Studio-Archive/beginner-wordpress-user
0
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
beginner-wordpress-user/platform/7 Tips to improve website security/youtube/7 Tips to improve website security.en.srt
studio 4cfcf09a97 sync: full archive from pipeline (250 files) 
Sources: video-subtitle-pipeline artifacts/beginner-wordpress-user/
- subtitles/: en, zh, bilingual SRT/ASS (100 files)
- platform/: youtube SRT + bilibili BCC per video (75 files)
- manifests/: per-video manifest.json (25 files)
- quality/: quality reports (50 files)
2026-04-13 23:35:08 +08:00

163 lines
5.3 KiB
Text
Raw Permalink Blame History

1
00:00:00,000 --> 00:00:06,000
Welcome to Learn WordPress. Let's talk about 7 tips to improve website security.
2
00:00:06,000 --> 00:00:11,000
Number one, use a password manager and secure passwords for your logins.
3
00:00:11,000 --> 00:00:17,000
Password managers such as OnePassword and Bitwarden are worth exploring.
4
00:00:17,000 --> 00:00:22,000
One of the most common areas for security failure is unfortunately the human one.
5
00:00:22,000 --> 00:00:31,000
No two passwords should ever be the same and ensure passwords are at least 10 to 12 characters and include numbers and symbols.
6
00:00:31,000 --> 00:00:36,000
And remember, never use admin as a username.
7
00:00:36,000 --> 00:00:46,000
Password managers store your passwords securely and allow you to generate unique secure passwords for each login without needing to remember each one.
8
00:00:46,000 --> 00:00:49,000
Number two, use a two-factor authentication.
9
00:00:49,000 --> 00:00:58,000
Two-factor authentication can significantly enhance the security of your WordPress site by adding an extra layer of protection to the login process.
10
00:00:58,000 --> 00:01:05,000
This way, even if someone else gets your password, they still can't log into your account without that second factor.
11
00:01:05,000 --> 00:01:14,000
Two-factor authentication may seem like a small step, but it can greatly improve the security of your online accounts and help protect your personal information.
12
00:01:14,000 --> 00:01:25,000
You can search for a two-factor authentication plugin such as WP2FA, two-factor authentication or Mini-Orange's Google Authenticator.
13
00:01:25,000 --> 00:01:33,000
Some security plugins also include two-factor authentication, but we will talk more about security plugins in a minute.
14
00:01:33,000 --> 00:01:36,000
Number three, always review your user base.
15
00:01:36,000 --> 00:01:41,000
Remove unnecessary users and be very selective of admin users.
16
00:01:41,000 --> 00:01:44,000
Let's make our way to users in the dashboard.
17
00:01:44,000 --> 00:01:48,000
User roles such as editors, authors and contributors should be monitored.
18
00:01:48,000 --> 00:01:53,000
Typically, the administrative role is reserved for the website's owner.
19
00:01:53,000 --> 00:02:01,000
Removing unnecessary users will minimize the potential attack surface or entry points that attackers can exploit.
20
00:02:01,000 --> 00:02:10,000
Number four, only install plugins and themes from trust to developers and uninstall what you are not using.
21
00:02:10,000 --> 00:02:16,000
To assess the reliability of a theme or plugin, there are a few things to review.
22
00:02:17,000 --> 00:02:20,000
Check user feedback and reviews.
23
00:02:20,000 --> 00:02:23,000
Note when it was last updated.
24
00:02:23,000 --> 00:02:36,000
Look at the number of active installs, explore their support and documentation and double check that it is compatible with the latest version of WordPress.
25
00:02:36,000 --> 00:02:44,000
Number five, keep your plugins and themes up to date and remember to back up your site before updating.
26
00:02:44,000 --> 00:02:46,000
But you might be asking why.
27
00:02:46,000 --> 00:02:55,000
Keeping your WordPress themes and plugins up to date is important for maintaining the security, stability and compatibility of your site.
28
00:02:55,000 --> 00:03:04,000
Updates often include security patches that fix vulnerabilities in software as well as bug fixes that could cause your site to malfunction or break.
29
00:03:04,000 --> 00:03:11,000
These bugs could also potentially be exploited by attackers to gain unauthorized access to your site.
30
00:03:11,000 --> 00:03:21,000
By keeping your website up to date, you can ensure that your site is protected against the latest security threats and runs smoothly with the latest web technologies.
31
00:03:24,000 --> 00:03:34,000
Number six, install a security plugin like WordFence, Jetpack Security or iThemes that will scan your site for any reported vulnerabilities.
32
00:03:34,000 --> 00:03:45,000
There are also many other plugins available in the plugins directory worth exploring such as patch stack, all-in-one security, etc.
33
00:03:45,000 --> 00:03:55,000
A website security plugin can help protect your website from common cyber threats, block malicious traffic and alert you to potential security issues.
34
00:03:55,000 --> 00:04:02,000
In essence, a security plugin will help you maintain the security and integrity of your website.
35
00:04:02,000 --> 00:04:07,000
And finally number seven, something for more advanced users.
36
00:04:07,000 --> 00:04:18,000
Follow security-focused blogs like patch stack, WP scan or blog.security which report any new vulnerabilities for which there are updates as well as emerging web threats.
37
00:04:18,000 --> 00:04:21,000
Then there are also some other steps worth exploring.
38
00:04:21,000 --> 00:04:23,333
Firstly, choosing a reliable web host.
39
00:04:23,333 --> 00:04:35,000
Secondly, installing an SSL certificate if your host has not already installed one which will allow you to enable HTTPS which ensures that no information is passed in plain text.
40
00:04:35,000 --> 00:04:42,000
And thirdly, using a spam detector, especially if you have a blog or allow comments on posts.
41
00:04:42,000 --> 00:04:47,000
All the best keeping your site safe and secure.
Reference in a new issue View git blame Copy permalink