20 WordPress Security Tips | WordPress Site ko Hacking se Kaise bachaye

WordPress site Hack kaise hoti hai or Kaise WordPress site ko hack hone se bacha sakte hai, iske ware me detail me aapko batane wala hu, jisme me aapko bataoga wordpress secure karne ke liye aap kya kya kar sakte hai.

WordPress Security Tips dene se phele me aapko bata du Internet par 73% website wordpress par hai, jisse aap ye andaja laga sakte hai, WordPress kitni popular hai.. or ye Secure bhi bhut hai jab hi itne log use karte hai, fir bhi ham iss baad se bhi mana nahi kar sakte, Internet par kuch bhi secure nahi hai jo hack nahi ho sakti.

Agar aapki site Blogger par hai to aap usko kaise secure kar sakte hai uski Tips menen phele share ki hai, jisme mene bataya hai Blogger Blog ko Hacker se kaise bachaye.

Wordpress Security Tips WordPress Site ko Hacking se Kaise bachaye

WordPress Security Tips | WordPress Site ko Hacking se Kaise bachaye

ek baat jo me aapko sabse phele batana chahuga, kisi bhi chij ko hack karna aasan nahi hota, Agar aapko ye pata ho ki iss trha se site hack ho sakti hai to aap apni site ko or jada secure kar sakte hai,

khene ka matlab agar aapko apni site hack hone se bacha hai to aapko pata hona chaiye kya kya tarike hai site ko hack karne ke, jab hi aap unse kaise bacha jaye uspar action le sakte hai or apni WordPress Security badha sakte hai.

#1: Backup WordPress Site Regularly

Ye sabse main hai, ki aap apni site ka backup regular le.. Q ki kab aapki site ke sath kuch gadwad ho jaye wo koi nahi janta, to sabse phela kaam hai aage hone wali kisi bhi gadwad ke liye phele se teyar rhena.

Agar hamare pass backup rahega or hamari site ke sath kuch badwad hoti hai, to ham turant hamare backup ko restore karke site ko sahi kar sakte hai.

WordPress site ka Backup lene ke liye bahtu se tarike hai, jinse aap Online or Offline puri site ka backup le sakte hai.

WordPress site ka backup lene ke liye aap Hosting account se Database or file manager se site ki files ko download kar sakte hai.

WordPress site ka regular backup lene ke liye kuch plugins bhi hai, jinki madad se wordpress site ka backup automatic regular hota rheta hai.

Ek jo badiya pligin hai uska naam hai updraft, iski madad se site ka backup direct Google Drive, Dropbox me le sakte hai or backup offline bhi download kar sakte hai.

Note: Site me kuch bhi edit karne se phele backup jarur le, taki kisi bhi gadwad hone par site ko restore kiya ja sake.

#2: WordPress Site ko update rakhe

kisi bhi chij ka update aata hai to wo purane version se acha hi hota hai, aese me ho sakta hai purane version me koi kami ho jiske karan usko hack kiya ja sake, to update karke wah kami puri ki ja sakti hai.

Aap WordPress blog ko or usme jitni bhi Plugin aap use karte hai hamesa sabko update rakhe.

#3: Secure Username use kare

WordPress site me login karne ke liye username or password ki jarurat padti hai, ye to aap jante hi hoge.. wordpress site ko secure karne me sabse phela step hai aap ek secure username use kare jiska koi andaja naa laga sake aasani se.

Jadatar log username me "Admin", ya fir apna naam username daal dete hai, jese "rohitmewada", aese me agar koi hacker aapki site ko hack karna cha raha hai to uska adha kaam to aapne hi aasan kar diya apna username itna aasan rakh kar.

username me kuch bhi aesa rakhe jisko koi andaja naa laga sake, taki usko login karne ke liye sirf password nahi username bhi pata karna pade, jo itna aasan nahi hai.

Agar aapne username aesa kuch select kiya hai jo koi bhi pata kar sakta hai to aap usko abhi change kare.

WordPress site ka username change karne ke liye aap apni Database se user ki row ko edit karke kar sakte hai, ya fir aap direct wordpress plugin ki madad se bhi kar sakte hai.

WordPress username change karne ke liye aapko Username Changer plugin ko install karna hai uske baad aap direct wordpress deshboard se username change kar sakte hai,

*Username change karne ke baad aap plugin ko uninstall kar dijiye.

#4: Strong Password use kare

Wese iss point ko muje batane ki jarurat to nahi hai, agar aap website chala rahe hai to itna to aap jante hi hoge, ek strong password hi use karna chaiye.

use wordpress strong password generator

Aap WordPress site ka password aesa rakhe jo koi spne me bhi nahi guess sake, Aap WordPress password generator ka bhi use kar sakte hai password banane ke liye.

#5: Use Two-factor Authentication

Jese Gmail me 2 step verification ka option hota hai, jisme ham password dalte hai uske baad hame ek secutiry code bhi dalna padta hai login karne ke liye, wahi option aap wordpress site me bhi add kar sakte hai.

2 step verification login wordpress ke liye

WordPress me 2 step verification enable karne ke liye aapko Google Authenticator plugin install karna hoga.

#6: Badiya WordPress Hosting

WordPress site ki security ke liye badiya hosting bhi bhut jaruri hai, q ki hosting account ke jariye bhi bhut se attack kiye jate hai or agar aap ek badiya WordPress managed hosting use karte hai to aapki site jada secure rahegi,

Agar aap managed WordPress hosting use karte hai to wo aapki site ka backup bhi rakhte hai, jisse hamare site ki security level or bad jati hai.

me aapko suggest karuga aap Hostgator ya Bluehost hosting use kare, jo mere hisab se badiya hai or mene inko use kiya hai.

#7: Limit Login Attempts

Limit login attempt bhi ek badiya tarika hai apni site ko brute force attack se bachane ka.

brute force attacks me hota ye hai automatic kisi software ki madad se alag alag combination ka username or password dale jate hai, jisse site ka sahi username or password bhi pata chal sakta hai agar ham secure username or password use naa kare to.

Iss attack se bachne ke liye Login LockDown plugin ko install kare, jisme ham set kar sakte hai, ki kitne war galat password dalne par uss ip ko block kar diya jaye kuch time ke liye.

loginlockdown settings kaise kare

#8: Add Security Questions to WordPress Login Screen

WordPress ko secure karne ke liye security question bhi add kar sakte hai, jisse jab bhi login karege to username or password dalne ke sath sath jo security question aapne set kiya hai uska answer bhi type karna hoga.

Login page par security question add karne ke liye aapko WP Security Questions plugin use karna hoga. Install karne ke baad iski setting karna naa bhule.

Security question set karne ke baad iss trha ka login page aayega.

wordpress login page security question

#9: Wordpress Login URL change kare

Agar aapki wordpress par site hai to aap jante hi hoge, WordPress site me login karne ke liye jo url hota hai wo www.website.com/wp-login.php hota hai.

Agar jo Login URL hai usko change kar diya jaye to hamari site ki jo security hai wo or thodi bad jati hai, q ki ab kisi ko login karne ke liye username or password ke sath sath usko login page bhi pata karna padega.

WordPress site ka Login URL change karke ke liye WPS Hide Login plugin install karni hogi.

Install karne ke baad Settings > General me login page ko edit karne ka option bhi aa jayega, jisme aap apne hisab se kuch bhi url set kar sakte hai login page ke liye.

wordpress login page url change kare

#10: WordPress User or unki Permission

WordPress site me multi user bhi add kar sakte hai, aese me aap kisi bhi user ko add karne se phele jarur dekhe ki unko site ki kitni permission rahegi or wo kya kya kar sakte hai.

WordPress user ke types or unki ability aap wordpress.org ke article me check kar sakte hai. jisme WordPress user Roles and Capabilities ke ware me detail me bataya hai.

#11: Change WordPress Database Prefix

WordPress site me default jo database Prefix (name ke aage) use kiya jata hai wp_ , jiske karan hacker ko table name guess karne me aasani ho jati hai, me aapko suggest karuga aap isko change kare.

Database Prefix change karna thoda technical hai, me aapko suggest karuga isme kuch bhi edit karne se phele backup jarur le.

Kaise edit karte hai wordpress me database prefix wo aap wpbigner par dekh sakte sakte hai.

#12: File Editing Disable kare

Agar Hacker kisi trha website ki file ko access kar leta hai, to wo badi aasani se files ko edit kar sakta hai Appearance > Editor me ja kar.

Isse bachne ke liye ham file editing ko disable kar sakte hai.

File editing ko disable karne ke liye aapko apne wordpress files me wp-config.php file ko edit karna hoga, or usme ek code add karna hoga.

define('DISALLOW_FILE_EDIT', true);

define('DISALLOW_FILE_EDIT',true);

ab agar aapko koi file edit karni hogi to aap FTP ka use kar sakte hai ya cpannel me file manager me edit kar sakte hai.

#13: Best WordPress Theme use kare

Yaha mera Best WordPress theme se matlab hai ek badiya theame, ab wo paid ho ya free ho usse koi fark nahi padta wass aap jaha se bhi theme le wo secure ho.

Yaha sabse jada log galti karte hai, lagbhag 80% log wo ye ki jo Paid Theme hai, unka crack theme version use karte hai, jo bhut badi galti hai.

jo crack theme use karte hai wo ek trha se aesa kar rahe hai ki ek GUN ko load karke apne sar par lagali or samne wale se khe rahe hai (jo unko marna hi chata hai) ki uska trigger daba do, khene ka matlab khud marne ki puri teyari karli.

Aap khud socho koi bhi jo chij paise me milti hai wo free me q dega, or sabse main baat agar koi crack theme use karta hai to uski site sirf hack hone ka khatra nahi iske aalawa bhi bhut nuksan hai.

Crack theme use karne se jo hosting bandwidth hai wo bhut jada use hoti hai jiske karan hosting account suspend ho sakta hai or jo developer hote hai wo bhi itni mhenat karte hai theme ko banane me to wo bhi kisi ko unki mhenat free me use to karne dege nahi, wo aesi script bhi use karte hai jiske karan aapki site google me penalize (google se remove) bhi ho sakti hai.

mene bhut logo ko dekha jo paise nahi hone ke karan crack theme use karte hai, me aapko bata du, ek war crack theme install karne ke baad wo aasani se remove nahi hoti hai, uske kuch harmful files ko chor hi deti hai site me, to kabhi main site me crack theme install karke bhi naa dekhe.

Hindi Me Help par Newspaper theme hai, agar aapko ye pasand hai to aap yaha se kharid sakte hai.

#14: Badiya Plugin use kare

Ye Point bhi same upar wale point ki trha hai, matlab naa aapko Crack plugin use karni hai or naa aesi jagha se download karna hai jo trusted naa ho.

wordpress plugin rating or download image

Kisi bhi plugin ko install karne se phele uski rating or uski downloads bhi jarur check kare, jisse aapko andaja lag jayega wo plugin badiya hai ya nahi.

*Online kisi bhi file ko download karne se phele aap usko scan bhi kar sakte hai, jisse aapko ye conform ho jayega isme koi virus nahi hai.. Online Virus kaise scan kare uski jankari yaha hai.

#15: Extra Plugin or theme ko remove kare

WordPress site me jitni bhi plugin ya theme hai jo aap use nahi karte, matlab active nahi hai unko delete karde. Ye Security or Website speed dono ke najariye se bhut jaruri hai.

#16: Admin Area only IP par allow kare

Agar aapki wordpress site par user register band hai or aap ek hi jagha se apni site ko manage karte hai to ye option aapke kaam aa sakta hai, iske aap only apni IP ko allow kare Admin area ke access ke liye, jisse or koi isko access hi nahi kar payege.

Iss setting ko karne ke liye aapko .htaccess file me ek code add karna hoga, jisme aapko apni IP dalni hai.

sabse phele to aap apni IP Address pata kar lijiye, uske liye aap whatismyip.com site ka use kar sakte hai.

<Files wp-login.php> order deny,allow Deny from all Allow from xx.xxx.xxx.xxx </Files>

order deny,allow

Deny from all

Allow from xx.xxx.xxx.xxx

</Files>

iss code me jo xx.xxx.xxx.xxx hai uski jagha aapko apni IP address dalna hai, agar aap ek se jada jagha apni site ko use karte hai jese Office, Home to aap Allow karke wo IP bhi daal sakte hai.

Iss Code ko .htaccess me dalkar save kar dijiye.

Note: ye jo option hai IP address ko allow karne ka wo aapke liye jab hi useful hai jab aap fix IP par kaam karte hai, nahi to aapko apni site ko access karne me problem hogi.

#17: WP Admin directory ko Password se Protract kare

Ye bhi ek extra security level hai, jisme aap apni wordpress site ki jo admin directory hai usko password laga kar protact kar sakte hai, jisse agar koi bhi usko access karna chahega to phele uska username or password dalna hoga.

kaise wp admin password protaction enable kare

Ye Process thodi technical hai, par agar aap isko thoda samaj kar karege to aasani se ho jayegi. aap iska tutorial yaha dekh sakte hai.

#18: Secure Email ID

Aapki jo Email ID hai usko secure karna bhi bhut jaruri hai, nahi to pata chale aapne website ki security to bhut tight rakhi par koi aapke email id ko hack karke aapki website hack karle.

Email ID ko secure karne ke liye email 2 step verification on jarur kare.

Tip: jo email aap site ko access karne ke liye se karte hai wo kisi se share naa kare, taki ye risk naa rahe ki agar kisi ko aapke email ka access mil jaye, nahi to wo aapki site bhi hack kar sakte hai.

#19: Computer ko Update rakhe

Website ki security ko banaye rakhne ke liye ye bhi jaruri hai ki aapka computer bhi secure rahe, iske liye apne computer ko bhi up to date rakhe taki koi uske jariye kuch naa kar paye.

#20: Antivirus use kare

Simple se baat hai, agar koi Virus aapke computer me aa gaya to wo bhi aapko nuksan phucha sakta hai, wo kya nuksan phuchayega wo to iss baat par depend karta hai ki wo virus kis type ka hai.. isliye aese risk se bachne ke liye badiya antivirus use kare.

Conclusion

To ab aap ye to jaan chuke hai kaise aap apni wordpress site ko secure kar sakte hai or kaise usko Hacker se bacha sakte hai. Lekin in sab bato ke baad bhi jo sabse important hai wo ye ki aap hamesa alert rahe or up-to-date rahe.

Agar aapki site hack hogi, to ho sakta hai uske hack hone ke piche aapki kisi chij me dhil ho, jese mere se huaa.. Hindi Me Help Hack hui uska karan meri laparwahi thi, jo mene security par achi se dhiyan nahi diya or site hack ho gai.

Aapko ye Detail Post kesi lagi, jisme mene WordPress Security Tips aapse share ki wo comment karke jarur bataye, or agar aapko koi bhi doubt hai ya kahi kuch problem aa rahi hai to wo bhi aap comment karke puch sakte hai.

Agar aap chahe to ye WordPress Security Tips apne blogger dosto se bhi share kare jo wordpress use karte hai.. or secure rahe. 🙂

Happy Blogging!

Let's block ads! (Why?)

hindimhelp

Microsoft Internet World