Studio-Archive/beginner-wordpress-user
0
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
beginner-wordpress-user/subtitles/Getting started with WordPress security.bilingual.en-zh.srt
studio 4cfcf09a97 sync: full archive from pipeline (250 files) 
Sources: video-subtitle-pipeline artifacts/beginner-wordpress-user/
- subtitles/: en, zh, bilingual SRT/ASS (100 files)
- platform/: youtube SRT + bilibili BCC per video (75 files)
- manifests/: per-video manifest.json (25 files)
- quality/: quality reports (50 files)
2026-04-13 23:35:08 +08:00

395 lines
13 KiB
Text
Raw Permalink Blame History

This file contains ambiguous Unicode characters

This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

1
00:00:00,000 --> 00:00:03,349
在本课中,我们将引导你完成基本步骤,
In this lesson, we will walk you through essential steps
2
00:00:03,349 --> 00:00:08,000
为你的新 WordPress 网站建立坚实的安全基础。
to establish a strong security foundation for your new WordPress website.
3
00:00:08,000 --> 00:00:14,000
这些做法将确保你的在线形象安全可靠。让我们开始吧。
These practices will ensure your online presence is safe and secure. Let's get started.
4
00:00:15,000 --> 00:00:18,000
以下是本课的学习成果。
Here are the learning outcomes for this lesson.
5
00:00:18,000 --> 00:00:26,304
保持网站更新,选择安全的托管提供商,设置强密码,使用双重认证,
Keeping your site up-to-date, selecting a secure hosting provider, choosing a robust password, using two-factor authentication,
6
00:00:26,304 --> 00:00:33,000
安装并启用安全插件,最后,控制谁有权访问你的网站。
installing and activating a security plugin, and lastly, controlling who has access to your site.
7
00:00:34,000 --> 00:00:37,143
对于 WordPress 安全来说,最重要的事情
The most important thing to do for WordPress security
8
00:00:37,143 --> 00:00:42,000
是保持 WordPress 本身以及所有已安装的插件和主题处于最新状态。
is to keep WordPress itself and all installed plugins and themes up-to-date.
9
00:00:42,000 --> 00:00:46,000
你会很高兴听到 WordPress 会自动应用安全更新。
You will be happy to hear WordPress automatically applies security updates.
10
00:00:46,000 --> 00:00:55,000
自 WordPress 5.6 版本发布以来,每个新站点都自动启用了次要和主要版本的更新。
Since the WordPress 5.6 release, every new site has updates automatically enabled for both minor and major releases.
11
00:00:55,000 --> 00:01:01,000
也鼓励用户选择那些正在积极接收更新的主题和插件。
It is also encouraged for users to choose themes and plugins that are actively receiving updates.
12
00:01:02,000 --> 00:01:06,000
接下来,选择合适的托管公司至关重要。
Next, selecting the right hosting company is crucial.
13
00:01:06,000 --> 00:01:09,088
在为你的网站选择托管提供商时,
When choosing a hosting provider for your website,
14
00:01:09,088 --> 00:01:13,000
请确保他们包含能保护你网站安全的功能。
make sure they include security features that will keep your site safe.
15
00:01:13,000 --> 00:01:16,000
以下是你希望他们包含在其服务中的一些功能。
Here are some features you would want them to include in their offerings.
16
00:01:16,000 --> 00:01:21,000
请注意,有些主机可能会额外收费来提供这些服务。
And please note, some hosts might charge more to include these services.
17
00:01:21,000 --> 00:01:28,000
第一,一个防火墙来屏蔽可疑活动,以确保只有正确的流量进入你的网站。
Number one, a firewall to block suspicious activities to ensure only the right traffic enters your website.
18
00:01:28,000 --> 00:01:30,000
第二,恶意软件防护。
Number two, malware protection.
19
00:01:30,000 --> 00:01:36,000
这就像有一个保安,检查所有进来的东西是否有有害的错误或病毒。
This is like having a security guard who checks everything coming in for any harmful bugs or viruses.
20
00:01:36,000 --> 00:01:43,000
恶意软件防护会定期扫描你的网站,以移除任何可能危害你站点或访问者的恶意软件。
Malware protection scans your website regularly to remove any malicious software that could harm your site or visitors.
21
00:01:44,000 --> 00:01:46,045
第三SSL 证书,
Number three, an SSL certificate,
22
00:01:46,045 --> 00:01:54,000
它包含一个加密代码,确保你的网站和访问者之间发送的所有信息都是安全的。
which includes an encryption code that ensures all information sent between your website and your visitors is secure.
23
00:01:54,000 --> 00:01:58,000
SSL 代表安全套接字层。
SSL stands for secure sockets layer.
24
00:01:58,000 --> 00:02:05,000
第四,定期备份,这意味着你的网站内容和数据会被定期保存。
Number four, regular backups, as this means your website's content and data are saved regularly.
25
00:02:05,000 --> 00:02:10,000
如果出现问题,你可以将你的网站恢复到之前完好的状态。
If something goes wrong, you can restore your website to a previous healthy state.
26
00:02:10,000 --> 00:02:13,000
第五DDoS 防护。
Number five, DDoS protection.
27
00:02:13,000 --> 00:02:19,000
这有助于你的站点处理流量激增,确保它不会崩溃或变慢。
This helps your site handle surges in traffic, ensuring it doesn't crash or slow down.
28
00:02:19,000 --> 00:02:23,000
DDoS 代表分布式拒绝服务。
DDoS stands for distributed denial of service.
29
00:02:24,000 --> 00:02:28,000
最后,你需要 SFTP 访问权限。
And then lastly, you want SFTP access.
30
00:02:28,000 --> 00:02:34,000
这就像拥有一个特殊的加密隧道,用于向你的网站传输文件或从网站传出文件。
This is like having a special secure tunnel for transferring files to and from your website.
31
00:02:34,000 --> 00:02:41,000
它确保你的文件被安全地移动,不会被未经授权的方拦截。
It ensures that your files are moved safely without being intercepted by unauthorized parties.
32
00:02:41,000 --> 00:02:46,000
SFTP 代表安全文件传输协议。
SFTP stands for secure file transfer protocol.
33
00:02:46,000 --> 00:02:50,000
接下来,必须建立一个强健的密码。
Next, it's imperative to establish a robust password.
34
00:02:50,000 --> 00:02:53,000
密码是保护你网站的关键。
Passwords are key for safeguarding your website.
35
00:02:53,000 --> 00:02:58,000
你的密码是你在网上所做一切安全中最薄弱的一环。
Your password is the weakest link to the security of anything you do online.
36
00:02:58,000 --> 00:03:03,000
如果你的密码容易被猜到,你的在线身份就很脆弱。
If your password is easy to guess, your online identity is vulnerable.
37
00:03:03,000 --> 00:03:07,000
请确保不要使用简单或可预测的密码。
Make sure you don't use simple or predictable passwords.
38
00:03:07,000 --> 00:03:18,000
相反,请确保您的密码包含大小写字母、密码短语、数字和特殊字符的组合。
Instead, make sure your passwords include a mix of uppercase and lowercase letters, passphrases, numbers and special characters.
39
00:03:18,000 --> 00:03:24,000
目标是长度至少为 12 个字符,您也可以使用空格。
Aim for a length of at least 12 characters and you can also use spaces.
40
00:03:24,000 --> 00:03:30,000
避免使用生日、昵称或其他个人信息作为密码。
Avoid using birth dates, nicknames or other personal information as a password.
41
00:03:30,000 --> 00:03:37,000
让我们看一个易于记忆但难以猜测的密码的快速示例。
Let's look at a quick example of a password that is easy to remember but hard to guess.
42
00:03:37,000 --> 00:03:40,000
密码是“monks drive to the beach”。
The password is monks drive to the beach.
43
00:03:40,000 --> 00:03:46,500
但当然,我已经包含了特殊字符、大写字母、小写字母、数字、空格等等。
But of course, I've included special characters, capital letters, lowercase, numbers, spaces, etc.
44
00:03:46,500 --> 00:03:53,000
您也可以在完成工作后注销来保护您的账号。
You can also protect your account by logging out when you're finished working.
45
00:03:53,000 --> 00:03:57,000
在共享或公共计算机上工作时,这一点尤其重要。
This is especially important when working on a shared or public computer.
46
00:03:57,000 --> 00:03:59,769
如果您不注销,别人就能访问您的账号,
If you don't log out, someone can access your account
47
00:03:59,769 --> 00:04:03,000
只需查看浏览器历史记录并返回到您的仪表盘。
by viewing the browser history and returning to your dashboard.
48
00:04:03,000 --> 00:04:10,000
另一个值得提及的步骤是启用双重认证来抵御暴力攻击。
Another step worth mentioning is to enable two-factor authentication to fend off brute force attacks.
49
00:04:10,000 --> 00:04:12,824
暴力攻击是一种黑客方法,
A brute force attack is a hacking method
50
00:04:12,824 --> 00:04:18,000
它使用试错法来破解密码、登录凭证和加密密钥。
that uses trial and error to crack passwords, login credentials and encryption keys.
51
00:04:18,000 --> 00:04:21,375
双重认证通常涉及输入一个代码,
Two-factor authentication usually involves entering a code or interacting with an application on a smartphone
52
00:04:21,375 --> 00:04:27,000
或在智能手机上与应用程序交互,当你尝试登录服务时。
when attempting to log into a service.
53
00:04:27,000 --> 00:04:29,000
在本例中,就是 WordPress。
In this case, WordPress.
54
00:04:29,000 --> 00:04:33,000
WordPress 默认不提供双重认证。
WordPress does not have two-factor authentication by default.
55
00:04:33,000 --> 00:04:39,000
不过,有几款插件可以为自托管的 WordPress 网站提供双重认证。
However, there are several plugins that provide two-factor authentication for self-hosted WordPress websites.
56
00:04:39,000 --> 00:04:45,000
这就引出了下一个重要话题,即安全插件。
And that leads to the next important topic, namely security plugins.
57
00:04:45,000 --> 00:04:50,000
通过安装 WordPress 安全插件来进一步增强你的安全性。
Enhance your security further by installing a WordPress security plugin.
58
00:04:50,000 --> 00:04:55,000
许多安全插件也包含双重认证功能。
Many security plugins also include two-factor authentication.
59
00:04:55,000 --> 00:05:01,000
WordPress 安全插件是保护你网站免受网络威胁的重要工具。
WordPress security plugins are essential tools that safeguard your website from cyber threats.
60
00:05:01,000 --> 00:05:08,000
它们提供实时监控,防止暴力攻击,提供防火墙保护并扫描恶意软件。
They provide real-time monitoring, prevent brute force attacks, offer firewall protection and scan for malware.
61
00:05:08,000 --> 00:05:14,000
这些插件增强了登录安全性,确保只有授权用户才能访问您的网站。
These plugins enhance login security, ensuring only authorized users can access your site.
62
00:05:15,000 --> 00:05:20,000
最后,控制谁可以访问您的网站至关重要。
Finally, controlling who has access to your site is essential.
63
00:05:20,000 --> 00:05:22,545
虽然每个站点只有一个所有者,
While each site has only one owner,
64
00:05:22,545 --> 00:05:26,000
但您可以让其他用户来分担部分管理负担。
you can have other users to share some of their administrative load.
65
00:05:26,000 --> 00:05:31,000
然而,分担负担也意味着分担责任。
However, sharing the load also means sharing the responsibilities.
66
00:05:31,000 --> 00:05:38,000
WordPress 提供了不同的用户角色,例如贡献者、作者、编辑和管理员。
WordPress provides different user roles such as contributor, author, editor and administrator.
67
00:05:38,000 --> 00:05:41,000
贡献者的角色限制最多。
Contributors have the most limited role.
68
00:05:41,000 --> 00:05:44,000
他们只能起草文章,但不能发布。
They can only draft posts but can't publish them.
69
00:05:44,000 --> 00:05:50,000
作者可以发布文章和上传图片,但不能编辑其他用户的文章。
Authors can publish posts and upload images but can't edit other users' posts.
70
00:05:50,000 --> 00:05:59,000
编辑可以编辑或发布任意用户的文章,管理评论以及管理分类和标签。
Editors can edit or publish any users' posts, moderate comments and manage categories and tags.
71
00:05:59,000 --> 00:06:03,000
最后,管理员拥有对站点的完全控制权。
Lastly, administrators have full control of a site.
72
00:06:03,000 --> 00:06:05,000
他们甚至可以删除它。
They can even delete it.
73
00:06:05,000 --> 00:06:09,000
因此,建议每个站点只设一名管理员。
And it is therefore recommended that each site only has one administrator.
74
00:06:10,000 --> 00:06:15,077
请根据用户所需的访问级别,谨慎分配这些角色,
Assign these roles carefully based on the level of access users need
75
00:06:15,077 --> 00:06:22,000
并避免授予不必要的管理员权限,以防发生意外或未经授权的更改。
and avoid giving unnecessary administrator privileges to prevent potential mishaps or unauthorized changes.
76
00:06:22,000 --> 00:06:29,298
通过选择安全的主机、使用 WordPress 安全插件以及双重认证,
By choosing secure hosting, utilizing WordPress security plugins as well as two-factor authentication,
77
00:06:29,298 --> 00:06:35,000
创建强密码并管理用户角色,你将显著增强网站的保护。
creating strong passwords and managing user roles, you will significantly enhance your website's protection.
78
00:06:35,000 --> 00:06:41,000
请注意,我们不认可本视频教程中提及的任何主题或插件。
And please note, we do not endorse any of the themes or plugins mentioned in this video tutorial.
79
00:06:41,000 --> 00:06:43,000
它们仅仅是示例。
They are merely examples.
Reference in a new issue View git blame Copy permalink