Difference between revisions of "WordPress Toolkit/Secure WordPress"

From XMission Wiki
Jump to: navigation, search
m (Secure Your Website)
m
 
Line 3: Line 3:
 
== Secure Your Website ==
 
== Secure Your Website ==
  
# Go to WordPress, choose the website you want to secure, and click “View” next to “Security status”.
+
# Choose the website you want to secure.
 +
# Click “View” next to “Security status”.
 
#:
 
#:
 
#: [[File:WP Security Warning.png|400px]]
 
#: [[File:WP Security Warning.png|400px]]
 
#:
 
#:
# Wait for WordPress Toolkit to display the security measures you can apply.
+
#: Wait for WordPress Toolkit to display the security measures you can apply.
 
# Select the security measures you want to apply.  
 
# Select the security measures you want to apply.  
 
#:* Critical (the [[File:WP_Security_Critical.png|20px]] icon) measures are automatically checked and suggested to apply.
 
#:* Critical (the [[File:WP_Security_Critical.png|20px]] icon) measures are automatically checked and suggested to apply.
Line 20: Line 21:
 
=== Secure All Your Website ===
 
=== Secure All Your Website ===
  
# Go to WordPress and then click Security.
+
# Click Security.
# You will see the list of your WordPress websites.  
+
#: You will see the list of your WordPress websites.  
 
# Check the box in front of each website you want to secure.
 
# Check the box in front of each website you want to secure.
 
# Click Secure
 
# Click Secure
Line 40: Line 41:
 
=== Single Website ===
 
=== Single Website ===
  
# Go to WordPress, choose the instance for which you want to revert an applied measure, and then click “View” next to “Security status” on the instance card.
+
# Choose the website you wish to revert an applied measure
# Wait for WordPress Toolkit to display the list of security measures.
+
# Click “View” next to “Security status”.
# Select the security measures you want to revert and then click Revert.
+
#: Wait for WordPress Toolkit to display the list of security measures.
 
+
# Select the security measures you want to revert.
=== All Websites ===
+
# Click Revert.
 
 
# Go to WordPress and then click Security.
 
# You will see the list of WordPress instances hosted on the server and whether critical and recommended security measures were applied to them or not.
 
# Select instances for which you want to roll back security measures and then click Revert.
 
# Select security measures you want to roll back and then click Revert.
 

Latest revision as of 12:24, 31 December 2018

Caution: Some security measures, once applied, can be rolled back. Some cannot. It is strongly recommend that you back up your development before securing a WordPress instance.

Secure Your Website

  1. Choose the website you want to secure.
  2. Click “View” next to “Security status”.
    WP Security Warning.png
    Wait for WordPress Toolkit to display the security measures you can apply.
  3. Select the security measures you want to apply.
    • Critical (the WP Security Critical.png icon) measures are automatically checked and suggested to apply.
    • Recommended (the WP Security Recommended.png icon) measures are additional suggestions that can help harden your website.
    • If a measures is applied, you will see the WP Security Good.png icon instead.
    WP Secure Measures.png
  4. Click Secure.
  5. All selected measures will be applied.

Secure All Your Website

  1. Click Security.
    You will see the list of your WordPress websites.
  2. Check the box in front of each website you want to secure.
  3. Click Secure
  4. Select the security measures you want to apply.
    • Critical measures are automatically checked and suggested to apply.
    • Recommended measures are available for you to select.
    • If a measures is applied, it should not be listed
    WP Security All.png
  5. Click Secure.
  6. All selected measures will be applied.

Rolling Back Security

It doesn't happen often, however their are times where applying security measures can break your website. If you have found that your site is no longer working, you can roll back what you have applied.

Single Website

  1. Choose the website you wish to revert an applied measure
  2. Click “View” next to “Security status”.
    Wait for WordPress Toolkit to display the list of security measures.
  3. Select the security measures you want to revert.
  4. Click Revert.