wordpress 插件

WordPress is the most used CMS as compared to any other CMS. The code behind WordPress is very clean, thus the search engines just love WordPress websites and this is one of the main reasons that help the WordPress websites to get a good SERP. But websites that are made of WordPress can be an easy target for the hackers because of the use of out-of-dated softwares, weak passwords and vulnerable plugins. Hence it is very important for users who have WordPress website and also for users who would like to sign up for WordPress hosting website to use some security plugins that offer a security cushion so that their website would remain secure.

与其他CMS相比，WordPress是使用最多的CMS。 WordPress背后的代码非常干净，因此搜索引擎只喜欢WordPress网站，这是帮助WordPress网站获得良好SERP的主要原因之一。 但是，由于使用了过时的软件，弱密码和易受攻击的插件，由WordPress制成的网站可能是容易成为黑客的目标。 因此，对于拥有WordPress网站的用户以及想要注册WordPress托管网站的用户来说，使用一些提供安全缓冲的安全插件以使其网站保持安全非常重要。

以下是一些WordPress插件，可用于提高您网站的安全性。 (Following are some WordPress plugins which can be used to increase the security for your website.)

1)iThemes安全性(更好的WP Security) (1) iThemes security (Better WP Security))

Previously known as better WP security, iThemes security keeps track of the user action like such as login and logout, when user revises the content. Enabled with malware scanning you can schedule scan even when the users browser through the website. Create strong password staring from your profile screen. Protect against spammers by the use of goggle re-captcha. iThemes security was last updated on 2-Mar-15. There are more than 600,000+ active installs for iThemes security. Minimum version of WordPress required to run iThemes is 4.0 or higher.  iThemes is compatible up to WordPress version 4.2

iThemes安全性以前称为更好的WP安全性，当用户修改内容时，iThemes安全性可跟踪用户操作，例如登录和注销。 启用恶意软件扫描后，即使用户浏览网站也可以安排扫描时间。 在您的个人资料屏幕上创建严格的密码凝视。 通过使用护目镜重新验证码来防止垃圾邮件发送者。 iThemes安全性的最新更新时间为15年3月2日。 iThemes安全性有超过600,000多个活动安装。 运行iThemes所需的WordPress最低版本为4.0或更高。 iThemes兼容WordPress版本4.2

2)防弹安全 (2) BulletProof Security)

BulletProof security protection for WordPress website. BulletProof security provides firewall security of .htaccess website, Monitoring and login security for user accounts. Website security for data base back up, now you can make manual or scheduled backup i.e. hourly backup, daily backup , weekly backup and monthly backup. Performance of the website is optimized by using bullet proof security as it does not store unnecessary data in the WordPress database. BulletProof Security was last updated on 24-Feb-15. There are more than 100,000+ active installs for BulletProof. Minimum version of WordPress required to run BulletProof is 3.0 or higher. BulletProof security is compatible up to WordPress version 4.2

WordPress网站的BulletProof安全保护。 BulletProof安全性提供.htaccess网站的防火墙安全性，用户帐户的监视和登录安全性。 网站安全的数据库备份，现在您可以进行手动或计划备份，即每小时备份，每日备份，每周备份和每月备份。 通过使用防弹安全性来优化网站的性能，因为它不会在WordPress数据库中存储不必要的数据。 BulletProof Security的最新更新时间为15年2月24日。 BulletProof的活跃安装超过100,000+。 运行BulletProof所需的WordPress最低版本为3.0或更高。 BulletProof安全性与WordPress 4.2兼容

3)多合一WP安全性和防火墙 (3) All In One WP Security & Firewall)

All In One WP Security & Firewall will take your website to another level. This plugin is easy to understand and use. Detect user account that uses the default username “admin” you can change the user name to a name of your choice. Also detect the user account having duplicate or identical logins as this provides a weak link in for hackers. Implement brute force and determine the locked out users. Afterwards you can review these locked out users and unlock the genuine users just by one click of a button. Disable the file editing for PHP code from administration area of WordPress. All In One WP Security & Firewall was last updated on 23-Feb-15. There are more than 100,000+ active installs for All In One WP Security & Firewall. Minimum version of WordPress required to run All In One WP Security & Firewall is 3.5 or higher. All In One WP Security & Firewall is compatible up to WordPress version 4.1.1

多合一WP安全性和防火墙会将您的网站提升到另一个层次。 该插件易于理解和使用。 检测使用默认用户名“ admin”的用户帐户，您可以将用户名更改为您选择的名称。 还要检测具有重复或相同登录名的用户帐户，因为这为黑客提供了薄弱的链接。 实施暴力破解并确定被锁定的用户。 之后，您只需单击一下按钮，即可查看这些被锁定的用户并解锁真正的用户。 在WordPress的管理区域中禁用PHP代码的文件编辑。 All In One WP安全性和防火墙的最新更新时间为15年2月23日。 All In One WP安全性和防火墙的活动安装量超过100,000+。 运行多合一WP安全性和防火墙所需的WordPress最低版本为3.5或更高。 多合一WP安全性和防火墙与WordPress 4.1.1版本兼容

4)快速安全的联系表格 (4) Fast Secure Contact Form            )

Fast Secure Contact Form is a powerful and easy form builder that allow your visitors send email to you. All automated spammers are blocked. It has 4.xx improved version of code base. Forms can be easily added, labeled, removed, edited and previewed. Prompts the user incase the user forgets to fill-up a field in the form. Prevent spammer from coercing into your email; Fast Secure makes sure that posting of the contact form was done from your blog domain name. Fast Secure Contact Form was last updated on 18-Feb-15. There are more than 400,000+ active installs for Fast Secure Contact Form. Minimum version of WordPress required to run Fast Secure Contact Form is 3.4.2 or higher. Fast Secure Contact Form is compatible up to WordPress version 4.1.1

快速安全联系表单是功能强大且易于使用的表单生成器，可让您的访问者向您发送电子邮件。 所有自动垃圾邮件发送者都被阻止。 它具有4.xx改进的代码库版本。 可以轻松地添加，标记，删除，编辑和预览表单。 如果用户忘记填写表单中的字段，则会提示用户。 防止垃圾邮件发送者将您的电子邮件发送给您； Fast Secure确保通过您的博客域名完成联系表的发布。 快速安全联系表最近更新于15年2月18日。 快速安全联系表有超过40万个活动安装。 运行快速安全联系表所需的WordPress最低版本为3.4.2或更高。 快速安全联系表与WordPress版本4.1.1兼容

5)Sucuri安全性–审核，恶意软件扫描程序和安全性强化 (5) Sucuri Security – Auditing, Malware Scanner and Security Hardening     )

Sucuri Security is a security plugin toolset for detection of malware, monitoring, hardening and security integrity. Monitor all the security related actions that is in your WordPress install like who are the users logging in. Are there any changes that are being made. Enabled with file monitoring that has the fundamental known good which compares with the current state this helps to detect intrusion. Sucuri Security provides security notifications to the website owner. Sucuri Security was last updated on 10-Feb-15. There are more than 100,000+ active installs for Sucuri Security. Minimum version of WordPress required to run Sucuri Security is 3.2 or higher. Sucuri Security is compatible up to WordPress version 4.1.1

Sucuri Security是一个安全插件工具集，用于检测恶意软件，监视，强化和安全完整性。 监视WordPress安装中所有与安全相关的操作，例如登录的用户是谁。是否在进行任何更改。 通过文件监视启用，该文件监视具有基本的已知优点，与当前状态相比，这有助于检测入侵。 Sucuri Security向网站所有者提供安全通知。 Sucuri Security的最新更新时间为15年2月10日。 Sucuri Security的活动安装超过100,000+。 运行Sucuri Security所需的WordPress最低版本为3.2或更高。 Sucuri Security兼容WordPress版本4.1.1

6)Wordfence安全 (6) Wordfence Security)

Wordfence Security is a security and a performance plugin that optimizes your website speed. Scan the source code for your website at server-side by making comparison to the official repository at WordPress for theme, core and plugins.  Wordfence Security provides security as well as optimizes your website speed. Wordfence Security includes falcon engine which is the fastest caching engine for WordPress. Checks the users’ login strength for enhanced login security. Wordfence Security was last updated on 26-Jan-15. There are more than 700,000+ active installs for Wordfence Security. Minimum version of WordPress required to run Wordfence Security is 3.3.1 or higher. Wordfence Security is compatible up to WordPress version 4.1.1

Wordfence Security是一个安全和性能插件，可优化您的网站速度。 通过与WordPress官方存储库进行主题，核心和插件比较，在服务器端扫描网站的源代码。 Wordfence Security提供安全性并优化您的网站速度。 Wordfence Security包括falcon引擎，它是WordPress最快的缓存引擎。 检查用户的登录强度以增强登录安全性。 Wordfence Security的最新更新时间为15年1月26日。 Wordfence安全性有超过700,000多个活动安装。 运行Wordfence Security所需的WordPress最低版本为3.3.1或更高。 Wordfence Security兼容WordPress版本4.1.1

7)漏洞利用扫描器 (7) Exploit Scanner                )

Exploit Scanner explores databases and files that belong to the installations done for your WordPress in order to identify whether this install has fallen prey to hackers. Exploit Scanner searches all the files, post, comments table of the database for something suspicious. Also checks the unusual filenames in your active plugins list.  The user is given the control of what has to be done of the detected threat. Exploit Scanner has latest MD5 hash values. Exploit Scanner was last updated on 17-Dec-14. There are more than 60,000+ active installs for Exploit Scanner. Minimum version of WordPress required to run Exploit Scanner is 3.3 or higher. Exploit Scanner is compatible up to WordPress version 4.0.1

漏洞扫描程序会探索属于您的WordPress的安装的数据库和文件，以识别此安装是否已成为黑客的猎物。 漏洞扫描程序会搜索数据库的所有文件，帖子，注释表中是否有可疑内容。 还要检查活动插件列表中的异常文件名。 向用户提供对检测到的威胁必须执行的操作的控制。 漏洞扫描程序具有最新的MD5哈希值。 漏洞扫描程序的最新更新时间为2014年12月17日。 漏洞扫描程序的有效安装超过60,000+。 运行漏洞扫描程序所需的最低WordPress版本为3.3或更高。 漏洞扫描程序最高兼容WordPress 4.0.1版本

8)WP-DB管理员 (8) WP-DB Manager)

WP-DB Manager provides you with the ultimate tool that can help you manage your WordPress database. With WP-DB Manager you can optimize your WordPress database, repair, restore, backup, delete database.  You can run selected queries and empty/drop tables. With WP-DB Manager you can auto schedule the repairing, optimizing, and backing up of data bases. WP-DB Manager was last updated on 12-Dec-14. Active installs above 100,000+ for WP-DB Manager. Minimum version of WordPress required to run WP-DB Manager is 3.9 or higher. WP-DB Manager is compatible up to WordPress version 4.1.1

WP-DB Manager为您提供了终极工具，可以帮助您管理WordPress数据库。 借助WP-DB Manager，您可以优化WordPress数据库，修复，还原，备份，删除数据库。 您可以运行选定的查询和清空/删除表。 借助WP-DB Manager，您可以自动安排数据库的修复，优化和备份。 WP-DB Manager的最新更新时间为2014年12月12日。 WP-DB Manager的活动安装数量超过100,000。 运行WP-DB Manager所需的WordPress最低版本为3.9或更高。 WP-DB Manager兼容WordPress版本4.1.1

9)AskApache密码保护 (9) AskApache Password Protect)

AskApache Password Protect adds security and password protection to your blog, it works at network level that is before PHP at the application level this is the reason why this plugin is very effective. The design of this plugin is such that it prevents the automated attempts made by the attacker to exploit the weaknesses of your blog which ultimately result in a hacked website. This plugin uses the power of the built-in security of the Apache servers and creates a virtual wall round of your blog. By doing this the most of the attacks can be prevented before it reaches your blog. AskApache Password Protect has the abilities to block spam and malicious threat, optimise C.P.U, database resources and Memory. The entire / WordPress admin/ folder and login page can be password protected with this tool. AskApache Password Protect was last updated on 23-Sep-14. Active installs above 5,000+ for AskApache Password Protect. Minimum version of WordPress required to run AskApache Password Protect is 2.7 or higher. AskApache Password Protect is compatible up to WordPress version 4.0.1

AskApache Password Protect为您的博客增加了安全性和密码保护，它可以在网络级别运行，而在PHP之前是在应用程序级别，这就是此插件非常有效的原因。 此插件的设计可以防止攻击者自动尝试利用您博客的弱点，最终导致网站被黑。 该插件利用Apache服务器的内置安全性功能，并在博客中创建虚拟墙。 这样，可以防止大多数攻击在您的博客上传播。 AskApache Password Protect具有阻止垃圾邮件和恶意威胁，优化CPU，数据库资源和内存的功能。 整个/ WordPress admin /文件夹和登录页面可以使用此工具进行密码保护。 AskApache Password Protect的最新更新时间为2014年9月23日。 适用于AskApache Password Protect的有效安装版本超过5,000+。 运行AskApache Password Protect所需的WordPress最低版本为2.7或更高。 AskApache Password Protect兼容WordPress 4.0.1版本

10)终极安全检查器 (10) Ultimate Security Checker          )

Ultimate Security Checker is a plugin which helps to identify security problems with the installation that are for your WordPress blog. Based on the tests passed it also allots a security grade. Hackers prowl daily to hack the blogs and you would not like all the hard work that you have done for your blog go in vain. Ultimate Security Checker will help you to protect your blog and this plugin is updated regularly. The installation of this plugin is one click installation. Letter grade calculation based on the protection of your blog is available. Ultimate Security Checker was last updated on 11-Sep-14. Active installs above 10,000+ for Ultimate Security Checker. Minimum version of WordPress required to run Ultimate Security Checker is 2.8 or higher. Ultimate Security Checker is compatible up to WordPress version 4.0.1

Ultimate Security Checker是一个插件，可帮助您识别WordPress博客安装中的安全问题。 根据通过的测试，它还分配了安全等级。 黑客每天都会四处寻觅以入侵博客，您不希望您为博客所做的所有辛苦工作都白费了。 Ultimate Security Checker将帮助您保护博客，并且该插件会定期更新。 该插件的安装是一键安装。 可以根据博客的保护来计算字母等级。 Ultimate Security Checker的最新更新时间为2014年9月11日。 Active安装10,000+以上版本的Ultimate Security Checker。 运行Ultimate Security Checker所需的WordPress最低版本为2.8或更高。 Ultimate Security Checker兼容WordPress 4.0.1版本

11)登录锁定 (11) Login Lockdown)

Login Lockdown is a security tools that restricts the number of attempted logins for a certain time frame. This tool records the IP location and time zone of each failed attempted login and if the failed attempts are within the short time span then Login Lockdown tool completely disables the login function. This can help to prevent password discovery by using brute force. The lock out time can be customized according to the administrators and they can also release locked IP ranges by using the control panel. Login Lockdown was last updated on   4-Sep-14. Active installs above 200,000+ for Login Lockdown. Minimum version of WordPress required to run Login Lockdown is 3.6 or higher. Login Lockdown is compatible up to WordPress version 4.0.1

登录锁定是一种安全工具，可在特定时间范围内限制尝试登录的次数。 该工具记录每次尝试登录失败的IP位置和时区，如果失败尝试在很短的时间内，则登录锁定工具将完全禁用登录功能。 这可以通过使用蛮力来防止密码发现。 锁定时间可以根据管理员进行自定义，他们还可以使用控制面板释放锁定的IP范围。 登录锁定的最新更新时间为14年9月4日。 活动安装数量超过200,000以上，以进行登录锁定。 运行登录锁定所需的最低WordPress版本为3.6或更高。 登录锁定与WordPress 4.0.1之前的版本兼容

12)6Scan安全性 (12) 6Scan Security)

6Scan Security provides enterprise grade comprehensive security with automated backup, authoritative firewall, regular website scan, web analytics etc. 6Scan Security employees advanced algorithms to detect and automatically repair security weaknesses. 6Scan Security safeguards against Structured Query Language injection, it also protects against Directory traversal, Cross-site scripting (XSS), several Dos conditions etc. 6Scan Security protects against password hacking which is basically protection against brute force. 6Scan Security was last updated on 28-Aug-14. Active installs above 3,000+ for 6Scan Security. Minimum version of WordPress required to run 6Scan Security is 3.0.0 or higher. 6Scan Security is compatible up to WordPress version 4.0.1

6Scan Security提供自动备份，权威防火墙，常规网站扫描，Web分析等企业级综合安全性。6Scan Security员工采用先进的算法来检测并自动修复安全漏洞。 6Scan Security可以防止结构化查询语言注入，还可以防止目录遍历，跨站点脚本(XSS)，多种Dos条件等。6Scan Security可以防止密码被黑客入侵，这基本上是防止暴力破解的保护措施。 6Scan Security的最新更新时间为2014年8月28日。 6Scan Security的活动安装数量超过3,000+。 运行6Scan Security所需的WordPress最低版本为3.0.0或更高。 6Scan Security与WordPress版本4.0.1兼容

13)Google身份验证器 (13) Google Authenticator)

The Google Authenticator WordPress plugin has dual factor authentication and makes use of the Google authenticator application for iPhone/Blackberry/Android. People who are aware of security might already have the authenticator app installed over their smart phone. It can also be used over Gmail, Lastpass, Amazon, Dropbox etc. On Individual basis this dual factor authentication can be enabled. This can be implemented even for the administrators account, and for less privileged account you can login as usual. Google Authenticator was last updated on 11-Feb-14. Active installs above 10,000+ for Google Authenticator. Minimum version of WordPress required to run Google Authenticator is 3.8 or higher. Google Authenticator is compatible up to WordPress version 3.8.3  

Google Authenticator WordPress插件具有双重身份验证，并使用了iPhone / Blackberry / Android的Google Authenticator应用程序。 意识到安全性的人可能已经在其智能手机上安装了Authenticator应用程序。 它还可以在Gmail，Lastpass，Amazon，Dropbox等上使用。基于个人，可以启用此双重身份验证。 即使对于管理员帐户，也可以实施此操作；对于特权较低的帐户，您可以照常登录。 Google Authenticator的最新更新时间为2014年2月11日。 Google身份验证器的有效安装数量超过10,000 +。 运行Google Authenticator所需的WordPress最低版本为3.8或更高。 Google Authenticator兼容WordPress版本3.8.3  

14)WP DB备份 (14) WP DB Backup)

WP DB Backup provides on demand back for your WP database. It permits you to effortlessly backup your core WP database tables. This tool use PHP for backup generation which at times works better because it requires less authorisation and many host do not allow access to mysql/ mysqldump via shell access. Google WP DB Backup was last updated on 30-Sep-13. Active installs above 500,000+ for WP DB Backup. Minimum version of WordPress required to run WP DB Backup is 2.0.3 or higher. WP DB Backup is compatible up to WordPress version 3.6.1

WP DB备份按需​​提供WP数据库。 它使您可以轻松备份核心WP数据库表。 该工具使用PHP进行备份生成，有时效果更好，因为它需要较少的授权，并且许多主机不允许通过Shell访问来访问mysql / mysqldump。 Google WP DB Backup的最新更新时间为13年9月30日。 WP DB备份的活动安装量超过500,000。 运行WP DB备份所需的最低WordPress版本为2.0.3或更高。 WP DB Backup兼容WordPress 3.6.1版本

There are hackers who are on the prowl and just wait to exploit some loopholes in the security of the website. So it is time to be proactive and take safety measures regarding website security before your website gets compromised. Your website deserves complete security.

有黑客正在四处寻觅，他们只是在等待利用网站安全漏洞。 因此，现在是时候主动采取行动并采取有关网站安全的安全措施， 以防您的网站受到损害。 您的网站应获得完全的安全性。

翻译自: https://www.eukhost.com/blog/webhosting/top-wordpress-security-plugins-of-2015-for-your-website/

wordpress 插件