To CloudFlare or not CloudFlare

Direct Quote from CloudFlare: CloudFlare protects and accelerates any website online. Once your website is a part of the CloudFlare community, its web traffic is routed through our intelligent global network. We automatically optimize the delivery of your web pages so your visitors get the fastest page load times and best performance. We also block threats and limit abusive bots and crawlers from wasting your bandwidth and server resources. The result: CloudFlare-powered … [Read more...]

Password protects wp-admin directory

Password protects your wp-admin directory is one of recommended security measures to harden security-leaking WordPress websites. It is a very simple effective security measure but it also has potential to disrupt the rendering of the WordPress site because the security-mind-seriously-lacking developers (kind of reminding us the well-known company whose software indirectly created the billion dollar anti-virus industry) have insisted on calling some functions for regular … [Read more...]

Protect your wp-admin – WordPress admin security

Your WordPress admin account is a glowing target for crackers.  One suggested way to improve WordPress admin security is NOT to use admin as your admin username. If you are currently using admin as username, don't worry.  You can still change it. create a new hard-to-guess username Change it to admin Demote admin username to user or subscriber. Don't delete it, use it a decoy. Other things to consider Never use the admin account to post news or blogs - … [Read more...]

Profile Builder Pro for total registration spam elimination

If you were using the Profile Builder for user login Tip from Profile Builder basic version, you would have dramatically cut down computer-generated registration spams and you would be so relieved of not having to see so many spams filled in your mailbox. But Profile Builder basic is not 100% spam proof, you will get spams, if certain scripting kids, who have no life, have learned your trick by using different first and last names. You will not get a large volume of … [Read more...]

Profile Builder for Registration Spam Elimination

If you are reading this, you are likely having dubious honor of getting flooded with registration spams. WordPress backend registration maybe is the most spam friendly ever conceived by a reputable software. You may have tried all the spam fighting plugins in the plugins depository/directory, but spams continue to pour in. Without resorting to spam checking sites (not as effective as you would like to see), you can effectively stop registration by spambots using Profile … [Read more...]

Move Username and Password Outside of WP Web Tree

WordPress, like many other CMS’s, stores MySQL username and password in a configuration file, in WP case, wp-config.php. Although WP PHP code is interpreted at the server, the user name/password combination is unlikely to be shown in a web browser. But it really not wise to store the combination in a publicly accessible place. Should the server stop interpreting PHP for some reasons, the combination would be available in plain view and readable by the world. This TIP … [Read more...]