Backup Your Blog: Part 2
In the Part 1 of Back Up Your Blog, Andreas gave some great instructions on how to back up your blog and Secure your cPanel. A backup is the most important thing we can do to protect our blogs IF a hacking or any other trouble ever happens upon your blog. I think he made a fantastic point about practicing the back up process to make sure it works and to get used to doing it. It is very common for bloggers to have faithfully backed up their blogs only to find out the backup didn’t work properly. So, as Andreas said… practice the backup often until it becomes second nature and easy to execute when you REALLY need it.
How LloydLopez.com helped secure my site
Now here’s a few more helpful things you can do to secure your site. Lloyd Lopez secured my site after helping me with a Feedburner, and other problems I had after my data transfer fiasco. Lloyd works in the technological field and his blog, which he does in his spare time, is about techie stuff too. We’ve been in touch by phone a few times and he’s one busy guy because I know his work schedule! (Holy Smokes! lol) But as you’ll see on his blog, he still seems to get in some time to have fun with his friends and goes to a lot of resorts for his work retreats… (Must be nice, Lloyd!! lol)
Among the other qualifications that he needs for his work, Lloyd is also independently “Brainbench Certified” in the following: Computer Technical Support, Technical Desk Help (Microsoft), MS Windows XP Desktop Administration, Computer Fundamentals, Information Technology Terminology. Lloyd will do Blog Consulting if time permits. So if you ever need any extra help that you’re willing to pay for, I can attest to Lloyd’s good reputation and professionalism and I recommend him highly! I’m keeping his name in my “little black blog book” as I’m sure I will need him sometime in the future! lol
Automatic Update
The first thing Lloyd recommended and installed for me was the WP Automatic Update Plugin since it’s the easiest way to upgrade your WordPress blog especily if this is the first time that you’re upgrading.
Installation is easy…. you download the zip file, unzip it, upload the resulting folder into your plugins folder and activate it. Once activated, you have a new entry on your Manage page in your blog’s WordPress admin, called Automatic Upgrade. When you activate it, it will walk you through the steps. This way you can secure your site by upgrading to the newest verions, making sure your plug-ins are up-to-date and always having a backup.
WordPress Backup Utility
Lloyd also recommended and installed a WordPress Backup utility program. It will send your backups to your e-mail address on a daily, weekly, or monthly basis (whichever you prefer). But remember, have it come to a different address than your blog webmail address, just to be safe.
Login LockDown
Lloyd installed a Login LockDown on my site. Login LockDown records the IP address and timestamp of every failed WordPress login attempt. After someone makes a certain number of attempts to log in to your WordPress within a short period of time from the same IP, then the login function is disabled for all requests from that IP. This helps to prevent brute force password discovery. Currently the plugin defaults to a 1 hour lock out of an IP block after 3 failed login attempts within 5 minutes. (It can be modified from the Options panel to be however many you want and within what time period you wish.) If the log in attempt was from someone who as authorized to get into your WordPress account then the Admisitrator can release the locked out IP manually from the panel so that they can get in. If it was someone who was not authorized then you know someone has attempted to get into your blog and was trying out different passwords. As you can imagine, Login LockDown a great thing to have for security reasons.
Passwords
Both Lloyd and Andreas stressed that we should have a strong password. Some people use passwords that are easy to figure out, like a “favorite” word and a few numbers (birthday, etc) because it’s easy to remember. If it’s easy for you to remember… it’s definitely hackable by almost anyone! Instead, you should keep a little notebook of your passwords since the good passwords (strong ones) should not be memorizable… they should be “garbled”. As Andreas said in the previous post, don’t use dictionary words. Use a combination of letters and numbers and symbols to make a strong password and make a habit of changing your passwords often.
Ask Your Host About Backups
You should be asking your hosting company if they back up your blog and if they don’t, then get a different host who does. I use HostGater for MomsCashBlog and it is also what you will get when you use the Free Blog Tutorial. Hostgater backup blogs every Sunday. Get to know your host by calling them and seeing what they have to offer you and how they work. If a blog disappears or is having problems, you should call your host first thing. (sometimes you will find that they are having trouble on their end and it’s not your blog being hacked. lol). I’m the kind of person who does business best over the phone. HostGater and I have had a lot of talks and I would never deal with a host who I could not talk to in person. Trouble shooting requires good communication and phone conversation are the best form of communicating that I know of.
I hope this was helpful to some of you. If anyone has any further suggestions to help others secure their blog, please leave a comment to help others out. I know my readers get a lot of good advice from the comments as they’ve told me so thru e-mails. There’s a lot of new people deciding if they want to start a blog with the Free Blog Tutorial and they value the opinions of seasoned bloggers… (they also visit YOUR blog afterwards!) And, and always, if you’re thinking of starting a blog and have any questions, make a comment here and someone will answer you!
