24 Sep

11 Best WordPress Plugins To Improve the Security of your Blog

WordPress Security Plugins


WordPress is one of the most popular platform for millions of sites all over the world. Though WordPress is a secure piece of software but there is always a concern among bloggers to improve the security of their WordPress blog. As WordPress is a Open Source software, everybody has access to its Source Code and thus it is a prime target for hackers.

WordPress Security Plugins

But with little effort, you can protect your WordPress website using following Security plugins:

1) Wordfence Security:

Wordfence Security is a free security plugin that provides firewall protection, continuous anti-virus scanning, malicious URL scanning and live traffic updates including crawlers for your WordPress blog. It sends you a Email everytime if somebody tries to access your admin area, or if you have a maliciois link on your blog. This plugin will lock out users after ‘n’ no. of unsuccessful login attempts. You can also block certain IPs from the plugin itself. Wordfence Security Plugin can verify & repair your core, theme & plugin files, even if you don’t have backups.
It is one stop solution for your Security needs on WordPress platform.

2) WP Email Login:

For better security on your WordPress blog, set your username to something random, and then just forget it and use your email address instead to log into your WordPress with the help of this plugin.

3) Google Authenticator:

The Google Authenticator WordPress plugin provides you 2-Step authentication using the Google Authenticator application for Android/iPhone/Blackberry. You can also try IM Login Dongle that adds two way authentication via selected instant messenger.

4) Bulletproof Security:

It provides one-click .htaccess WordPress security protection and protects your WordPress site against XSS, CRLF, CSRF, RFI, Base64, Code Injection and SQL Injection hacking attempts.

5) VIP Scanner:

It scans all sorts of themes and files and things for any problems or malicious code injected into your templates.

6) WP Updates Notifier:

If you don’t log into your WordPress dashboard regularly, then this plugin is for you. It sends email to notify you if there are any updates for your WordPress website such as core updates, plugin and theme updates.

7) Exploit Scanner

This plugin searches the files on your WordPress site, active plugins and the posts and comments tables of your database for anything suspicious and notifies the administrator for all the changes.

8) WordPress Sentinel

Another plugin that tracks all files in a WordPress installation (core, themes, plugins) & notifies the administrator of any files that have changed in any way.

9)Login Dongle

Login Dongle adds an extra layer of security on your blog by means of a security question on the Admin area.

10) Lockdown WP Admin

This plugin can hide wp-admin and wp-login as well as add HTTP auth to the login system. You can change the WordPress Login URL and when someone tries to access http://yourwebsite.com/wp-admin/, it will show a 404 error page instead of redirecting to the login page. As most of the hacking attempts are auto-generated on wp-admin URL, this plugin can add an extra layer of security.

11) Secure WordPress

Secure WordPress improves the security of your WordPress website by removing error information on login pages, adds index.html to plugin directories, hides the WordPress version & much more.

12) Login Security Solution

This plugin provides security against brute force attacks by tracking IP, name, and passwords. Idle timeout. Maintenance mode lockdown.

Share your thoughts about which plugin you’re using to improve the security of your WordPress site.

09 Sep

How To Add Top Commentators Widget in WordPress

Top Commentators Plugin


Displaying Top Commentators Widget on your blog is a great way to reward your commentators and bring back readers again and again to comment on your blog.

Top Commentators Plugin

Top Commentators Widget Plugin:

The most popular plugin available to display the top commentators on your WordPress blog sidebar. It is designed to display the commentators with maximum comments on your website. The number of comments is tracked by this plugin automatically and displayed on the sidebar for your readers to view.

Settings of this Plugin includes:

– Change widget title
– Add Description below the Title
– Exclude any Users
– Limit the number of names listed
– Reset Commentators List Every Time Period
– Nofollow Links
– Show on Home Page only
– Display Gravatar
– Show an Award icon if comments reach a certain range.

Do give this plugin a try and let us know your thoughts in comments.

06 Sep

How To Create Custom Sidebars For Any WordPress Theme

Custom Sidebars


WordPress themes generally allows you to have a single sidebar. But, sometimes it is necessary to showcase different elements on the sidebars for each posts or pages. It gives you more flexibility over the content and what you want to show to different visitors on your website.

Custom Sidebars

The most popular WordPress plugin to add sidebars is “Custom Sidebars”.

1) Custom Sidebars WordPress Plugin allows to create your own custom sidebars & widgetized areas and also select which sidebars you want to use for each post or page.

With this plugin, you can create all the widgetized areas you need, custom sidebars, configure them adding widgets, and replace the default sidebars on the posts or pages you want easily without touching the code.

2) Another popular plugin you can try to add custom sidebars is Per Page Sidebars. This plugin also allows you to create and display custom sidebars for any post (or page) on your website.

See Also:
How To Customize WordPress Admin/Login Page
Change Default WordPress Admin URL With This Plugin

3) If you want to add a post-type widget, then try Widget Entries plugin. With this plugin, you can upload images to be shown directly in the widgets and you can also use shortcodes inside your widget.
This plugin lets you to format your widget with the WordPress editor.

04 Sep

Change Default WordPress Admin URL With This Plugin

Hide and Change Admin URL


Hacking is one of the worst nightmares for bloggers. It can easily destroy all your data and online business in no time. So, it is crucial to stay secure online by using maximum security on your websites.

It’s not a secret that all login or admin pages for WordPress websites look like this: http://domainname.com/wp-login.php or http://domainname.com/wp-admin. So hackers can easily run their automatic scripts on these URLs to hack websites all over the internet.

So, the best solution to this security issue is to change the default login URL to a custom login URL.

Change Default WordPress Admin URL With Lockdown WP Admin Plugin

Lockdown WP Admin Plugin will lockdown your WP Admin URL. It means whenever someone tries to access http://yourdomain.com/wp-admin/, they will recieve a 404 error page instead of redirecting to the login page. It can hide both wp-admin and wp-login as well as add HTTP auth to the login system. Apart from that, you can also change your login URL to anything, for example, http://www.yourdomain.com/secure.

Let’s take a look at the image below to learn how to change settings in Lockdown WP Admin Plugin:

Hide and Change Admin URL

See Also:
How To Customize WordPress Admin/Login Page
How To Create Custom Sidebars For Any WordPress Theme

Note: This plugin won’t secure your website perfectly, but if someone does manage to crack your password, it can make it more difficult for them to find where to actually login. This also prevents any hacking bots that are used for malicious intents to break in.

Let us know your thoughts in comments about this plugin.