I hate to do it. Tempt the fates that is. After weeks of effort, lost time, missed billables, disappointed clients and frustrated days — I think I am free. Virus free that is.
And even as I am writing this post, I feel a tremor in my loins. A quick check of my site in my FTP program shows a cache directory I didn’t update! Run the file permissions recursed into subfolders and update the .htaccess file to protect the directory. Am I ready? Maybe.
Not sure why some people feel the overwhelming need to trash someone else’s hard work, but it’s a fact of life. And one you better be prepared to guard against.
To help you with this, I have been posting some Defend Your Blog type posts. Today is the latest one, a new plugin I found that will help you evaluate your security and make suggestions where you are vulnerable.
WP Security Scan
WP Security Scan will scan your WordPress installation for security vulnerabilities and suggest corrective actions. And though some of the suggestions are a little vague, some are spot on and specific.
This plugin checks:
- passwords (for strength)
- file permissions within your installation
- Database security
- Version hiding
- Admin protection and security
For me, this was an education on additional things to do to my site to secure it, and now that I know what to do, I will be doing these things on other blogs without installing the plugin. Just one or two blogs? Install WP Security Scan and follow what it says!