WP Security Plugins

Community Forums Forums Design Tips and Tricks WP Security Plugins

This topic is: not resolved

This topic contains 5 replies, has 5 voices, and was last updated by  coralseait 9 months, 4 weeks ago.

Viewing 6 posts - 1 through 6 (of 6 total)
  • Author
  • #72289


    I’m reaching out to the community to refine my understanding of what’s available in WP security plugins.

    In the past I’ve launched new WP sites using a combination of WebsiteDefener and Bulletproof Security, mainly focusing on basic configurations like renaming the WP database prefix and modifying .htaccess (to name a few things).

    In the meantime I’ve learned what a pain in the ass Bulletproof Security can be, so I’ve ditched that.

    Learned from Brad Dalton about Wordfence Security, and am considering giving it a whirl.

    Curious if anyone here would like to chime in about the most important bases to cover re: WP security, and how to go about doing it (plugin recommendations?), etc. If your answer is a link to a blog post on security, then so be it.



    I’m with Brad re: Wordfence – it’s a great plugin and it’s very easy to set up and use. I have never (knock on wood) had a client get hacked with Wordfence activated.

    Andrea Whitmer, Owner/Developer, Nuts and Bolts Media
    I provide development and training services for designers • Find me on Twitter and Google+



    I realize this is a few months later, but I have always used WP Security. For whatever reason, it is not working with one client site using the Agency theme. Even at the lowest level of settings it is generating all kinds of errors! I will check out Wordfence.



    Did you go with Ringfence in end?



    oops Typo earlier – meant wordfence



    We’ve moved to iThemes Security mainly because they support both Apache and Nginx out-of-the-box. Prior to that was a combo of iThemes (formerly Better WP Security) and Bulletproof Security.

    However, we found the overlap with iThemes and BPS was not necessary and that iThemes supported both Apache in our shared hosting stacks and Nginx in our custom / high performant VPS stacks it was better to standardise on the single tool; and made moving sites between stacks very easy without having to reconfigure multiple plugins.

    As to general security:

    1) Use a good tool, again we like iThemes
    2) Use UpdraftPlus with auto-backup turned on to multiple cloud partners
    3) Keep core and plugins always up to date. With #2, failed updates and/or white-screens-of-death are not a worry so you’re more inclined to keep things current

Viewing 6 posts - 1 through 6 (of 6 total)

You must be logged in to reply to this topic.