Course: Developing Secure WordPress Sites

[ WordPress: Developing Secure WordPress Sites ] After months of preparation and production, my new video course on developing secure WordPress sites is now available at This is my second video course on securing WordPress; the first one was originally launched in 2011 and remained in Lynda’s library for over five years. I received a lot of great feedback on the course, and so I jumped on the opportunity to do another one. If there is one thing that I enjoy doing, it’s helping people with WordPress and security.


This new course features over 30 video tutorials (over 2.5 hours!), and is jam-packed with over 10 years worth of hands-on experience securing WordPress-powered sites. The course is aimed at intermediate-level users and is presented with focus and clarity throughout each bite-size lesson. Follow along and discover tons of awesome tips, tricks, and techniques for keeping your site safe and secure.

Along with essentials like securing the Admin Area, monitoring users, and implementing a strong firewall, you’ll learn how to protect your site against automated attacks, bad bots, spam, and everything in between. It’s just completely action-packed from start to finish.

Course Description

Leaving your WordPress site unsecured leaves you, your users, and your data vulnerable to attack. Luckily, with some basic site configuration, code updates, and free plugins, you can make an existing or brand-new WordPress site much more secure. Beginning with the basics (your backup/restore and password settings), author Jeff Starr explains how to harden WordPress by setting up user roles, configuring authentication keys, and setting proper file permissions. Plus, discover advanced WordPress security techniques to monitor user activity, implement a firewall, prevent spam, and block bots, and learn best practices for reporting vulnerabilities to WordPress and auditing your site.

Topics Include

  • Backing up and restoring your site
  • Setting up strong passwords
  • Understanding users and roles
  • Choosing trusted plugins and themes
  • Changing and recovering passwords
  • Configuring authentication keys
  • Securing the login page
  • Fighting spam in the comments
  • Blocking access and detecting hacks
  • Building a firewall for WordPress
  • Detecting and blocking bots
  • Auditing your WordPress security

Visit to check it out: WordPress: Developing Secure Sites »