WordPress: Some really easy security tips

Hi there,

It seems like there are still alot of people struggling with wordpress security.
There are some easy tips to help you prevent hackers gaining access to your wordpress website.

  • This is the easiest tip and the one you should always follow:
    DON’T EVER USE THE USERNAME “ADMIN” AS YOUR ADMINISTRATOR ACCOUNT!
    That is the first username most hackers will try as it is the most common one. If you did do that, there are lots of guides and even plugins to help you change it.
  • Hiding the version of your wordpress website can make it harder for a hacker to know what kind of exploit (s)he should use to gain access to the system.
    Because wordpress is an opensource system, everyone can look at the code, and so can every hacker. If they find a weakness in a wordpress version and they can read the version from your website, it’s easier to know which websites to attack.
    Add the following few lines of code to the end of your functions.php file so that hackers can’t see the version of wordpress that you’re using:

  • By disabling the file editor built into wordpress, a hacker can’t use that method to add code to alter your website.
    Add the following line at the end of your wp-config.php file to prevent files being changed if a hacker would gain administrator access:

  • Use a decent security plugin. Even a free security plugin can make a big difference.
    I would recommend using either iThemes Security or WordFence.Both have various options to tighten security like bruteforce prevention, malware scanning, … and help you prevent your wordpress website from being taken over by hackers.
    The first tip in this article is a feature in both these security plugins, but I’ve noticed that after updating the plugin there are some instances where this feature broke the theme. That’s why I do it with my own function.
    They both also have premium features, but you are not required to pay for the basics 🙂

These are only 3 simple things to help you out a bit. This doesn’t mean that suddenly your website can’t be hacked, but it will make it alot harder.

Windows Powershell: Installing/enabling Active Directory module

Hi guys

I’ve been working on a little Powershell script that would help me install/enable the Active Directory module on Windows clients.
There is an easier method as to install this module on a Windows Server, so I haven’t included that in my script.

This is what I have so far:

I hope someone can use it.

Greetz

Colombeen

Internet Explorer: Delete browse history on exit

Hi guys,

I was looking into registry changes that impact (de)activating deleting the browse history on exiting the browser, specifically, Internet Explorer.

It seems like Microsoft doesn’t really write these settings to the registry by default, or at least not in the current user section of the registry. The only key I found in some occasions was the key to enable or disable it but never the settings to specify what kind of data should be removed.

After looking around for quite a while and testing over and over again with procmon (Process Monitor from sysinternals), this is what I came up with :

To enable it :

To disable it :

Now here come the different options that you can change :

I tried making every item as clear as possible by giving it the description from the Internet options window in the comments of my reg file.

The reg file (shown just above this text) shows the default settings on this subject. Change what’s necessary.

I’ve tried this on IE9, IE10 and IE11. I don’t know if this is compatible with IE8 or older.

If you want to use any of these pieces of “code”, create a blank txt file and save it with the extention .reg to make it work, then paste the code you need 🙂

PS: I’m only sharing my own findings. I’m not going to give any support if you want to use these by yourself.

AutoIt: Download function with progress bar

Hi guys,

Just a little snippet for the AutoIt users among us.

A downloader function with progress bar:

Hope you can use it 🙂