注目の記事 PICK UP

Prevent unauthorized WordPress logins with SiteGuard WP Plugin

Last Updated 2021.01.26

Build WAF on WordPress with SiteGuard WP Plugin

06-wordpressfirst-header

WordPress is a very high-function, and security updates are made every day, but since 30% of the world is building websites with WordPress, it will inevitably be the target of hacking and cracking attacks. In particular, the URL of the management screen is the same / wp-admin / URL by default, so it is a neck that it is easy to become an attack target. The main function of SiteGuard WP Plugin is to reduce the damage of unauthorized logins by automatically changing the URL of this management screen or adding image authentication function when logging in.

What is a WAF?

Have you ever heard of the word WAF? This WAF stands for Web Application Firewall, which means to install a firewall in a web application to increase security. I think that you can search for what a firewall is by searching on Google etc. separately. SiteGuard WP Plugin has also been released as a plugin to add WAF functionality to WordPress, and a company called JP-Secure, the developer, provides security consulting to companies, mainly WAF.

JP-Secureは、国内利用サイト数No.1のソフトウェア型WAF「SiteGuardシリーズ」を開発・販売するウェブサイトセキュリティの専門企業です。高度なサイバー攻撃からお客様のウェブサイトを保護します。

Install SiteGuard WP Plugin

06-wordpressfirst-01

Go to "Plugins" → "Add New" in the WordPress extra screen and enter "SiteGuard WP Plugin" in the search form of the plugin. Then, as shown above, siteguard WP Plugin will come out first, so press the install button to install the plugin. When the installation is complete, press the "Enable" button to activate the plugin. Then, the access URL of the management screen will be changed, so click "New WordPress Management Screen Login Page" on the screen and bookmark it. If you forget to bookmark the login page of the managed screen you moved, let's visit the login page by looking at the JP-Secure page below.

ログインできなくなりました。管理ページアクセス制限を有効にしている場合、ログインしていない接続元からの管理ページ(/wp-admin/)へのアクセスは、404エラーになります。そのため、「http://ホスト名/wp-admin/」へのアクセス(ログインページへのリダイレクト)でログインすることはできません。ログインページからログインを行い、動作をご確認ください。ログインしている状態の場合でも、前回のログインから24時間以上経過していると、404エラーになる場

It also works on files related to web servers, such as .htaccess files, so be careful when installing and operating SiteGuard WP Plugin, but since it is developed and updated by a Japanese company, the FAQ is in Japanese and there is a sense of security. After all, you can change the URL of the default management screen of WordPress arbitrarily, so the security will be greatly improved. This plugin is one of the plugins that I would like you to introduce by all means if you are operating a website with WordPress.

SiteGuard WP Plugin Settings

SiteGuard WP Plugin is a highly functional plugin that adds WAF functionality to WordPress, but it's easy to introduce that the post-installation settings remain almost the default. WordPress administrators are a web system characterized by being able to operate a wide range from those with abundant expertise on the WEB to general beginners, so it is a big advantage that installation and setting are OK by default. When you want to change the settings of SiteGuard WP Plugin, the developer JP-Secure publishes a detailed setting method on the web, so it is a good idea to refer to the following page.

SiteGuard WP Pluginは、管理ページとログインページの保護を主な目的とする、WordPress向けのシンプルなセキュリティプラグインです。インストールするだけで簡単にセキュリティを向上でき、完全日本語対応しています。

SiteGuard WP Plugin update notification settings

06-wordpressfirst-02

Once you've installed SiteGuard WP Plugin, the item you want to set up is the update notification settings. This means that when wordpress itself, installed plugins, and installed themes are updated respectively, an update notification email will be sent to the email address registered in the general settings. I want a notification email when updating the WordPress body, but since it is now possible to automate the update for plugins, I think that update notifications are not necessary.

For theme update notifications, update notifications are not required for themes that are officially registered, but I think that it will be convenient to have update notifications for themes that are not officially registered with external themes. Since this site also uses external paid themes that are not official, update notification of themes is enabled. In addition, the update confirmation is automatically processed every 24 hours, so if you do not want to put too much load on the server, it will be fine to disable them all.

However, recent rental servers have become high-performance and high-performance, so it is not surprising that this level of processing has increased. I think you can use SiteGuard WP Plugin with peace of mind.

Related post

  1. 11-wordpressfirst-aicache

    What is AMP that improves mobile usability?

  2. 17-postandpage-aicache

    Differences between WordPress post pages and fixed…

  3. 09-wordpressfirst-aicache

    Work with Google services with Site Kit by Google

  4. 16-onamae-aicache

    Set DNS settings for onamae.com domain-core server…

  5. 14-wordpress-aicache

    Easily Back Up & Restore WordPress Sites R…

  6. 02-wordpressfirst-header

    Settings to install WordPress and do it first R…

  7. 12-wordpressfirst-aicache

    How to intall and advanced AMP for WP

  8. 01-wordpressfirst-aicache

    Settings to install WordPress and do it first R…

  9. 08-wordpress-header

    Easy Way to Set Up WordPress – CORE SERVER (…

Latest posts

  1. 17-postandpage-aicache
  2. 15-wordpress-aicache
  3. 16-onamae-aicache
  4. 14-wordpress-aicache
  5. 13-wordpressfirst-aicache
  6. 12-wordpressfirst-aicache
  7. 11-wordpressfirst-aicache
  8. 10-wordpressfirst-aicache
  9. 09-wordpressfirst-aicache
  10. 08-wordpress-header

Recommend posts

  1. 02-wordpressfirst-header
  2. 15-wordpress-aicache
  3. 11-wordpressfirst-aicache
  4. 10-wordpressfirst-aicache
  5. 01-wordpressfirst-aicache
  6. 13-wordpressfirst-aicache
  7. 16-onamae-aicache
  8. 17-postandpage-aicache
  9. 12-wordpressfirst-aicache
  10. 07-wordpressfirst-aicache
PAGE TOP