WordPress Toolkit/Secure WordPress

From XMission Wiki
Revision as of 12:19, 31 December 2018 by Danzmo (talk | contribs) (Secure Your Website)
Jump to: navigation, search

Caution: Some security measures, once applied, can be rolled back. Some cannot. It is strongly recommend that you back up your development before securing a WordPress instance.

Secure Your Website

  1. Go to WordPress, choose the website you want to secure, and click “View” next to “Security status”.
    WP Security Warning.png
  2. Wait for WordPress Toolkit to display the security measures you can apply.
  3. Select the security measures you want to apply.
    • Critical (the WP Security Critical.png icon) measures are automatically checked and suggested to apply.
    • Recommended (the WP Security Recommended.png icon) measures are additional suggestions that can help harden your website.
    • If a measures is applied, you will see the WP Security Good.png icon instead.
    WP Secure Measures.png
  4. Click Secure.
  5. All selected measures will be applied.

Secure All Your Website

  1. Go to WordPress and then click Security.
  2. You will see the list of your WordPress websites.
  3. Check the box in front of each website you want to secure.
  4. Click Secure
  5. Select the security measures you want to apply.
    • Critical measures are automatically checked and suggested to apply.
    • Recommended measures are available for you to select.
    • If a measures is applied, it should not be listed
    WP Security All.png
  6. Click Secure.
  7. All selected measures will be applied.

Rolling Back Security

It doesn't happen often, however their are times where applying security measures can break your website. If you have found that your site is no longer working, you can roll back what you have applied.

Single Website

  1. Go to WordPress, choose the instance for which you want to revert an applied measure, and then click “View” next to “Security status” on the instance card.
  2. Wait for WordPress Toolkit to display the list of security measures.
  3. Select the security measures you want to revert and then click Revert.

All Websites

  1. Go to WordPress and then click Security.
  2. You will see the list of WordPress instances hosted on the server and whether critical and recommended security measures were applied to them or not.
  3. Select instances for which you want to roll back security measures and then click Revert.
  4. Select security measures you want to roll back and then click Revert.
Retrieved from "http://wiki.xmission.com/index.php?title=WordPress_Toolkit/Secure_WordPress&oldid=9602"