Comments on: Winning the War Against Hackers

By: Robby

Robby — Mon, 06 Feb 2017 00:42:47 +0000

WOW! Great and very useful article! Thank you Paul 🙂 My site was attacked by my competitor before, very sad. Now got your great tips, thanks much for your suggestions. 🙂

By: Paul Steinbrueck

Paul Steinbrueck — Tue, 17 Jan 2017 15:41:51 +0000

In reply to Heidi Caswell. Thanks Heidi. Unfortunately, the brute force attack used against our server was doing a few login attempts from thousands of different IP addresses, so it wasn't tripping the login limits. We had to find another solutions.

By: Giuseppe Calamita

Giuseppe Calamita — Sun, 15 Jan 2017 11:13:24 +0000

Yes, you may just change the standard URL of the the admin login.

By: Heidi Caswell

Heidi Caswell — Sat, 14 Jan 2017 05:11:44 +0000

Ouch! No fun. Often the limit login will handle brute force attacks.

Backups are a lifesaver and webhosts who backup for you makes sense, esp if I can go in and click a button to go back.

I always backup before updating WP sites. One theme had a big update, changing short codes, and not until that was done, did I see we needed to update the theme’s support to get a new code. Meanwhile the site looked horrible with broken shortcode all over the place. One click and everything was back to normal. Updated the theme’s support, put up maintenance page then went through the update process.

Many hosts do not work at removing malicious files. That is good thing.