How to Start a Blog (And Make Money With It)

  • Twitter
  • Facebook
  • Pinterest
  • Menu Item
  • About
  • Contact
  • Advertise
  • Resources
No Passive Income

No Passive Income

Take Action, Build Your Business!

How to Secure Your WordPress Site Using “Wordfence Security” Plugin (Free)

August 31, 2015 By Erik Emanuelli 21 Comments

How long ago have you realized your WordPress site?

When was the last time you monitored its level of security?

Your answer may be “a long time ago”, or even “never”…

Although few people do it regularly, making your site secure is extremely important.

WordPress is, in fact, an open-source platform (that is, the codes are publicly consulted by everyone, including hackers). Similarly, there are also the codes of all plugins. With this information, an experienced hacker might be able to identify any flaws and attack your website.

Today I will introduce a very useful tool.

It’s called “Wordfence Security” and it’s a plugin you can download for free.

Wordfence Security plugin screenshot

It’s extremely popular (4.7 million downloads and 1+ million active installs) and, in addition to having several features to monitor the security status of your site, it also allows you to speed it up with the caching option.

Let’s see its features.

 

Scan

The first thing you should do when you install Wordfence Security is running a scan of your site.

Scan option with Wordfence Security WP plugin

Finished the scan, all the problems identified will be displayed at the bottom of the screen.

Here you can select various options.

In the screenshot below, the plugin has identified a new issue: a contributor of my blog is using an easy password.

New Issues found with Wordfence Security WP plugin

In this case, I simply generated a strong password via “users” panel within my WP dashboard and notified the contributor.

I then marked “I have fixed the issue”, to find out, there are no more problems to fix.

Congratulations message with Wordfence Security plugin

 

Live Traffic

In the section called “Live Traffic”, you can monitor real users and robots visiting your site.

On this page, there are several tabs:

  • All Hits
  • Humans
  • Registered Users
  • Crawlers
  • Google Crawlers
  • Pages Not found
  • Logins and Logouts
  • Top Consumers
  • Top 404s

In the following image, you can see a real visitor from Absecon, United States, arrived from https://www.google.com/search who visited the blog post http://nopassiveincome.com/tools-blogging-social-media-marketing/

Real-time activity check with Wordfence Security plugin

Important Note: at the top of this page, you’ll see an ON/OFF button (to activate or deactivate the Live Traffic).

This option is useful to avoid consuming too much of your server resources.

Live Traffic disabled with Wordfence Security plugin

 

Performance Setup

As mentioned in the introduction, in addition to monitoring the level of safety of WordPress sites, this plugin also allows you to improve performance by caching.

With the “Performance Setup” option, you can:

  • Activate two types of caching: the basic and the Falcon (to speed up your site up to 40-50 times)
  • Configure the cache so that it is emptied automatically when you publish a new post
  • Empty the cache manually
  • Exclude specific URLs from the cache

Site Performance option with Wordfence Security plugin

Obviously, this Wordfence Security feature would overlap with those of other cache plugins like WP Super Cache.

 

Blocked IP

If you want to block access and/or the view of your site to a particular user, crawler or bot, you can do it here, by specifying the IP address to be blocked.

If you block the view of your site at a particular IP, when the user tries to open a page you will see a message that indicates that you entered a block.

If you want, you can also block specific IP addresses from the Dashboard WordPress, but without limiting to them viewing the site.

 

Whois Lookup

Would you like more information about a particular domain or IP address?

Simply, paste it in this section and click “Lookup IP or domain”.

WHOIS Lookup

The publicly available information will appear on screen.

 

Advanced Blocking

If you want to block a particular bot, a range of IP addresses or even visitors coming from a specific URL, do it from this page.

 

Options

Finally, in the section called “Options”, you can find some basic functionalities of the plugin to work with in order to optimize their use.

There are two sections (Basic and Advanced Options).

Among the advanced options available, you may want to:

  • Configure the frequency and content of notifications
  • Set the Traffic Live feature so that you do not consider the visits of admin
  • Configure the scan of the website
  • Set some features to limit the number and frequency of login to the Dashboard

And many other features.

Being a plugin with many options, the configuration of which it will probably take up to a few hours of work, Wordfence Security also lets you export and then import your preferences, in the event that may be lost due to some error.

 

Wordfence Security Premium

Some features are available to premium account Wordfence users, like “Password Audit”, “Cellphone Sign-in” and “Scan Schedule” options.

The cost of a single API for 1 year is of $ 39. This price will decrease if you order a higher number of API or subscribe to the service for a longer period.

 

Conclusion

Wordfence Security is a great plugin. The many available features allow you to monitor the traffic on your pages, to block any suspicious users and also to improve the performance of your site.

Of course, some functionalities will keep using a bit of resources of your server; for this, you may want to disable specific features, so to avoid any issues if you are on a shared server (I’m on a dedicated one with HostGator).

Overall, if you want to pay special attention to the security of your WordPress blog, this is a plugin that I definitely recommend you to install.

 

Have you ever used Wordfence Security plugin?

Was it a positive experience?

Do you suggest any alternatives?

Please leave your comment below, and let’s start a discussion.

And don’t forget to share the post, if you enjoyed the content, thanks!

Share77
Share
Tweet185
Pin99
361 Shares
Five Ways to Introduce Stockbrok...
Start a New Site & Double Your M...

Related Posts

  • Cyfe : Your Multifunctional Dashboard With All-In-One Monitoring
  • Reasons and Benefits of Using CommentLuv Plugin (I Love It And You Should Too)
  • 15 Solid Tips About Creating Great Content for Your Blog
  • Using the Google Search Console to Boost SEO
  • Guest Blogging: Build Your Author-Trust

About Erik Emanuelli

Hi! I am Erik EmanuelliΒ : problogger, marketer and social media addict. You can follow me on Twitter, add me on FacebookΒ or follow me on Pinterest.

Comments

  1. Anant Patel

    September 1, 2015 at 8:49 am

    Hi Erik,

    Great post mate! You are right that some bloggers will never ever check their blog security untill once their blog hacked by hackers. Every one should use security plugins for their blog so that it will not be hack from any one. The way you have explained each and every features showes that it will be really great plugin. Wordfence security provide awesome features in free. I will try this plugin for my blogs hope it will be easy to use.

    Thanks for sharing great insight πŸ™‚

    Reply
    • Erik Emanuelli

      September 1, 2015 at 10:20 am

      Hi Anant,
      glad you confirm the importance of secure our WordPress websites.

      I hope this plugin is going to help you.

      Thanks for taking the time to check my post and leaving your comment.

      Reply
  2. Sunday

    September 1, 2015 at 10:34 am

    Hey Erik,
    I have used Wordfence Security plugin but unfortunately at the time I got my site was hacked and I bugs readily seized my root directory in WordPress.

    However, the plugin has features that gave better protection and updates than what I experienced with other plugins.

    I still use Wordfence Security plugin even after resolving the hack attack – I did not blame the capability of this plugin after the attack because I was alerted daily about illegal admin login.

    I am planning to upgrade to premium version in due course!
    I left the above comment in kingged.com

    Reply
    • Erik Emanuelli

      September 1, 2015 at 2:59 pm

      Hi Sunday,
      it’s great to hear your feedback on Wordfence Security plugin, and sorry to hear your site got hacked at that time.
      I hope you solved everything!

      Thanks for sharing your experience with us, and for checking/commenting at my post.
      Have a good day!

      Reply
  3. ikechi

    September 4, 2015 at 4:35 am

    Hi Erik

    Web security is something I take seriously.

    Wordfence is a great plugin and I use it in some sites. However I also use Itheme security because it has some features like setting a custom login which is not present in Wordfence.

    Thanks for sharing, Take Care

    Reply
    • Erik Emanuelli

      September 4, 2015 at 1:34 pm

      Hi Ikechi,
      thanks for introducing another great plugin, IThemes security.
      I’m going to check it out right now.

      Appreciate your visiti and comment.

      Reply
  4. Amit

    September 4, 2015 at 1:38 pm

    Great plugin you shared Erik.
    I’m going to test it now. Thanks.

    Reply
    • Erik Emanuelli

      September 4, 2015 at 1:48 pm

      Hi Amit,
      let me know if you need any help!

      Reply
  5. Rajesh

    September 4, 2015 at 1:50 pm

    Isn’t the plugin taking too many resources?

    Reply
    • Erik Emanuelli

      September 4, 2015 at 2:00 pm

      Well, Rajesh.

      As I mentioned, if you are on shared server, you should in any case limit the number of the plugins you are using.

      I’m on a dedicated server, and yes, I need to take care of loading speed of my blog pages, but I can use more resources than a standard user on a shared server.

      Reply
  6. Dani Schenker

    September 5, 2015 at 2:05 am

    Great advice, Erik!
    I also recommend Wordfence. I use it with all my sites and also my clients sites.

    I am a WordPress user for almost 10 years now. And I can tell you one thing: During the first few years updating WP was pure terror! You would never know if it would work or not. So yes, creating backups was not at all optional! Also I had a couple of instances where my site was hacked (sucks!).

    But that is all in the past! I did not have any problems since I use wordfence.

    Reply
    • Erik Emanuelli

      September 5, 2015 at 1:54 pm

      Hey Dani,
      good to see you here!

      Wow, you are an expert WordPress user, 10 years are many! πŸ™‚

      Thanks for sharing your feedback with us, I appreciate your suggestions.

      Reply
  7. Hamim

    September 19, 2015 at 4:38 pm

    Web security is essential for every WordPress site.
    Currently I’m using limit login attempt plugin.

    But In Wordfence plugin I see some extra feature that I miss in limit login attempt plugin.

    Going to change my security plugin with WordFence security plugin,
    Thanks for sharing this post.

    Regards,
    Hamim

    Reply
    • Erik Emanuelli

      September 20, 2015 at 10:53 am

      Hi Hamim,
      “limit login attempt” plugin is very useful, but Wordfence gives many more features.
      Glad you are going to test it on your blog.

      Reply
  8. Smachizo

    October 2, 2015 at 12:12 pm

    Hi Erik,
    Thanks for nice tutorial, with Wordfence can i change the login url of my blog to hide it from hackers ?

    Reply
    • Erik Emanuelli

      October 2, 2015 at 2:15 pm

      Hi Smachizo,
      I just checked.

      There are many other “Login Security Options”, but not that one.
      You may still want to test it.

      Reply
  9. Noman

    October 13, 2015 at 7:41 am

    Hi Erik Emanuelli,
    I’m wordfence security plugin user πŸ™‚ It’s a great wordpress security plugin.I think everyone should download & install this awesome plugin.you can track your visitor activity easily using this plugin also this plugin can detect harmful bot.thanks for your useful post.I would love to read more post like this one

    Reply
    • Erik Emanuelli

      October 13, 2015 at 9:01 am

      Hi Noman,
      good to hear you are already a Wordfence Security plugin user.
      Thanks for sharing your feedback, keep reading!

      Reply
  10. Acil kredi

    November 8, 2016 at 12:16 am

    Hello Erik,

    How to set cpu limit on wondfence?

    Reply
  11. Mercipro

    June 3, 2018 at 10:06 pm

    Wordfence is the #1 Security WordPress plugin. I like it

    Reply
  12. Kami

    December 6, 2018 at 12:54 pm

    Hello Erik. It’s been a while that I no longer use Wordfrence, just because I find its interface complex. I am on securePress, what do you think? And also for the security of a WordPress password, what do you think about redoing the WordPress login page to WordPress.com with Jetpack? I also wrote an article about it (in French: you can translate with Google translation). https://mastertuto.com/comment-securiser-identifiants-wordpress/

    Reply

Leave a Reply to Erik Emanuelli Cancel reply

Categories

  • Blogging Tips & Tricks
  • Money Making
  • Small Business Tips
  • Social Media & Marketing
  • Tools & Resources
  • Traffic, SEO & SEM

Popular Posts

  • How to Get Likes on Facebook - 500 and More FB Likes in 2 days!
  • How to REALLY Make Money with Sponsored Posts
  • How to Make Money With Affiliate Marketing - A 7 Minute Guide
  • Start Monetizing Your Blog with SeedingUp : Interview with Johannes
  • Are You a Freelance Writer? Check These 20 Sites that Pay You to Write

Copyright © 2019 NoPassiveIncome -Β Privacy & Disclosure Policy