Sep 032013
 

WordPress iThemes Security Tutorial (Formerly known as Better WP Security) shows you the most simple way to secure your WordPress website or blog.

Last Updated: June 19, 2018

Latest News: I have updated the changelog.

These are very simple instructions that will help you prevent hackers and make your website more secure. This is something that some are not even aware of. There is a world on the Internet that people around the world need to be aware of. Online security is a must and cannot be left behind or else as some have found out the hard way your website is likely to be hacked, compromised and spammed. These will cause search engines like Google to band your website from their database.

iTheme Security 7.0.3 changelog

  • Security Fix: Fixed SQL injection vulnerability in the logs page. Note: Admin privileges are required to exploit this vulnerability. Thanks to Çlirim Emini, Penetration Tester at sentry.co.com, for reporting this vulnerability.
  • Bug Fix: Provide default values for enabled requirements.

iThemes Security Tutorials:

  1. Better WP Security Tutorial
  2. Better WP Security Tutorial Part 2

Plugin you need.

Note: This tutorial was written using an old iThemes plugin version. I will start to slowly update this tutorial to meet the new added features.

WordPress iThemes Security Tutorial

Important: Before you begin create a backup just in case something goes wrong.

Step 1 ) The following image Security shows you the new menu structure. You can click on the following links to start setting up the plugin.

  • Dashboard
  • Settings
  • Advanced
  • Backups
  • Logs
  • Help
  • Go Pro

wordpress-ithemes-security-menu

Step 2 ) After you install the plugin you will see the following Welcome! screen before you even see the Dashboard.

================================

Important First Steps

Back up your site

We recommend making a database backup before you get started securing your site.
Make a backup button

Allow File Updates

Many of the functions of this plugin require editing your wp-config.php or .htaccess files. Would you like to allow us to safely update these files for you automatically?
Allow File Updates button

Secure Your Site

Use the button below to enable default settings. This feature will enable all settings that cannot conflict with other plugins or themes.
One-Click Secure button

Help Us Improve

iThemes Security would like to collect anonymous data about features you use to help improve this plugin. Absolutely no information that can identify you will be collected.
Yes, I’d like to help button

================================

Step 3 ) The following image iThemes Security – Dashboard shows you the new menu. It also allows you to click on Temporarily Whitelist my IP button.

wordpress-ithemes-security-dashboard

Dashboard

Step 4 ) The Dashboard provides a large range of settings and check list for you to start securing your website.

Security Status

  • All
  • High
  • Medium
  • Low
  • Completed

wordpress-ithemes-security-status

When you click on each tab above it will take you to the corresponding area for you to check and Fix it.

High Priority

These are items that should be secured immediately.

Medium Priority

These are items that should be secured if possible however they are not critical to the overall security of your site.

Low Priority

These are items that should be secured if, and only if, your plugins or theme do not conflict with their use.

Completed

These are items that you have successfully secured.

================================

You will also see the following information.

  • WordPress Files Permissions
  • System Information
  • Active Lockouts
  • Rewrite Rules
  • wp-config.php Rules

Click on the following link better-wp-security-tutorial-part-2.

If you have any questions please let me know. I keep updating my tutorials from time to time so keep coming back for the latest information.

Enjoy.

Manuel Ballesta Ruiz is a web developer, Blogger and WordPress Enthusiast.

 Leave a Reply

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <s> <strike> <strong>

(required)

(required)

The following GDPR rules must be read and accepted:
This form collects your name, email and content so that we can keep track of the comments placed on the website. For more info check our privacy policy where you will get more info on where, how and why we store your data.