Uyikhusela njani i-WordPress ngamanyathelo alula ali-10

Uyikhusela njani iwebhusayithi yakho yeWordPress

Ngaba uyazi ukuba ngaphezulu kwe-90,000 hacks izanywa umzuzu ngamnye kwiziza zeWordPress kwihlabathi liphela? Ewe, ukuba unayo iwebhusayithi ene-WordPress, loo mgaqo kufuneka ukhathazeke. Ayinamsebenzi ukuba uqhuba ishishini elincinci. Abagculi ababandlululi ngokusekwe kubungakanani okanye ukubaluleka kwewebhusayithi. Bajonge kuphela nakuphi na ukuba semngciphekweni okunokuthi kusetyenziselwe inzuzo yabo.

Usenokuzibuza- kutheni le nto abahlaseli bejolise kwiindawo ze-WordPress kwindawo yokuqala? Bafumana ntoni ngokuzixakekisa ngokwenza ezo zinto zimbi? 

Masifumanise.

Kutheni le nto iiHacker Target WordPress Sites?

Yiba kwi-WordPress okanye naliphi na iqonga; akukho webhusayithi ikhuselekile kubagculeli. Ukuba ngowona iqonga leCMS elidumileyoIiWebhusayithi zeWordPress zithandwa ngabaphangi. Nantsi into abayenzayo:

  • Fumanisa entsha ukhuseleko lokukhusela, ekulula ukuzifumana kwiindawo ezincinci. Nje ukuba umgwebi afunde malunga nabuphi na ubuthathaka okanye ukuba sesichengeni, banokusebenzisa ulwazi lwabo ukujolisa kwiiwebhusayithi ezinkulu kunye nokwenza umonakalo ongaphezulu.
  • Phinda uthumele ukugcwala kwabantu abangenayo kwiiwebhusayithi ezingacelwanga. Esi sisizathu esiqhelekileyo sokujolisa kwiindawo ezinabantu abaninzi, ngenxa yoko iwebhusayithi yokwenyani inokuphulukana nabo bonke abasebenzisi bayo kwenye iwebhusayithi ekrokrisayo.
  • Yenza imali okanye yenza imali ukusuka ekuthengiseni iimveliso ezingekho mthethweni kwiindawo zokwenyani okanye ngeendlela ezingalunganga ezifana ne -hlengware okanye imayini ye-crypto.
  • Ukufumana ukufikelela kubukrelekrele okanye idatha eyimfihlo njengedatha yabathengi, idatha yeshishini labucala, okanye iirekhodi zenkampani. Abagculi bangaqhubeka nokuthengisa le datha ibiweyo ngemali okanye bayisebenzise kuyo nayiphi na inzuzo engafanelekanga yokukhuphisana.

Ngoku ekubeni sisazi ukuba abahlaseli banokuzuza njani kwi-hack eyimpumelelo okanye kulungelelwaniso, masiqhubeke sixoxe ngeendlela ezilishumi ezivavanyiweyo zokuvavanywa ukukhusela indawo yeWordPress.

Iindlela ezili-10 eziQinisekisiweyo zokuKhusela iSayithi lakho

Ngethamsanqa ngeWordPress, kukho iindlela ezahlukeneyo onokuzisebenzisa ukuphakamisa ukhuseleko kwiwebhusayithi. Elona candelo lilungileyo malunga nezi ndlela kukuba uninzi lwazo aluntsonkothanga kwaye lunokuphunyezwa nangowuphi na umsebenzisi weWordPress ongumsebenzisi. Ke, masiqale. 

Inyathelo 1: Hlaziya i-WordPress yakho yeCore kunye neePlagi kunye neMixholo

Iinguqulelo zeWordPress ezidlulileyo, kunye neeplagi ezindala kunye nemixholo ziphakathi kwezizathu eziqhelekileyo zokuba isiza seWordPress singene phakathi. Abagculi bahlala bexhaphaza iibhugi ezinxulumene nokhuseleko kwi-WordPress yangaphambili kunye neenguqulelo / zeenguqulelo zomxholo ezisasebenza kuninzi lweendawo zeWordPress.

Owona mkhuseli wakho kwesi sisongelo kukuhlaziya rhoqo inguqulelo yeCore WordPress yakho kunye nokuhlaziya kwiinguqulelo zamva nje zeeplagi / imixholo efakiweyo. Ukwenza oku, yenza ukuba ukusebenza kwe "Auto Update" kwiakhawunti yakho ye-WordPress yolawulo okanye uthathe isitokhwe kuzo zonke iiplagi / imixholo yakho efakiweyo ngoku.

Inyathelo 2: Sebenzisa uKhuselo loMlilo 

Abagculi bahlala behambisa i-bots ezenzekelayo okanye izicelo ze-IP zokufumana ukufikelela kwiindawo zeWordPress. Ukuba bayaphumelela ngale ndlela, imigewu inokonakalisa owona monakalo kuyo nayiphi na indawo. Iindonga zomlilo zeWebhusayithi zakhiwe zichonga izicelo ze-IP ezivela kwiidilesi ze-IP ezisolisayo kwaye zivimba ezo zicelo ngaphambi kokuba zifike kwiseva yewebhu.

firewall
I-Firewall. Ulwazi ngokhuseleko lolwazi. Iteknoloji yecala elizimeleyo emhlophe

 Unokuphumeza ukhuseleko lomlilo kwiwebhusayithi yakho ngokukhetha:

  • Iindonga zomlilo ezakhiweyo -Kuvela kwinkampani yakho yokubamba iwebhu
  • Iifluwwall ezisekwe kwilifu -Banjwe kumaqonga angaphandle amafu
  • Iiplawwall ezisekwe kwiplagi -Ingafakwa kwindawo yakho yeWordPress

Inyathelo 3: Skena kwaye ususe nayiphi na i-Malware

Abagculi baqhubeka nokuza nezinto ezahlukeneyo ze-malware ukuyekisa indawo. Ngelixa enye i-malware inokubangela ukonakala ngokukhawuleza kwaye ikhubaze iwebhusayithi yakho, ezinye ziyinkimbinkimbi kwaye kunzima ukuzibona nakwiintsuku okanye iiveki. 

Olona khuseleko lubalaseleyo kwi-malware kukuskena rhoqo iwebhusayithi yakho kuyo nayiphi na intsholongwane. Iiplagi eziphambili ze-WordPress zokhuseleko NjengeMalCare kunye ne-WordFence zilungile ekufumaneni kwangoko kunye nokucocwa kwe-malware. Ezi plugins zokhuseleko kulula ukuzifaka kunye nokuzenza nakubasebenzisi abangafundanga.

isoftwe

Inyathelo 4: Sebenzisa uMgcini weWebhu okhuselekileyo nothembekileyo 

Ukongeza kwiinguqulelo ze-WordPress eziphelelwe lixesha kunye neeplagi / imixholo, ukuseta ukusingathwa kwewebhu kunentetho ebalulekileyo kukhuseleko lwewebhusayithi yakho. Umzekelo, abagculi bahlala bejolisa kwiiwebhusayithi kwindawo yokubamba ekwabelwana ngayo ekwabelana ngeserver efanayo kwiiwebhusayithi ezininzi. Nangona ukwabiwa okwabelwanayo kungabizi mali ininzi, abahlaseli banokuchaphazela ngokulula iwebhusayithi enye ebanjelweyo kwaye basasaze usulelo kuzo zonke ezinye iwebhusayithi.

Ukuba kwicala elikhuselekileyo, khetha isicwangciso sokubamba iwebhu esineempawu ezihlanganisiweyo zokhuseleko. Gwema imikhosi ekwabelwana ngayo kwaye, endaweni yoko, yiya kwiVPS esekwe okanye ephethwe ngokusingathwa kweWindowsPress.

Inyathelo 5: Thatha ugcino olupheleleyo lweSiza sakho seWindowsPress

I-backups zeWebhusayithi zinokusindisa ubomi ukuba kukho into ehamba newebhusayithi yakho. I-WordPress i-backups igcina ikopi yewebhusayithi yakho kunye neefayile zedatha kwindawo ekhuselekileyo. Kwimeko yokuqhekeka ngempumelelo, unokubuyisela ngokulula iifayile zokulondoloza kwiwebhusayithi yakho kwaye usebenze ngokukuko ukusebenza kwayo.

I-WordPress i-backups inokwenziwa ngeendlela ezahlukeneyo, kodwa eyona ndlela ilungileyo yabasebenzisi abangasebenzisi teknoloji kukugcina iiplagi ezinje nge BlogVault okanye iBraudBuddy. Kulula ukuyifaka kunye nokuyisebenzisa, ezi iplagi zokwenza ukhuphelo zinokuzenzekelayo kwimisebenzi enxulumene nesipele ukuze uhlale ujonge kwimisebenzi yakho yemihla ngemihla.

Inyathelo 6: Khusela iphepha lakho lokungena kwiWindowsPress

Phakathi kwamaphepha ewebhu aqhelekileyo ajolise kubaduni, iphepha lakho lokungena kwiWordPress linokubonelela ngokufikelela ngokulula kwiiakhawunti zakho eziyimfihlo. Besebenzisa ubukrelekrele bokuhlasela, abagxeki bathumela i-bots ezenzekelayo ephindaphinda ukuzama ukufikelela kwiakhawunti yakho ye-WordPress "admin" kwiphepha lokungena.

Zininzi iindlela zokukhusela iphepha lakho lokungena. Umzekelo, unokufihla okanye utshintshe i-URL yakho yokungena ngokungagqibekanga, eqhelekileyo www.mysite.com/wp-admin. 

Iiplagi zephepha lokungena kwiWordPress ezidumileyo ezinje nge "Umxholo wokuNgena kwam" zenza ukuba ufihle (okanye utshintshe) iphepha lakho lokungena ngokulula.

Inyathelo 7: Khipha nayiphi na iplagi engasetyenziswanga okanye engasebenziyo kunye neMixholo

Njengoko bekutshiwo ngaphambili, iiplagi / imixholo inokubonelela ngesango elilula labagculi ukuba benze umonakalo kwindawo yakho yeWordPress. Oku kuyinyani ngokulinganayo kuzo naziphi na iiplagi ezingasetyenziswanga okanye ezingasebenziyo kunye nemixholo. Ukuba ufake inani elikhulu lezi zinto kwindawo yakho kwaye awusazisebenzisi, kuyacetyiswa ukuba uzisuse okanye ubeke endaweni yazo ii-plugins / imixholo esebenzayo ngakumbi.

Uyenza njani le nto? Ngena kwiakhawunti yakho yeWordPress njenge admin umsebenzisi kwaye ujonge uluhlu lweefowuni ezifakiweyo ngoku / imixholo. Cima zonke iiplagi / imixholo engasasebenziyo.

Inyathelo 8: Sebenzisa iiPassword ezinamandla

Ngaba oku akufuneki kucace? Okwangoku, sisenawo amagama okugqitha abuthathaka njenge inombolo yokuvula kwaye 123456 iyasetyenziswa. Abagculeli bahlala bexhaphaza iiphasiwedi ezibuthathaka ukuze benze uhlaselo olunamandla.

iphasiwedi eqinile

Kubo bonke abasebenzisi bakho be-WordPress, sebenzisa ezinye izikhombisi Sebenzisa iiphasiwedi ubuncinci boonobumba abasi-8, ngokudityaniswa koonobumba abakhulu nabancinci, i-alphanumerics, kunye nabalinganiswa abakhethekileyo. Inyathelo lokongezwa elongezelelweyo kufuneka libe kukutshintsha iipassword zakho zeWordPress ubuncinci kube kanye kwiinyanga ezintathu.

Inyathelo 9: Fumana iSatifikethi se-SSL kwiWebhusayithi yakho

Mfutshane kuLuhlu lweZiseko eziKhuselekileyo, isatifikethi se-SSL sinyanzelekile kwiwebhusayithi yonke, kubandakanya neendawo zeWordPress. Kutheni le nto ithathwa njengekhuselekileyo? Yonke iwebhusayithi eqinisekisiweyo ye-SSL ibethela ulwazi oludluliswayo phakathi kweseva yewebhu kunye nesikhangeli somsebenzisi. Oku kwenza ukuba kubenzima kubaduni ukuba babambe kwaye bebe le datha iyimfihlo. Yintoni egqithisile? Ezi webhusayithi ziyathandwa nguGoogle kwaye zifumana indawo ephezulu kaGoogle.

ikhuselekile https ssl
Idilesi ye-Intanethi ikhuselekile ukubonisa kwiscreen se-lcd.

Unokufumana isatifikethi se-SSL kumnikezeli wewebhu yakho yokubamba indawo yakho. Ngenye indlela, ungafaka izixhobo ezinjenge-Encrypt kwiwebhusayithi yakho yesatifikethi se-SSL.

Inyathelo 10: Sebenzisa ukuQiniseka kweWebhusayithi yeWordPress 

Inyathelo lokugqibela kukuhambisa amanyathelo okomelela kwiwebhusayithi amiselwe yiWordPress. Ukuqina kweWebhusayithi yeWordPress iquka amanyathelo aliqela abandakanya:

  • Ukukhubaza inqaku lokuhlela ifayile ukunqanda ukungena kwekhowudi enobungozi kwiifayile zakho zeWordPress ezibalulekileyo
  • Ukukhubaza ukwenziwa kwefayile ye-PHP ethintela abahlaseli ekusebenziseni iifayile ze-PHP eziqukethe nayiphi na ikhowudi enobungozi
  • Ukufihla inguqulelo yeWordPress ethintela abahlaseli ekufumaneni ingxelo yakho yeWordPress kunye nokukhangela nakuphi na ukuba sesichengeni
  • Ukufihla i-wp-config.php kunye neefayile .htaccess ezisetyenziswa ngokuxhaphakileyo ngabagculeli ukonakalisa indawo yakho yeWordPress

Ukuququmbela

Akukho sayithi yeWordPress, enkulu okanye encinci, ekhuseleke ngokupheleleyo kubaduni kunye nakwi-malware. Nangona kunjalo, unokuwaphucula amanqaku akho okhuseleko ngokulandela ngalinye lala manyathelo alishumi achazwe kweli nqaku. La manyathelo kulula ukuwenza kwaye awufuni naluphi na ulwazi lobuchwephesha.

Ukwenza izinto zibe lula, uninzi lweeplagi zokhuseleko zidibanisa uninzi lwezi zinto, njengokukhusela i-firewall, ukuskena okucwangcisiweyo, ukususwa kwe-malware, kunye nokuqina kwewebhusayithi kwimveliso yazo. Sincoma kakhulu ukwenza ukhuseleko lwewebhusayithi lube yinxalenye yakho Uluhlu lokujonga lwewebhusayithi

Sazise ukuba ucinga ntoni kolu luhlu. Ngaba siphoswe ngamanye amanyathelo okhuseleko abaluleke kakhulu? Sazise kwizimvo zakho.

Ingaba ucinga ntoni?

Le sayithi isebenzisa i-Akismet ukunciphisa ugaxekile. Funda indlela idatha yakho yokubhaliweyo isetyenziswe ngayo.