Forums

WordPress › Support » Plugins and Hacks

6Scan Security
6scan (5 posts)

  1. akingsail
    Member
    Posted 5 months ago #

    I would just like to say 6scan software (http://6scan.com/)is a must for every wordpress site. It scans your site, then tells you all the security loopholes which can be exploited by hackers. Quite simply, it works. 10/10 to these guys. By the webmaster for http://www.easyflatpax.com

    http://wordpress.org/extend/plugins/6scan-protection/

  2. Michelle Reece
    Member
    Posted 5 months ago #

    I agree. I accidentally came across it about a week ago, and I wish I would've found it sooner.

  3. bobrichards1
    Member
    Posted 3 months ago #

    This could be a dumb question but if there are known vulnerabilities, wont wordpress.org fix them and eliminate the need to buy third-party hacking protection?

  4. akingsail
    Member
    Posted 3 months ago #

    I've found a mixture of defences keep hackers at bay:
    1. Never put wordpress in a folder called 'blog'.
    2. Always use a captcha form for any and every access. I use sweetcaptcha which is picture based, simple and excellent.
    3. Backup, backup, backup! My motto on this is don't backup if you are prepared to lose all your hard work!
    4. Most importantly is to use 6scan as it constantly monitors all aspects of your website for changes and vulnerabilities.

    You ask if WordPress could do all this. The answer is yes, I suppose they could. However, their job is to produce fantastic software to enable us to create brilliant websites and this they do. It is all our responsibilities, to keep hackers away from destroying our websites, and any additional help we can get is welcome!

    Finally a message to hackers...do get a life!

    Webmaster for http://www.easyflatpax.com

  5. 6Scan
    Member
    Posted 3 months ago #

    Hi bobrichards1,

    Keeping an up-to-date blog and plugins somewhat reduces the risk of being hacked, but does not eliminate it. Here some things to keep in mind:

    First of all, security vulnerabilities are sometimes revealed to public without vendor notification.
    Most chances are, that the vendor will not know about this matter until somebody points it out (and this is rarely the case).
    In this situation, there simply is no safe version of plugin to run, and most users do not even know that they are at risk.

    But even when there is an official fix in an updated plugin version - users won't update. Simply because they are not aware of a critical security issue with plugin and prefer not to update the plugin (For various reasons, most common one being a lack of will to configure the new version of a plugin again)

    There are more considerations to this matter, but the two above make a sufficient argument for a third-party security solution like 6Scan.

    akingsail, thank you for your kind words!

Reply

You must log in to post.

About this Plugin

About this Topic

Tags