This plugin basically hide the “/wp-admin” and allows you to replace it with another path. It is particular easy for any hackers to know if your site uses WordPress if your default administrative site is “/wp-admin”. It is simply a 1 field configuration after you have enable the feature in the setting page. Hence, download and activate this plugin to hide the URL and change it to something else you can remember.
This is also a must have plugin. It protects your wordpress site. Wordfence the most comprehensive WordPress security solution available:
- Firewall blocks complex and brute force attacks
- Security Scan alerts you quickly in the event of a security issue
- Threat Defense Feed keeps Wordfence up to date with the latest security data
- Robust login security features
- Configurable security alerts
- Gain insight into traffic and hack attempts
- Security incident recovery tools
All 404 Redirect to Homepage
By Fakhri Alsadi
Download any 404 redirect plugin, this would help to prevent checks from calling WordPress internal files and do a code inject to hack into your server.