5 Matakai Ga Zunin Shafin Yanar Gizo na Shafin Farko

Mataki na ashirin da ya rubuta ta:
  • WordPress
  • An sabunta: Oktoba 17, 2019

Kare kullun shafinka ba za a iya cika ta kowace fasaha ɗaya ba, amma akwai matakai da yawa asusun tsaro na tsaro za ku iya ɗauka don yin wani hare-haren da ya ragu ba zai yiwu ba.

Shafin shiga shafin yanar gizonku tabbas yana daya daga cikin shafuka masu rauni akan shafin yanar gizonku, dan haka bari mu fara kan sanya shafin shafin yanar gizonku dan samun cikakken tsaro.

1. Yi amfani da Maganar Kalmomi da Sunan mai amfani

Ƙwararrun tilasta shafukan shiga yana daya daga cikin nau'in hare-haren yanar gizon da shafin yanar gizonku zai fuskanta. Idan kana da sauki don yin tunanin kalmar sirri ko sunan mai amfani, shafin yanar gizonku ba zai yiwu ba kawai manufa amma ƙarshe wanda aka azabtar.

Fassara bayanai ya kirga jerin jerin kalmomin sirri masu amfani da yawa don 2014.

Kalmar wucewa ta hanyar matsayi dangane da amfani.

  1. 123456
  2. password
  3. 12345
  4. 12345678
  5. qwerty
  6. 123456789
  7. 1234
  8. baseball
  9. dragon
  10. kwallon kafa

Idan kun yi amfani da ɗaya daga waɗannan kalmomin shiga da shafin yanar gizon ku na samun duk wata hanya, to za a cire shafin yanar gizonku nan gaba ko daga baya.

Yi amfani da kalmomin sirri mai ƙarfi da sunayen masu amfani na sababbin. A baya can tare da WordPress, dole ka fara tare da tsoffin sunan mai amfani, amma wannan ba haka ba ne. Duk da haka, mafi yawan sababbin shafukan yanar gizo suna amfani da sunan mai amfani na tsoho kuma suna buƙatar canza sunan mai amfani. Zaka iya amfani Admin Renamer ya kara don canza sunan mai amfanin ku.

Tare da plugins na tsaro, zaka iya aiwatar da kalmar sirri mai ƙarfi akan duk masu amfani. Ba za ku so wani wanda ya sami damar yin amfani da matakin edita don amfani da kalmomin shiga masu rauni ba a yanzu, ko kuwa? Yana kawo cikas ga tsaronku.

Yi amfani da kalmar sirri ta sirri ta sirri kayan aiki samuwa kamar layi Kalmar sirri ta sirri or Norton's Password janareta or LastPass. Dukansu suna da kyauta don amfani.

Idan kana da wahalar tunawa da kalmominka, zaka iya amfani da su KeePass Password Safe or Manajan kalmar sirri na Dashlane.

2. Ɓoye Shafin Farko da Wp-Admin Page

Mai hawan ƙwallon ƙaƙa yana buƙatar neman shafin shiga, idan ya yi niyya babban ƙarfi shafin shiga don samun damar. Kuna iya hana wannan ta hanyar yin amfani da abin da wasu suke kira tsaro ta hanyar duhu, ra'ayin cewa ɓoye shafin yanar gizonku zai kare ku, kamar yadda mai haɗari ba zai iya gano hanyar shiga ba. Shafukan yanar gizonku zai zama daidai da banki ba tare da kofa ko wata hanyar samun damar jama'a ba.

Yawancin yanar gizo na yanar gizo suna da wurin shiga shigarwa a yourwebsite.com/login.php.

Gwada buga webhostingsecretrevealed.net/login.php a cikin adireshin mai bincikenka. Bai yi aiki ba, yake? Domin babu shi. Shigowar shiga ta WHSR yana samuwa a kan wani adireshin daban.

Hakazalika, za ka iya canja wurin samun dama akan shafin yanar gizonka zuwa wani abu dabam. Musamman mu canza shafin yanar gizon shiga.

ProtectYourAdmin

Kamar shafin login.php, akwai kulawar wp-admin wanda ya kamata a kare shi. Yana da kyau sauƙi a yi tare da ko dai daga cikin biyu plugins - WPS Kashe Login da kuma Kare Admin ku.

3. SSL

SSL ko Secure Soket Layer wani yanki ne mai cikakken tsaro wanda yake sanya duk wani bayani da ka aika da karba tsakanin mai bincikenka da wanda za'a iya karantawa. Idan mutum zai tsoma baki cikin bayanin, da ba za su iya karanta shi ba kuma hakan ba zai haifar da hankali ba.

An yi amfani da SSL don amfani da tashoshin kuɗi na kudi kuma a duk lokacin da aka raba wani bayani mai mahimmanci. Shafukan yanar gizo suna adana bayanai game da masu amfani da kuma SSL suna taimakawa wajen kiyaye wannan bayanin.

Hakazalika, SSL ke aiki a shafin yanar gizon shiga ta hanyar yin bincike ga hanyar sadarwar uwar garken aiki da yawa.

SimpleSSl

Ga masu rubutun shafukan yanar gizo da ƙananan kasuwanci, kyauta, raba SSL - abin da zaka iya samun daga mai bada sabis, Bari mu Encrypt, ko CloudFlare - yawanci ya fi dacewa.

Ga kasuwancin da ke aiwatar da biyan kwastomomi - ya fi kyau a gare ku saya takaddun shaidar takardar shaidar SSL daga gidan yanar gizonku ko kuma takardar shaidar takarda (CA). Very Simple SSL da kuma WP Force SSL dukansu suna taimaka maka saita SSL akan shafin yanar gizonku, da zarar kun sayi takardar shaidar SSL.

4. Ƙayyade yawan ƙwaƙwalwar shiga

Wannan wata hanya ce mai sauƙi mai mahimmanci don dakatar da hare-hare mai tsanani a kan shafin yanar gizonku na dama a cikin hanyarsu. Kuskuren karfi mai karfi yana aiki ta ƙoƙarin samun sunan mai amfani da kalmar sirri ta hanyar yin ƙoƙarin samun haɗuwa da yawa a duk tsawon lokaci.

Idan ana sa ido na musamman IP wanda ke ci gaba da kai farmaki, to, za ka iya toshe magoya bayanan da ke maimaitawa ta tilasta gwaje-gwaje da kuma kiyaye shafinka na tsaro. Wannan kuma dalilin da yasa fasalin DDOS na duniya yana faruwa tare da adiresoshin IP masu yawa tare da asalin kai hari, don jefa ayyukan sabis na yanar gizon tsaro da tsaro a tsare.

Tabbacin shiga

Shiga LockDown da kuma Shigar da Tsaro Tsaro dukansu suna ba da mafita mai mahimmanci don kare shafukan yanar gizon shiga. Suna bin adireshin IP kuma suna iyakance adadin ƙoƙarin shiga don kare gidan yanar gizonku.

5. Biyu Factor Gasktawa

Google Authenticator yana da WordPress plugin da ke aiki ta hanyar app shigar a kan Android / iPhone / Blackberry. Wannan plugin yana haifar da QR code wanda za ka iya duba tare da na'urarka ta hannu ko zaka iya shigar da lambar sirri da hannu.

AuthCode

Shiga ciki zai bukaci lambar tabbatarwa wanda aka kirkira akan na'urar tafi da gidanka don shiga. Ana iya amfani da plugin ɗin a kan mai amfani ta tushen mai amfani kuma ba a ba da shawarar ga masu amfani ba za su sami gata da yawa. Ganin cewa abu ne mai matukar yuwuwar cewa dan gwanin kwamfuta yana da wata hanya ta zahiri ga na'urar tafi da gidanka, shafin yanar gizon ku na shiga zai zama mai amintacce lalle ne (yana zaton babu sauran lalurori).

Ƙarin Tsaro

Mun tattauna batun ɓoye / sake sunan shafin shiga da kuma wp-admin directory, kunna SSL akan shafukan shiga, ta amfani da ingantaccen tabbaci guda biyu, iyakance ƙoƙarin shiga da amfani da kalmomin shiga mai ƙarfi da kuma amfani da sunaye na yau da kullun. Hakanan ya kamata ku sani cewa wasu rukunin yanar gizo suna ba da izinin wasu daga cikin waɗannan ayyukan tsaro akan masu amfani dasu.

Idan kanaso, zaka iya amfani da kayan aikin tsaro na gaba daya Tsaro na iThemes or Kalma wanda bayar da dama login kariya siffofin baya ga overall WordPress shafin tsaro matakan.

A'a Labarin tsaro na WordPress ya cika ba tare da ambaton cewa ana iya daidaita tsaro koyaushe. Shirya gaba da adana gidan yanar gizon ku tare da kayan aiki mai kyauta kamar Updraft Plus ko mai bada bayani kamar VaultPress or BackUp Buddy.

Ina fata wannan labarin ya taimaka kuma ya sanya shafin yanar gizonku ya fi tsaro.

Game da Vishnu

Vishnu marubucin wallafawa ne da dare, yana aiki a matsayin masanin bayanai a rana.

n »¯