iThemes has had a rebrand to Solid Security! And not only that, it has some cool new features to like the Site Scan and Bulk User Edit... It has just become the best Security plugin for WordPress 😁 I hope this Tutorial helps you out. Have a great day and stay safe!
Hi there! Thanks for your question. The problem is that when you pay peanuts, you get monkeys. For something so important as caching I tried all kind of paid and free plugins, but the best plugin is still WP Rocket…
Hi Benjamin! Thank you for writing a comment. Really appreciate that! I'm glad I could help you out with your website. Thanks for subscribing! I do appreciate that very much. Good luck with your adventures. I hope I can contribute to your online succes. Have a great day and take care. Greetings :_wprMatt
EXCELLENT TUTORIAL! No corners cut and all info provided! You have gained a new subscriber! This info was extremely helpful in setting up a client's site and also ... ooops! I confess I was still using wp-admin myself! Your recommended security plugin is top notch. I uninstalled Loginizer on all my WP sites and installed this one!
Hi Enrique! Thank you for these kind words and the sub! I really appreciate that. I’m glad you liked this video tutorial about Securing your WordPress website with Solid Security. Yeah loginizer is a plugin but there are so many other things that needs to be secured, especially XML-RPC for example. But you got it done! So I’m proud of you 😀👍🏻 Have a great day and hope to see you again in the next video!
Hi Matt, thanks for taking the time to create this video. I’ve followed the steps you outline and now have 2 step authentication running on my website. I couldn't have done it without help, so thank you!
Hi Andrew ! Thanks for your kind words, I really appreciate it. I'm glad I could help you out securing your WordPress website. Have a great day and take care 😀
Hi Bonny! You are very welcome, it makes me happy to read your comment, thank you for taking some time out of your day to write me! I'm glad I could help you out with Securing your WordPress website. Your 👍🏼 and subscribe would be very helpful if you haven't already done so. Have a great day and take care, greetings
Hey Matt thank you so much for this tutorial. I haven't had any issues with my site being hacked and after this tutorial feel much better about it's security. Continued success to you.
Hi there! Thanks for the kind words! Yeah if all is configured well you can sleep well tonight! Keep your plugins, themes and Wordpress itself updated though, then you should be completely safe (if you don’t put your password online somewhere 😂)
Hi Matt. I just wanted to take a minute and Thank You for the videos you have created to assit individuals that need a bit of help along the way. Your vids have saved my behind more than once and everytime I need a little help, I know where to find it. Your UA-cam Channel. Once again. Thanks
Thanks for the video, i checked your previous video as well. i was thinking that you need to create latest one and then i read you description, thanks again dude.
Many thanks for the great explanation! I had actually searched in German - without success! As a newcomer to WP, I had 2870 events in the log from mid-May. After the described settings this stopped immediately! I was also able to fix my own lockout.
Thank you, Matt. Clear, comprehensive and extremely helpful, step-by-step demo which I followed along and set up my site accordingly. I have never been a fan of WP because of its security issues but with your help, I felt confident enough to give WP another go for my mini sites. As a thank you, I will be subscribing to Divi using your affiliate link.
Hi Jamie! Hi there! You made my day! It makes me happy to read your comment, thank you for taking some time out of your day to write me! I'm glad I could help you out with your website to give you confident again. Thanks for getting Divi using my link, realy appreciate it! Have a great day and take care, greetings
Matt, I just subscribed to your channel and liked the video. Excellent tutorials, I wish I had found your channel before I got my websites hacked. Thanks for the thoroughness of your videos.
@@WPressDoctor yes. So far so good. I'm learning not to freak out when I get emails notifying files changed. I'm going to look in your channel to see if you have some explanation about what parameters should I use to scan through those emails. Thanks again and blessings to you, your family and your business.
Thank you so much for this tutorial, Math. Website security is such a sensitive and important topic. All of your tutorials are always insightful, and your calm and reassuring style of explanation really sets you apart from other UA-camrs. Keep up the great work!
Hi there! You are very welcome! It makes me happy to read your comment, thank you for taking some time to write me. I’m so glad you like my style of videos. Have a great day and take care! Greetings
Hi there! You are very welcome, it makes me happy to read your comment, thank you for taking some time out of your day to write me! I'm glad I could help you out with your website. Keep it up and soon you won't be a newbie WP Developer but from a zero to hero! 😎 Have a great day and take care, greetings
Hi there! You are very welcome! Thanks for the kind words and the sub! I really appreciate it. I’m glad I could help out with this video. Stay tuned, more awesome tutorials coming up! Have a great day and take care 😀👍🏻
Hi there! You are very welcome! I'm glad I could help you out with your first webshop! I'm glad you got it secured good now. WHat kind of products are you selling?
Hey Matt, thanks for the well-thought-out video. As a beginner to web development, it was nice to have everything to do with security in one easy-to-access tutorial.
Just would to let you know: You have the greatest videos about WP plugins. Every time I need some of it, I come back to your channel. It´s a pleasure to buy from your affiliate link! Its just... you help us out, so... we must help you out back. Tnx, Matt! Really appreciate your job here.
Hi there! Thanks for your kind words! It’s really heartwarming… I’m so glad I could be part of your online journey and I’m excited and thankful that you use the affiliate links, it makes it all possible to make this valuable content 😃 so thanks! Have a great day and take care!
Thank you so much Matt. I'm just setting up my blog website, My friend recommended that I follow through this video to ensure my site is and I'm super happy and feel much safer after doing this. However, after doing this, I can no longer make edits to my blog post that was saved to draft. I am getting the message I setup on the slug step you showed after changing it from "wplogin". I'd really appreciate a response from you on this. Thank you so much ❤
Hi Andrew! Thanks for the kind words. I’m glad you followed the steps and secured your website. So try turning it on and off again 😂 I’m serious though, turn the specific feature off and try editing pages. Try turning it on and see if it still works. If not, it might be conflicting with another plugin. You can leave it off, your brute force settings will prevent a hack this way 😀👍🏻
Thanks Matt! As a newbie. Definetely will have to go back through this, it shows the designer/deverloper who set-up my site didn't set it up property with the plug ins and settings.
Hi there! You are very welcome! Yeah sometimes people tend to use a lot of “stuff” that’s actually not needed like plugins for every single little thing… well now you know better 😎
Hi there! Thanks for the kind words, I really appreciate it. Your welcome! iThemes is no more, so I needed to make this video. I personally don’t like it when you try to follow a tutorial and it is very outdated. So now this video can help everybody again setting it up the right way 👍🏻😀
Hi there! Thanks for the kind words! You made my day 😍. I’m glad you like the style! Have a awesome day and stay tuned, more amazing tutorials are planned 😇
Hi Matt, That was an Amazing video and so important - Thank you. I do have a few questions: 1. Do you use Solid Security? (Free or Paid) or do you use something else? 2. Do you think that the Free version is enough to secure a website (blog)? 3. How would you compare between "Solid Security" to "Wordfence" and "Sucuri"? (Free versions). 4. You said you "Don't Like "Jetpack" Plugin"! So what do You recommend using? what do you use?
Hi James, thanks for the kind words and being a subscriber to my channel for the past years! You are very welcome, I'm glad you liked it. 1. Yes I use the basic version on all private and clients websites! I might switch to the paid version, Going to check it out soon. 2. Yes it definitely is! Works perfect! 3. That I like Solid better for that it has a cleaner interface and works faster. 4. It depends on what you use Jetpack for. I have found it to be really slowing down my website and stuffing ads in my face constantly... If you have more questions, let me know 😁
Thank you for answering my questions Matt. 1. I think that everyone that follows you would Love to see a Tutorial from you about the Paid version of "Solid Security", but only if you switch to the paid version and find it to be Better than the free one, of course. 2. If you don't use "Jetpack" then what do you use for your Comments section? to keep it clean and Spam free? Would love to see a Tutorial about How to Stop Spam comments and keep that area a Safe place. Thank you Matt@@WPressDoctor
Great video!! Thanks!What is the best security practice to add a temporarly developers to your wordpress site. Most of them ask for Administration Roles.
Hi there! That is a good question. In this case I would create a subdomain for developing. Like dev.yourdomain.com and give them access to that site. If that is not possible, you can always create new logins for them and keep track of changes that are made...
Hi there! Thanks for the question. So you can create a dev subdomain with a copy of your website. Then you can add them as new admins. I would go with that approach 😀
Hi there! You are very welcome! I’m glad the video was useful. I hope my other video’s will also add something to your knowledge and skillset! Getting the word out there with your 👍🏼 and subscribe, and possibly a share would be much appreciated. Good luck with your adventures. Have a great day and take care. Greetings
Hi there! Thanks for your comment and I really appreciate it that you take some time out of your day to write me. Thanks! Also ik grateful for the sub, it helps! I’m glad you found the tutorial detailed and I could help you out. Have a great day and stay safe 😀👍🏻
Hi Anthony! You are very welcome. Thanks for your kind words, I'm glad I could help you out with this video. 😁 Have a great day and all the best this coming new year!
Hi there! Thanks for the kind words, I really appreciate it 😀👍🏻 I’m glad you like the style and video. If you have any tips, let me know! Have a great day and stay safe 🤩
Very good information. Applied Solid security for my blog. Please also make a video for firewall rules for allowing good bots & blocking bad bots through Solid Security. Thanks a lot for this tutorial. 👍
Hi Deepak! Thanks for the kind words, good jbo in applying the security for your blog! Well the good bots are already whitelisted by Solid Security, so that's no problem here. The bad bots are already blocked, so you should be good!
Hi Ron! Graag gedaan! Ik ben blij dat je er iets aan had. Top dat je je website nu goed beveiligd hebt, extreem belangrijk tegenwoordig! Fijne dag gewenst!
Hi there! You are very welcome! I’m glad I could help you out with this video. Stay tuned, more awesome tutorials coming up! Have a great day and take care 😀👍🏻
Hi there! You are very welcome, it makes me happy to read your comment, thank you for taking some time out of your day to write me! I'm glad I could help you out with your website. Your 👍🏼 and subscribe would be very helpful if you haven't already done so. Have a great day and take care, greetings
Hey just watched your Wordfence video before this one. First off, thanks for the in-depth tutorials :) Having used both-which one would you recommend more and why? Just asking as I have read some not so good things about Ithemes, so now I am wondering.
Hi Stefan! Thanks for the question and you are very welcome. So I would recommend Solid Security over WordFence. It has the great features, but Solid Security has also PatchStack integration and Hide backend feature... Also I think the plugin is faster then WordFence. Also I like the UI more 😁
Hi Matt, thank for the great video. You mention specifying the current IP address, what happens if the IP address changes or I try to login to the site from a different location? Don't want to be locked out obviously.
Hi there! Thanks for the question. That will not be the case. This is only a whitelist so that this IP address will never be locked out. But if you normally make use of your login page - you should be good 😀
Hi there! You are very welcome! It makes me happy to read your comment, thank you for taking some time to write me. I hope my other video's are also useful for you getting the most out of your website. Getting the word out there with your 👍🏼 and subscribe, and possibly a share would be much appreciated. Have a great day and take care. Greetings
Hello Matt. With objectivity, content, great screen examples, level of details and presentation skills, your tutorials are for me the benchmark that all other channels should be based upon, congratulations! With Solid Security, have you ever faced issues with the e-mail for 2FA never arriving (not even in the spam folder) into your email? Thanks!
Hi there! Thanks for the kind words, you made my day 😀👍🏻 I’m glad I could help you out with this video. I have not yet encountered that problem, only when WordPress itself could not send out emails. Did you test it with other plugins / contact forms?
@@WPressDoctor Thank you for kindly answering Matt. I went today for a second attempt, after migrating the domain from Hostgator (where I did the first attempt 2 days ago) towards Hostinger. The migration itself was due to another reason. Strangely, after migrating, in the beginning of Solid Security configuration, in Global Settings --> IP Detection --> Proxy Detection (at 02:50 in this video), the option "Security Check Scan" is not available. Only the options "Automatic Insecury", "Manual" and "Disabled" are available. And yes the "Enable Security Check Pro" was activated in the previous screen. Well... I´ve aborted the Solid Security configuration at this point... while I research why this "Security Check Scan" is not available.
@@WPressDoctor Yes only the IP address scan. Good news, it worked today... with no remedy nor action from my side, by the morning it was still not working, and in the afternoon the option already appeared there. Despites of no action, it is worthy commenting that I had opened a support request towards SolidWP, and had provided informations about SSL, parameters in wp-config.php etc... a handful of information but without specifying personal data like domain name or IP. Then without any specific action in my own site, it worked. I guess they have applied some kind of general remedy on their system. Very good support experience, I must add, for someone who still do not sign their PRO version :) Thank you for introducing me to this excellent plugin, Matt, and again, thank you for the amazing learning experience provided by you. I´ve subscribed your channel, and rest assured that when it arrives the moment of going PRO with any of the products promoted by your channel, I´ll buy from you :) Warm greetings from Brazil.
Hi there! Thanks for the kind words, I really appreciate it. Yeah it’s a simple but powerful plugin! I’m glad I could help you out 😀👍🏻 Have a great day and stay safe!
Thank you for a lot of great tips, you are a master! One thing I noticed though, do you know if the free Basic version of Solid Security is just hidden somehow, or have they abandoned it altogether? What I can see is that it's no longer available as an option on their landing page, which kind of changes the deal for me. I usually favor products that I can try before I buy.
Hi there! Thanks for the question. Well You can always download it straight inside of your Wordpress website. Just go to “add plugin” and search for Solid Security 👍🏻😀
Thanks so much for this tutorial - it's helpful! I have Solid Security installed on my site, and this tutorial helped me properly reconfigure it. But at the same time, I have All In One WP Security plugin installed as well. So, is this necessary again or not please. Thank you.
Hi there! You are very welcome! It makes me happy to read your comment, thank you for taking some time to write me. I would not advice you to use two security plugins at the same time. It could cause some problems 👍🏻 I hope my other video's are also useful for you getting the most out of your website. Getting the word out there with your 👍🏼 and subscribe, and possibly a share would be much appreciated. Have a great day and take care. Greetings
Hi Julio! Good to see you here again. Thank you for your kind words! Really appreciate that! I am glad the video was helpful to you and you could secure your website. I hope my other video’s might also help you. Have a great day and take care! 😃
Hi there! You are very welcome! Thank you for writing a comment. Really appreciate that! Please consider a like and subscribe or maybe a share for my video, that would help me a lot! Have a great day and take care! 😃
Don't know if this has been asked already, but is there any problem with having both "Wordfence Security" and "Solid Security Basic" active at the same time? Thanks in advance for your answer, and amazing video. It has been very helpful!
Hi there! Thanks for the kind words and your question. I would not advice you to do this, as both plugins have some same features. This might cause some unexpected behavior. So just pick one is my advice 👍🏻😀
Great video. I was confused about whether to go with Solid Security or Wordfence but with your video you've helped me to decide that Solid Security is the way to go. However, I also use SiteGround, just like you and they offer a security plugin called Security Optimizer. What's your thoughts on that? Should I deactivate and delete it and use Solid Security instead?
Hi there! Thanks for the question. Yeah Solid Security is a solid plugin. The security optimizer from SiteGround maybe good, but I have never tested it and don’t know if it’s any good on the long run. Also compared to solid security it’s a relatively new piece of software. So I love experience in this field 😀
Great plugin setup review. I reviewed Solid Securities documentation before writing you here but could not find an answer. Some of the categories in the site scanner show red X instead of purple checks when the site scan is complete. The locked pro features show black locks. Do you know what the red x means?
Hi there! Thanks for the question. It could mean that the scan was unable to scan it due to hosting settings, or that there is malware found, but then it will show in the list below...
@@WPressDoctor I think that it is issues with hosting probably because there are no lists of malware or vulurabilities. I will dig into the hosting possibilities.
Hi Fábio, thanks for the kind words and the question. Well you can change the text from within the plugin, I have not yet seen a place to change the logo itself... good question though, the devs might know a answer to that, or you can of course change the PHP files yourself...
Hi there! You are very welcome! I’m glad I could help you out with this video. Stay tuned, more awesome tutorials coming up! Have a great day and take care 😀👍🏻
Hi Alex! Thanks! It makes me happy to read your comment, thank you for taking some time out of your day to write me! I'm glad I could help you out with your website. Your 👍🏼 and subscribe would be very helpful if you haven't already done so. Have a great day and take care, greetings
Hi Matt, Thanks for a great video - much appreciated. Liked/Subscribed. A quick one: would it be enough security for a WP e-commerce site with this plugin and the SSL certificate provided by a hosting provider? (They are usually free and DV SSLs kinds of...) Would you still consider installing the EV SSL on? Lots of thanks for your kind response.
Hi there and thanks for the question. Yeah this will be enough! Just make sure to update any plugins/themes and use a 2FA and strong password that has not been leaked on the darkweb 😊
Matt, first greetings from Prague (Czech Republic)! Many thanks for very helpfull guide. I have gone through all the setup, all is fine and done, just one point is different on my side. In 23:11 in your video you show how to Change User ID 1 easily from WP: Security / Tools. However I miss such an offer here. There are all the items available (Identify Server IPs, Change Database Table Prefix etc.), just Change Use ID 1 is missing on my side. I work with WordPress version 6.4.1. Would you know why? Many thanks.
Hi Jana! Thanks for the kind words and your question. Good that you have secured your website, well done! I think that if your User ID is not 1, than you are already good and there is no need to show this option, as it is already good. So you are in luck 😁 have a great day and stay safe!
Ok, thank you, so it means the plugin options are flexible, not constant, it reflects the actual status of given database. Many thanks, I wanted to be sure. Thank you and good luck! @@WPressDoctor
Hi there! Thanks for your kind words, I really appreciate it. Yeah Solid Security replaces Wordfence. So you can just chose one of both. Have a great day and a happy new year!
Hi there! You are very welcome. I’m glad I could help you out with this video 😀👍🏻 Yes, that is absolutely correct, don’t use that username 👍🏻. Have a great day and take care!
Hi Calabamian! Thanks for your kind words. I'm glad I could help you secure your WordPress website! Here is the FTP video: ua-cam.com/video/wRD5Zhu8Ids/v-deo.html Your 👍🏼 and subscribe would be very helpful if you haven't already done so. Have a great day and take care, greetings
Hi Sergejs! You are very welcome, it makes me happy to read your comment, thank you for taking some time out of your day to write me! I'm glad I could help you out with Securing your WordPress website. Your 👍🏼 and subscribe would be very helpful if you haven't already done so. Have a great day and take care, greetings
Hi there! You are very welcome! I’m glad I could help you out with this video. Thanks for the sub! Stay tuned, more awesome tutorials coming up! Have a great day and take care 😀👍🏻
Hi Matt, thank you for the great video! Could you please explain what the "Hide Backend" feature is good for? Even if changing the login slug to "castlekeys" instead of "wplogin" the wordpress login page can still be accessed by adding "wp-login.php" instead of "castlekeys". It seems that hackers can still access the login page, which defies the purpose of this change to the login slug (at least that's what happens for me). Do you have a fix for this by any chance? Thanks a lot
Hi Patrick! Thanks for your question. It takes a while before those login URLS will be not- usable anymore. This has to do with the caching of your browser. So if you open up /wp-admin/ inside of your incognite or private window, it then will show a 404 page or a different page you have setup. The point is that script kiddies are discouraged from tryting to get into your website. With the combination of brute force protection and also disabling the XML-RPC feature, it really helps a LOT to keep them outside.
Hi Anna! You are very welcome. Thanks for your kind words, I'm glad I could help you out with this video. Have a great day and all the best this coming new year!
Hi There! Thanks for the kind words, I really appreciate it. So I personally prefer Solid Security, as it has great options like also the hide backend feature 😀. For the rest, they both do the same things 💪🏻
Hi Christos! Thanks for the kind words, I really appreciate it! In my experience they are both good. Its just a matter of personal preference. I think Solid Security has a cleaner interface and has the "hide backend" feature. That's what I like more 😁 For the rest... they both do a good job in keeping bad people out!
Hi Matt, this video is great, I watched it many times then gave it a go. You do an excellent job at explaining. The only this is now, I can't login using a login modal once the plugin is activated. Is there something else I should do? I don't want to buy the pro version and then the same thing happens.
Hi there! You are very welcome! Thanks for the kind words, I really appreciate it. I’m glad I could help you out with this video. Can you explain what you mean with “Login Modal”? What do you see and what do you expect to see?
@WPressDoctor hi! Thanks for replying. By login modal I mean the pop up login form where users login to the website. I later tried solid on my other website that logs in directly from a login page on the site and no issues there. But for the one with the pop up it prevents logging in except straight from wp-admin.
Hi Valueniche! You are very welcome, it makes me happy to read your comment, thank you for taking some time out of your day to write me! Good luck with your adventures. Your 👍🏼 and subscribe would be very helpful if you haven't already done so. Have a great day and take care, greetings
Hi Jorge Alejandro! Thanks for the kind words and thanks for being a subscriber for 2+ years! Really appreciate it. Yeah its on my todo list to make that video 😁💪🏼 Have a great day and stay safe!
Hi there! I would go with Solid Security! Also paid, it’s a really good product with low impact on your server 😀 In the future I’ll make a tutorial about the paid version. I like it more than WordFence
Hi Matt. I hope you are doing fine! This is a great tutorial!! However, in the process of configuring things, in the IP Detection Methods I only get "unconfigured, manual, disabled" and not the option shown in the tutorial. As I can't configure this, later on I can't configure the Firewall. If put to manual another list appears to configure the Proxy header, and I have no idea of what to choose there. Options are: CF-Connection_IP, X-Forward-For, X-Real-IP, X-Client-IP, Client-IP, C-Cluster-Client-IP. I don't know why the option you show does not appear? Maybe they don't offer it anymore? Maybe it is something else. I would appreciate your advice on this, because otherwise, I won't be able to continue the configuration as recommended. Thank you very much!! Warm regards! Ricardo UPDATE - Now after a few house and out of the blue the option appeared in the list, but when selected it throws: Error detecting IP: Invalid parameter(s): proxy
Hi Ricardo! Thanks for the question. I'm doing fine thank you 😃 So yeah they changed the options slightly, not enough to make a entire new tutorial... So the IP Detection method is not that important, just put it on manual. Then chose the X-client-IP, you should be good then 😃
Thank you Matt. You are doing great job. I installed the plugin and went through all the settings as you did in this video. When I perform Site Scan, Plugins, themes, Wordpress Core and Google Safe Browsing come with red color Cross sign on the top. I couldn't figure out, the reason. Can you please guide?
Thanks for your great tutorials, Matt! I've got one question concerning security: Do you recommend Solid Security for a WP multisite network? Or is WordFence the better solution for that ... or anything else?
Hi Nicole! Thank you for your question and the kind words. You are very welcome! I'm glad my video was useful for you! In this case Solid Security will do! Keep up the good work and if you have any more questions, let me know 😁
Dankje voor de the tutorials! Vraagje: wat zijn de maandelijkse kosten van een security system? Want de prijzen kunnen zo oplopen merk ik :)@@WPressDoctor
Hi there! You are very welcome! Thank you for writing a comment. Really appreciate that! I'm glad I could help you out with your website. Please consider a 👍🏼 and subscribe or maybe a share for my video, that would help me a lot! Good luck with your adventures. Have a great day and take care. Greetings
thank you matt. loved the video, i do have some questions if you can help me with that. is free version enough to protect a blog website? i m starting a health blog website. i have used spectra to build it, and using astra theme (both free version only at the moment) and my hosting is from hostinger (business plan) which provide free ssl and daily backups and ddos protection. i had also integrated with cloudfare. and inspired from your video i am going to install this solid security plugin. is there anything more i can do to secure my website, or this would be sufficient? and yes since my hosting provide daily backups, do i need to select daily backup in solid security as well or i can do weekly and max 30 days?
Hi there! Thanks for the questions! You are already doing a really good job with everything, excellent. Yeah the free version should be sufficient for you! And no, it doesn’t have to create backups as you already have a good backup system from your host. So you should be good. Make sure to use a strong password and 2FA, follow my tutorial to the letter and you should be good!! 😀👍🏻
@@WPressDoctor i tries several times but this hide backend doesn't work. i can still login by wp-login. and with my new slug too. why the wp-login is not disabled?
Thank you❤ very much for the tutorial Matt, could you make a video of the pro version? It's the version I had installed before I found out that you had a video about the new ithemes. By the way, thank you very much for the subtitles in Portuguese, I'm from Angola so it was a great help
Hi Mauro Paulo! Thanks for your kind words, the sub and the great idea. I will make a video about the PRO version really soon! Thats great to hear that the Portuguees Subtitles worked for you. Hve a great day and stay safe!
Hi Matt, At some point, is there any chance you will do a security plug-in round-up for comparison purposes? I've used Wordfence and WP Cerber in the past. I am wondering how Solid Security compares to those packages? Also, were there any features in your demo that were paid features?
Hi there! Thanks for the questions. That’s a great idea to make a video about it. I will add it to my list. In this video there are no paid features, only the basic (free) version is used 😀👍🏻
Hi there! You are very welcome! I’m glad I could help you out with this video. Stay tuned, more awesome tutorials coming up! Have a great day and take care 😀👍🏻
Thank you, Matt! This is very helpful! I followed along with your tutorial and made it to the end. I just noticed that after activating and setting up this plugin, I can no longer add or edit new user roles in my WP dashboard. Is there another way to configure this without deactivating the plugin, making the necessary changes for user roles, and then reactivating the plugin? :)
Hi there! Thanks for the question. Good job! I’m glad you got through the end and secured your website! Hm that’s odd, I have never encountered that issue when changing user roles for other people with this plugin 🤔. You could send support a email and ask them how this is possible?
Hi there! You are very welcome. I’m glad I could help you out with this video and that you found it useful. Stay tuned for more new awesome videos! Have a great day and take care 😀
He Mat, Geweldige nieuwe video. Heb dan ook maar alles zeer goed en aandachtig gevolgd. Volgens mij is alles gelukt, waarvoor dank, op 1 ding na. Bij gebruikers krijg ik onderaan alleen het scherm te zien bij To Factor authentification een hoop uotles en een knop cofigureren te zien. alles is geconfigureerd maar krijg niets anders te zien zoals de mogelijkheid om een nieuwe aan te maken , of de qrcode die krig ik niet te zien wat zou er mis kunnen zijn ?
Hey goedenavond! Dank voor je compliment en goed dat je je website hebt beveiligd! Maar wat je zegt klinkt inderdaad vreemd. Wat zie je precies staan bij ‘Gebruikers’? “Uotles“?
@@WPressDoctor Two-Factor Authorization dit is wat ik te zien krijg bij de gebruiker die ingesteld is op beheerder Enabling two-factor authentication greatly increases the security of your user account on this site. With two-factor authentication enabled, after you submit your username and password, you will be asked for an additional authentication code to complete your login. Two-factor authentication codes can come from an app that runs on your mobile device, an email that is sent to you after you log in with your username and password, or from a pre-generated list of codes. The button below allows you to configure which of these authentication code providers are enabled for your user. daaronder een knop confifureren Dat heb ik dus gedaan geconfigurrerd en ik als ik inlog moet ik inderdaad die code van mijn Iphone ingeven. dus dat werkt allemaal wel maar krijg enkel die gevens en die Qr code niet te zien, enkel als ik terug op configureren druk krijg ik de q code te zien en kan ik terug een nieuwe two factor aanmaken. Ook de herstelcodes die ik heb afgeprint die werken wel degelijk.
Hm dat blijft een gek iets. Even alle two factor verwijderen bij "Users" "My profile" en dan opnieuw erin zetten op diezelfde pagina, dat zou moeten werken!
Hi mr. Stockholm Syndrome! Thats pretty awesome and the best way to keep your sites from getting hacked. Make sure to also update regularly and don't put your password on the internet 😁 have a great day and stay safe!
Thanks a bunch for this video and for explaining everything in detail. quick question is there a way to export the settings to use on other websites, or is it best to do each website manually?
Hi Sal Adel, Thank you very much for your kind words. You are very welcome! Here is indeed the updated version of Solid Security, formely known as iThemes Security 😁 Have a great day and stay safe!
Hi Salvador! You are very welcome, it makes me happy to read your comment, thank you for taking some time out of your day to write me! I'm glad I could help you out with Securing your WorDpress website. Your 👍🏼 and subscribe would be very helpful if you haven't already done so. Have a great day and take care, greetings
Hi, Great tutorial video! I have a question regarding changing the "login URL." When a customer clicks "Reset Password," they receive an email with a link. It shows my login URL. How can I hide this?
Hi there! Thanks for the kind words. Yeah that's a good question... 🤔 I think the best way to do this is to change the e-mail that is being send out from itself. You can then alter the link to the custom login page you created for your customers. What do you think about that?
@@WPressDoctor I will try that and see if it works. I have another question: after activating the plugin and following all your instructions, there's a popup login showing when I scroll the website ( as a visitor or admin) that says, 'Your login information will be sent securely. | username + password |'. It's very annoying. How can I disable this?
Matt, is it a good idea to have this set up on the staging site when building a website, or should you wait, until the site is moved to the live domain it will be on?
Hi there! Thanks for the good questions. I build websites on staging domains on my own server, they are shielded from the outside, so no chance for hackers. Then after putting it live on the final domain I install Solid Security 😃
Thank you so much! My two websites were hacked and they are safe now but I'm just following all your instructions to prevent that from happening again. Next, I'm working on opening my shop using WooCommerce so as I was installing Solid Security I was wondering about the client group security settings. Should I also skip the two-factor identification as with subscribers? What would you suggest?
Hi Joanna! Thanks for the kind words, really appreciate it! The client group should also indeed skip 2-factor, as they can’t change anything of importance in your site 😀👍🏻 Great work you got it cleaned!
Hi there! You are very welcome! I’m glad the video was useful. I hope my other video’s will also add something to your knowledge and skillset! Getting the word out there with your 👍🏼 and subscribe, and possibly a share would be much appreciated. Good luck with your adventures. Have a great day and take care. Greetings
Great video Matt (as always). Keep up the good work. After this tutorial after login in where de 2FA should pop up. I'll get a 502 Bad gateway error. After I rename the plugin as in your tutorial I'm gladd I can still login. Do you know what this is?
Hi there! Thanks for the kind words, I really appreciate that! That's odd, it shouldn't be that way... Try following the new tutorial about setting it up, I have a slightly different approach wtih 2FA: ua-cam.com/video/nbO5ijGhN0k/v-deo.html
can i ask one more question? i have included table of content in my blog, like what/ how/ advantages/ disadvantages etc. if someone searches for just advantages of that topic. then its mentioned in my sub heading, its not the title of my blog. what can i do so that google will show to result from that sub section with few lines of snippet in the search result?
Hi there! Thanks for the question. It should work the way like you designed it, but Google only shows it when the algorithm likes the answer and it will be picked up… so good luck 👍🏻😀
Hi there! You are very welcome! Thank you for writing a comment. Really appreciate that! Please consider a like and subscribe or maybe a share for my video, that would help me a lot! If you want a free website review / audit, check wpressdoctor.com/audit
iThemes has had a rebrand to Solid Security! And not only that, it has some cool new features to like the Site Scan and Bulk User Edit... It has just become the best Security plugin for WordPress 😁 I hope this Tutorial helps you out. Have a great day and stay safe!
hi sir will you please make a video on page speed for new website with mobile reload speed of 35 ,please make it with free resources thank you
Hi there! Thanks for your question. The problem is that when you pay peanuts, you get monkeys. For something so important as caching I tried all kind of paid and free plugins, but the best plugin is still WP Rocket…
no basic available, just the pro version
Because of this tutorial alone, I have subscribed!
Hi Benjamin! Thank you for writing a comment. Really appreciate that! I'm glad I could help you out with your website. Thanks for subscribing! I do appreciate that very much. Good luck with your adventures. I hope I can contribute to your online succes. Have a great day and take care. Greetings :_wprMatt
EXCELLENT TUTORIAL! No corners cut and all info provided! You have gained a new subscriber! This info was extremely helpful in setting up a client's site and also ... ooops! I confess I was still using wp-admin myself! Your recommended security plugin is top notch. I uninstalled Loginizer on all my WP sites and installed this one!
Hi Enrique! Thank you for these kind words and the sub! I really appreciate that. I’m glad you liked this video tutorial about Securing your WordPress website with Solid Security. Yeah loginizer is a plugin but there are so many other things that needs to be secured, especially XML-RPC for example. But you got it done! So I’m proud of you 😀👍🏻 Have a great day and hope to see you again in the next video!
Superbly explained... Master course on solid security.
Hi Ben! Thanks for the kind words, I really appreciate it. I’m glad I could help you out with this video! Have a great day and take care 😀👍🏻
Hi Matt, thanks for taking the time to create this video. I’ve followed the steps you outline and now have 2 step authentication running on my website. I couldn't have done it without help, so thank you!
Hi Andrew ! Thanks for your kind words, I really appreciate it. I'm glad I could help you out securing your WordPress website. Have a great day and take care 😀
this is not just a helpful video, its a life saver so thank you very much Matt.
Hi Bonny! You are very welcome, it makes me happy to read your comment, thank you for taking some time out of your day to write me! I'm glad I could help you out with Securing your WordPress website. Your 👍🏼 and subscribe would be very helpful if you haven't already done so. Have a great day and take care, greetings
Hey Matt thank you so much for this tutorial. I haven't had any issues with my site being hacked and after this tutorial feel much better about it's security. Continued success to you.
Hi there! Thanks for the kind words! Yeah if all is configured well you can sleep well tonight! Keep your plugins, themes and Wordpress itself updated though, then you should be completely safe (if you don’t put your password online somewhere 😂)
Hi Matt. I just wanted to take a minute and Thank You for the videos you have created to assit individuals that need a bit of help along the way. Your vids have saved my behind more than once and everytime I need a little help, I know where to find it. Your UA-cam Channel. Once again. Thanks
Hi there! Thank you so much for your kind words, I really appreciate it. You made my day! Thanks a lot 😀👍🏻 Have a great day and stay safe!
Nice studio Matt 🥰
Thanks buddy. Trying to make the best of it 😀
Thanks for the video, i checked your previous video as well. i was thinking that you need to create latest one and then i read you description, thanks again dude.
Hi Muhammad! Thank you for your comment! You are very welcome. I'm glad I could help you out with this video. Have a great day and stay safe!
Many thanks for the great explanation! I had actually searched in German - without success! As a newcomer to WP, I had 2870 events in the log from mid-May. After the described settings this stopped immediately! I was also able to fix my own lockout.
Hi Gerhild! That is awesome to hear. Great! Have a great day and take care 😃
Thank you, Matt. Clear, comprehensive and extremely helpful, step-by-step demo which I followed along and set up my site accordingly. I have never been a fan of WP because of its security issues but with your help, I felt confident enough to give WP another go for my mini sites. As a thank you, I will be subscribing to Divi using your affiliate link.
Hi Jamie! Hi there! You made my day! It makes me happy to read your comment, thank you for taking some time out of your day to write me! I'm glad I could help you out with your website to give you confident again. Thanks for getting Divi using my link, realy appreciate it! Have a great day and take care, greetings
Matt, I just subscribed to your channel and liked the video. Excellent tutorials, I wish I had found your channel before I got my websites hacked. Thanks for the thoroughness of your videos.
Thanks for the sub! Really appreciate that also 😀👍🏻 Well you live, you learn. All good now?
@@WPressDoctor yes. So far so good. I'm learning not to freak out when I get emails notifying files changed. I'm going to look in your channel to see if you have some explanation about what parameters should I use to scan through those emails. Thanks again and blessings to you, your family and your business.
Thank you so much for this tutorial, Math. Website security is such a sensitive and important topic. All of your tutorials are always insightful, and your calm and reassuring style of explanation really sets you apart from other UA-camrs. Keep up the great work!
Hi there! You are very welcome! It makes me happy to read your comment, thank you for taking some time to write me. I’m so glad you like my style of videos. Have a great day and take care! Greetings
Excellent tutorial! Thank you so very much for taking the time to make this video.
Hi there! You are very welcome, it makes me happy to read your comment, thank you for taking some time out of your day to write me! I'm glad I could help you out with your website. Keep it up and soon you won't be a newbie WP Developer but from a zero to hero! 😎 Have a great day and take care, greetings
Just went through a bunch of your videos, good stuff. You have a new subscriber.
Hi there! You are very welcome! Thanks for the kind words and the sub! I really appreciate it. I’m glad I could help out with this video. Stay tuned, more awesome tutorials coming up! Have a great day and take care 😀👍🏻
Thank you for that awesome guide through all the options. Doing this for my first webshop-site and it has helped me tremendously!
Hi there! You are very welcome! I'm glad I could help you out with your first webshop! I'm glad you got it secured good now. WHat kind of products are you selling?
Hey Matt, thanks for the well-thought-out video. As a beginner to web development, it was nice to have everything to do with security in one easy-to-access tutorial.
Hi there! Thanks for the kind words, I really appreciate it! I’m glad you like the style. Hang on for more awesome videos coming soon 👍🏻😀
Just would to let you know: You have the greatest videos about WP plugins. Every time I need some of it, I come back to your channel. It´s a pleasure to buy from your affiliate link! Its just... you help us out, so... we must help you out back. Tnx, Matt! Really appreciate your job here.
Hi there! Thanks for your kind words! It’s really heartwarming… I’m so glad I could be part of your online journey and I’m excited and thankful that you use the affiliate links, it makes it all possible to make this valuable content 😃 so thanks! Have a great day and take care!
Thank you so much Matt. I'm just setting up my blog website, My friend recommended that I follow through this video to ensure my site is and I'm super happy and feel much safer after doing this. However, after doing this, I can no longer make edits to my blog post that was saved to draft. I am getting the message I setup on the slug step you showed after changing it from "wplogin". I'd really appreciate a response from you on this. Thank you so much ❤
Hi Andrew! Thanks for the kind words. I’m glad you followed the steps and secured your website. So try turning it on and off again 😂 I’m serious though, turn the specific feature off and try editing pages. Try turning it on and see if it still works. If not, it might be conflicting with another plugin. You can leave it off, your brute force settings will prevent a hack this way 😀👍🏻
Thanks Matt! As a newbie. Definetely will have to go back through this, it shows the designer/deverloper who set-up my site didn't set it up property with the plug ins and settings.
Hi there! You are very welcome! Yeah sometimes people tend to use a lot of “stuff” that’s actually not needed like plugins for every single little thing… well now you know better 😎
Thank you for keeping us updated, great tutorial video as usual
Hi there! Thanks for the kind words, I really appreciate it. Your welcome! iThemes is no more, so I needed to make this video. I personally don’t like it when you try to follow a tutorial and it is very outdated. So now this video can help everybody again setting it up the right way 👍🏻😀
You are legend.... Thank you so much for this amazing Tutorial.... Big fan of your style of explantion...
Hi there! Thanks for the kind words! You made my day 😍. I’m glad you like the style! Have a awesome day and stay tuned, more amazing tutorials are planned 😇
Hi Matt,
That was an Amazing video and so important - Thank you.
I do have a few questions:
1. Do you use Solid Security? (Free or Paid) or do you use something else?
2. Do you think that the Free version is enough to secure a website (blog)?
3. How would you compare between "Solid Security" to "Wordfence" and "Sucuri"? (Free versions).
4. You said you "Don't Like "Jetpack" Plugin"! So what do You recommend using? what do you use?
Hi James, thanks for the kind words and being a subscriber to my channel for the past years! You are very welcome, I'm glad you liked it.
1. Yes I use the basic version on all private and clients websites! I might switch to the paid version, Going to check it out soon.
2. Yes it definitely is! Works perfect!
3. That I like Solid better for that it has a cleaner interface and works faster.
4. It depends on what you use Jetpack for. I have found it to be really slowing down my website and stuffing ads in my face constantly...
If you have more questions, let me know 😁
Thank you for answering my questions Matt.
1. I think that everyone that follows you would Love to see a Tutorial from you about the Paid version of "Solid Security", but only if you switch to the paid version and find it to be Better than the free one, of course.
2. If you don't use "Jetpack" then what do you use for your Comments section? to keep it clean and Spam free?
Would love to see a Tutorial about How to Stop Spam comments and keep that area a Safe place.
Thank you Matt@@WPressDoctor
@@WPressDoctorhi
Great video!! Thanks!What is the best security practice to add a temporarly developers to your wordpress site. Most of them ask for Administration Roles.
Hi there! That is a good question. In this case I would create a subdomain for developing. Like dev.yourdomain.com and give them access to that site. If that is not possible, you can always create new logins for them and keep track of changes that are made...
Hi there! Thanks for the question. So you can create a dev subdomain with a copy of your website. Then you can add them as new admins. I would go with that approach 😀
That was an Amazing video and explanation of everything - Thank you.
Hi Danail! You are very welcome! I’m glad I could help you out and you like the video. Have a great day and stay safe!
Excellent job Matt!
Hi there! You are very welcome! I’m glad the video was useful. I hope my other video’s will also add something to your knowledge and skillset! Getting the word out there with your 👍🏼 and subscribe, and possibly a share would be much appreciated. Good luck with your adventures. Have a great day and take care. Greetings
I don't usually comment but thanks for this detailed tutorial. Subbed.
Hi there! Thanks for your comment and I really appreciate it that you take some time out of your day to write me. Thanks! Also ik grateful for the sub, it helps! I’m glad you found the tutorial detailed and I could help you out. Have a great day and stay safe 😀👍🏻
You've done it again!! Awesome Content. 🤩
Hi Anthony! You are very welcome. Thanks for your kind words, I'm glad I could help you out with this video. 😁 Have a great day and all the best this coming new year!
Hey Matt, you are awesome man. Great tutorial as usual 👍👍👍
Hi there! Thanks for the kind words, I really appreciate it 😀👍🏻 I’m glad you like the style and video. If you have any tips, let me know! Have a great day and stay safe 🤩
Very good information. Applied Solid security for my blog. Please also make a video for firewall rules for allowing good bots & blocking bad bots through Solid Security. Thanks a lot for this tutorial. 👍
Hi Deepak! Thanks for the kind words, good jbo in applying the security for your blog! Well the good bots are already whitelisted by Solid Security, so that's no problem here. The bad bots are already blocked, so you should be good!
Thanks, Bedankt voor de heldere uitleg! It is a good tutorial Matt
Hi Ron! Graag gedaan! Ik ben blij dat je er iets aan had. Top dat je je website nu goed beveiligd hebt, extreem belangrijk tegenwoordig! Fijne dag gewenst!
awesome matt. Many thanks for the explanation. great tutorial
Hi there! You are very welcome! I’m glad I could help you out with this video. Stay tuned, more awesome tutorials coming up! Have a great day and take care 😀👍🏻
nice and very helpful tutorial. thank you Matt!
Hi there! You are very welcome, it makes me happy to read your comment, thank you for taking some time out of your day to write me! I'm glad I could help you out with your website. Your 👍🏼 and subscribe would be very helpful if you haven't already done so. Have a great day and take care, greetings
Thanks Matt for the Awesome Tutorial!
Hi there! Thanks for the comment, you are very welcome! I’m glad I could help you out with this video. Have a great day and take care! 😀👍🏻
Thanks Matt! As usual, your Tutorials are A+++
Hi Marc! That’s super kind of you. I’m so glad you like my videos. Have a great day and stay safe!
Hey just watched your Wordfence video before this one. First off, thanks for the in-depth tutorials :)
Having used both-which one would you recommend more and why?
Just asking as I have read some not so good things about Ithemes, so now I am wondering.
Hi Stefan! Thanks for the question and you are very welcome. So I would recommend Solid Security over WordFence. It has the great features, but Solid Security has also PatchStack integration and Hide backend feature... Also I think the plugin is faster then WordFence. Also I like the UI more 😁
Hi Matt, thank for the great video. You mention specifying the current IP address, what happens if the IP address changes or I try to login to the site from a different location? Don't want to be locked out obviously.
Hi there! Thanks for the question. That will not be the case. This is only a whitelist so that this IP address will never be locked out. But if you normally make use of your login page - you should be good 😀
@@WPressDoctor OK thank you, I thought it meant it would only allow users with that exact matching IP address.
Ah yeah, sorry, I might not have been 100% clear in the video 😀
Hey Matt, thank you so much for this tutorial, super helpful!!!
Hi there! You are very welcome! It makes me happy to read your comment, thank you for taking some time to write me. I hope my other video's are also useful for you getting the most out of your website. Getting the word out there with your 👍🏼 and subscribe, and possibly a share would be much appreciated. Have a great day and take care. Greetings
Hello Matt. With objectivity, content, great screen examples, level of details and presentation skills, your tutorials are for me the benchmark that all other channels should be based upon, congratulations! With Solid Security, have you ever faced issues with the e-mail for 2FA never arriving (not even in the spam folder) into your email? Thanks!
Hi there! Thanks for the kind words, you made my day 😀👍🏻 I’m glad I could help you out with this video. I have not yet encountered that problem, only when WordPress itself could not send out emails. Did you test it with other plugins / contact forms?
@@WPressDoctor Thank you for kindly answering Matt. I went today for a second attempt, after migrating the domain from Hostgator (where I did the first attempt 2 days ago) towards Hostinger. The migration itself was due to another reason. Strangely, after migrating, in the beginning of Solid Security configuration, in Global Settings --> IP Detection --> Proxy Detection (at 02:50 in this video), the option "Security Check Scan" is not available. Only the options "Automatic Insecury", "Manual" and "Disabled" are available. And yes the "Enable Security Check Pro" was activated in the previous screen. Well... I´ve aborted the Solid Security configuration at this point... while I research why this "Security Check Scan" is not available.
Ok! Well it could just work without the scan… this is the scan about the IP address right?
@@WPressDoctor Yes only the IP address scan. Good news, it worked today... with no remedy nor action from my side, by the morning it was still not working, and in the afternoon the option already appeared there. Despites of no action, it is worthy commenting that I had opened a support request towards SolidWP, and had provided informations about SSL, parameters in wp-config.php etc... a handful of information but without specifying personal data like domain name or IP. Then without any specific action in my own site, it worked. I guess they have applied some kind of general remedy on their system. Very good support experience, I must add, for someone who still do not sign their PRO version :) Thank you for introducing me to this excellent plugin, Matt, and again, thank you for the amazing learning experience provided by you. I´ve subscribed your channel, and rest assured that when it arrives the moment of going PRO with any of the products promoted by your channel, I´ll buy from you :) Warm greetings from Brazil.
Hey this is great!
Just one simple plugin and well explained, thanks!
Hi there! Thanks for the kind words, I really appreciate it. Yeah it’s a simple but powerful plugin! I’m glad I could help you out 😀👍🏻 Have a great day and stay safe!
Thank you for a lot of great tips, you are a master! One thing I noticed though, do you know if the free Basic version of Solid Security is just hidden somehow, or have they abandoned it altogether? What I can see is that it's no longer available as an option on their landing page, which kind of changes the deal for me. I usually favor products that I can try before I buy.
Hi there! Thanks for the question. Well
You can always download it straight inside of your Wordpress website. Just go to “add plugin” and search for Solid Security 👍🏻😀
Extraordinary as usual !! 👏👏👏
Hi Mauricio! Thanks! I'm glad you liked you the video. Have a great day and stay safe!
well done, been looking for a security plugin: will have to follow not to miss on any other. thanks
Hi Andrew! Thanks for your comment. I’m glad I could help you out with this video. Thanks for the subscription. Have a great day and stay safe!
thanks@@WPressDoctor
Thanks so much for this tutorial - it's helpful!
I have Solid Security installed on my site, and this tutorial helped me properly reconfigure it. But at the same time, I have All In One WP Security plugin installed as well. So, is this necessary again or not please. Thank you.
Hi there! You are very welcome! It makes me happy to read your comment, thank you for taking some time to write me. I would not advice you to use two security plugins at the same time. It could cause some problems 👍🏻
I hope my other video's are also useful for you getting the most out of your website. Getting the word out there with your 👍🏼 and subscribe, and possibly a share would be much appreciated. Have a great day and take care. Greetings
Amazing tutorial! Thank you so much!
Hi Julio! Good to see you here again. Thank you for your kind words! Really appreciate that! I am glad the video was helpful to you and you could secure your website. I hope my other video’s might also help you. Have a great day and take care! 😃
Hey Thank You Matt! It was a great tutorial.
Hi there! You are very welcome! Thank you for writing a comment. Really appreciate that! Please consider a like and subscribe or maybe a share for my video, that would help me a lot! Have a great day and take care! 😃
@@WPressDoctor Hi Matt! As far as I remember, I have already done.... :-)
Thanks! Much appreciated 😀
Don't know if this has been asked already, but is there any problem with having both "Wordfence Security" and "Solid Security Basic" active at the same time? Thanks in advance for your answer, and amazing video. It has been very helpful!
Hi there! Thanks for the kind words and your question. I would not advice you to do this, as both plugins have some same features. This might cause some unexpected behavior. So just pick one is my advice 👍🏻😀
Great video. I was confused about whether to go with Solid Security or Wordfence but with your video you've helped me to decide that Solid Security is the way to go. However, I also use SiteGround, just like you and they offer a security plugin called Security Optimizer. What's your thoughts on that? Should I deactivate and delete it and use Solid Security instead?
Hi there! Thanks for the question. Yeah Solid Security is a solid plugin. The security optimizer from SiteGround maybe good, but I have never tested it and don’t know if it’s any good on the long run. Also compared to solid security it’s a relatively new piece of software. So I love experience in this field 😀
Great plugin setup review. I reviewed Solid Securities documentation before writing you here but could not find an answer. Some of the categories in the site scanner show red X instead of purple checks when the site scan is complete. The locked pro features show black locks. Do you know what the red x means?
Hi there! Thanks for the question. It could mean that the scan was unable to scan it due to hosting settings, or that there is malware found, but then it will show in the list below...
@@WPressDoctor I think that it is issues with hosting probably because there are no lists of malware or vulurabilities. I will dig into the hosting possibilities.
Sure thing. Good luck and let me know when you have figured it out 😀👍🏻
I love you man, Thank you for great video, it's very helpful.
Hi there! You are very welcome. Thanks for the kind words 😀👍🏻 Have a great day and stay safe!
Matt, excelent content.
As you gave the opportunity to ask, How can we customize the 2AF email? change sender and logo from Wordpress to custom one
Hi Fábio, thanks for the kind words and the question. Well you can change the text from within the plugin, I have not yet seen a place to change the logo itself... good question though, the devs might know a answer to that, or you can of course change the PHP files yourself...
Awesome Video!!! Thank you🎉🎉🎉
Hi there! You are very welcome! I’m glad I could help you out with this video. Stay tuned, more awesome tutorials coming up! Have a great day and take care 😀👍🏻
Matt excellent video, appreciate your help.
Hi Gary! Thanks for the kind words, you are very welcome. I’m glad I could help you out 😀👍🏻 Have a great day and stay safe!
Nice and super video !
Hi Alex! Thanks! It makes me happy to read your comment, thank you for taking some time out of your day to write me! I'm glad I could help you out with your website. Your 👍🏼 and subscribe would be very helpful if you haven't already done so. Have a great day and take care, greetings
Hi, Doc. How can I save the settings to this plugin to use it on my other websites? The setup is very long. Nice video. Thank you.
Hi there! Thank you for your question. Yes you can, but only in the PRO version of the plugin 😎 Have a great day and take care, greetings
Hi Matt, Thanks for a great video - much appreciated. Liked/Subscribed.
A quick one: would it be enough security for a WP e-commerce site with this plugin and the SSL certificate provided by a hosting provider? (They are usually free and DV SSLs kinds of...) Would you still consider installing the EV SSL on? Lots of thanks for your kind response.
Hi there and thanks for the question. Yeah this will be enough! Just make sure to update any plugins/themes and use a 2FA and strong password that has not been leaked on the darkweb 😊
@@WPressDoctor Such a great news! Thanks a LOT, Matt!!😃
You are very welcome!
Matt, first greetings from Prague (Czech Republic)! Many thanks for very helpfull guide. I have gone through all the setup, all is fine and done, just one point is different on my side. In 23:11 in your video you show how to Change User ID 1 easily from WP: Security / Tools. However I miss such an offer here. There are all the items available (Identify Server IPs, Change Database Table Prefix etc.), just Change Use ID 1 is missing on my side. I work with WordPress version 6.4.1. Would you know why? Many thanks.
Hi Jana! Thanks for the kind words and your question. Good that you have secured your website, well done! I think that if your User ID is not 1, than you are already good and there is no need to show this option, as it is already good. So you are in luck 😁 have a great day and stay safe!
Ok, thank you, so it means the plugin options are flexible, not constant, it reflects the actual status of given database. Many thanks, I wanted to be sure. Thank you and good luck!
@@WPressDoctor
You are very welcome! See you around 😎
Hi Matt,
You are really great.
I have a question. Does Solid Security replace Wordfence?
Hi there! Thanks for your kind words, I really appreciate it. Yeah Solid Security replaces Wordfence. So you can just chose one of both. Have a great day and a happy new year!
Thank you for this helpful video!
I would like to be sure, do you advise us not to use the word "admin" in our users list?
Hi there! You are very welcome. I’m glad I could help you out with this video 😀👍🏻 Yes, that is absolutely correct, don’t use that username 👍🏻.
Have a great day and take care!
Most useful video ever. My file permissions are more yellow than green but will try to find the video you recommended.
Hi Calabamian! Thanks for your kind words. I'm glad I could help you secure your WordPress website! Here is the FTP video: ua-cam.com/video/wRD5Zhu8Ids/v-deo.html
Your 👍🏼 and subscribe would be very helpful if you haven't already done so. Have a great day and take care, greetings
@@WPressDoctor Another great video! Got everything green except “/“…is that normal?
Liked and subscribed. 👍
Thanks! Well the / is the main folder of your website, should be on 755, the files on 644, then it should be good 👍🏻
Dikke LIKE.... goed bezig... ook in 2024... 🙂
Hey bedankt! Ik doe mijn best 😊 Goede dag gewenst!
Thanks so much!🙏 Excellent video7👌
Hi Sergejs! You are very welcome, it makes me happy to read your comment, thank you for taking some time out of your day to write me! I'm glad I could help you out with Securing your WordPress website. Your 👍🏼 and subscribe would be very helpful if you haven't already done so. Have a great day and take care, greetings
Thank You! This was great. Just what I needed. You gained a new sub
Hi there! You are very welcome! I’m glad I could help you out with this video. Thanks for the sub! Stay tuned, more awesome tutorials coming up! Have a great day and take care 😀👍🏻
Nice to meet you ❤❤❤
Hi there! Well we didn’t really meet, but thanks for commenting the love 😄 Havr a great day!
Hi Matt, thank you for the great video! Could you please explain what the "Hide Backend" feature is good for? Even if changing the login slug to "castlekeys" instead of "wplogin" the wordpress login page can still be accessed by adding "wp-login.php" instead of "castlekeys". It seems that hackers can still access the login page, which defies the purpose of this change to the login slug (at least that's what happens for me). Do you have a fix for this by any chance? Thanks a lot
Hi Patrick! Thanks for your question. It takes a while before those login URLS will be not- usable anymore. This has to do with the caching of your browser. So if you open up /wp-admin/ inside of your incognite or private window, it then will show a 404 page or a different page you have setup.
The point is that script kiddies are discouraged from tryting to get into your website. With the combination of brute force protection and also disabling the XML-RPC feature, it really helps a LOT to keep them outside.
@@WPressDoctor Thanks a lot Matt, the initial login URLs are indeed not usable anymore after waiting a few hours.
Thank you explained really well!
Hi Anna! You are very welcome. Thanks for your kind words, I'm glad I could help you out with this video. Have a great day and all the best this coming new year!
Thanks for this useful information. can you guide me on which plugin is best "Solid Security" or "Wordfence Security" please suggest the pros & cons.
Hi There! Thanks for the kind words, I really appreciate it. So I personally prefer Solid Security, as it has great options like also the hide backend feature 😀. For the rest, they both do the same things 💪🏻
Thanks for the great content as always Matt. How is that in comparison with Wordfence? Which one is better in your experience?
Hi Christos! Thanks for the kind words, I really appreciate it! In my experience they are both good. Its just a matter of personal preference. I think Solid Security has a cleaner interface and has the "hide backend" feature. That's what I like more 😁 For the rest... they both do a good job in keeping bad people out!
Hi Matt, this video is great, I watched it many times then gave it a go. You do an excellent job at explaining. The only this is now, I can't login using a login modal once the plugin is activated. Is there something else I should do? I don't want to buy the pro version and then the same thing happens.
Hi there! You are very welcome! Thanks for the kind words, I really appreciate it. I’m glad I could help you out with this video.
Can you explain what you mean with “Login Modal”? What do you see and what do you expect to see?
@WPressDoctor hi! Thanks for replying. By login modal I mean the pop up login form where users login to the website. I later tried solid on my other website that logs in directly from a login page on the site and no issues there. But for the one with the pop up it prevents logging in except straight from wp-admin.
Ah ok, must be because of the pop-up I think… you could ask the developers about this?
Thanks for the detailed video.
Hi Valueniche! You are very welcome, it makes me happy to read your comment, thank you for taking some time out of your day to write me! Good luck with your adventures. Your 👍🏼 and subscribe would be very helpful if you haven't already done so. Have a great day and take care, greetings
Thanks for the video Matt. As always very good video and easy to follow. Could you make it for the pro version? God bless.
Hi Jorge Alejandro! Thanks for the kind words and thanks for being a subscriber for 2+ years! Really appreciate it. Yeah its on my todo list to make that video 😁💪🏼 Have a great day and stay safe!
Thanks Matt another great tutorial
Hi there, thanks for your comment! I’m glad I could help you out with this video. Have a great day and keep safe!
Wordfence or SolidWP? For paid option which one has better security and minimum impact on site speed
Hi there! I would go with Solid Security! Also paid, it’s a really good product with low impact on your server 😀 In the future I’ll make a tutorial about the paid version. I like it more than WordFence
Hi Matt. I hope you are doing fine!
This is a great tutorial!!
However, in the process of configuring things, in the IP Detection Methods I only get "unconfigured, manual, disabled" and not the option shown in the tutorial.
As I can't configure this, later on I can't configure the Firewall.
If put to manual another list appears to configure the Proxy header, and I have no idea of what to choose there.
Options are: CF-Connection_IP, X-Forward-For, X-Real-IP, X-Client-IP, Client-IP, C-Cluster-Client-IP.
I don't know why the option you show does not appear? Maybe they don't offer it anymore? Maybe it is something else.
I would appreciate your advice on this, because otherwise, I won't be able to continue the configuration as recommended.
Thank you very much!!
Warm regards!
Ricardo
UPDATE - Now after a few house and out of the blue the option appeared in the list, but when selected it throws: Error detecting IP: Invalid parameter(s): proxy
Hi Ricardo! Thanks for the question. I'm doing fine thank you 😃 So yeah they changed the options slightly, not enough to make a entire new tutorial... So the IP Detection method is not that important, just put it on manual. Then chose the X-client-IP, you should be good then 😃
@@WPressDoctor Thank you very much for your answer!
Great! I'll try that.
Thank you!!!
Very educative. Thanks
Hi there! You are very welcome! I’m glad I could help you out with this video 😀. Have a great day and stay safe 😄
Thank you Matt. You are doing great job.
I installed the plugin and went through all the settings as you did in this video. When I perform Site Scan, Plugins, themes, Wordpress Core and Google Safe Browsing come with red color Cross sign on the top. I couldn't figure out, the reason. Can you please guide?
Hi there! THanks for the question. That indicates that something is wrong. If you run the scan again, does it say why it is a red cross?
Thanks for your great tutorials, Matt! I've got one question concerning security:
Do you recommend Solid Security for a WP multisite network? Or is WordFence the better solution for that ... or anything else?
Hi Nicole! Thank you for your question and the kind words. You are very welcome! I'm glad my video was useful for you! In this case Solid Security will do! Keep up the good work and if you have any more questions, let me know 😁
Dankje voor de the tutorials! Vraagje: wat zijn de maandelijkse kosten van een security system? Want de prijzen kunnen zo oplopen merk ik :)@@WPressDoctor
Thank you so much, It was really great and useful
Hi there! You are very welcome! Thank you for writing a comment. Really appreciate that! I'm glad I could help you out with your website. Please consider a 👍🏼 and subscribe or maybe a share for my video, that would help me a lot! Good luck with your adventures. Have a great day and take care. Greetings
thank you matt. loved the video, i do have some questions if you can help me with that.
is free version enough to protect a blog website?
i m starting a health blog website. i have used spectra to build it, and using astra theme (both free version only at the moment) and my hosting is from hostinger (business plan) which provide free ssl and daily backups and ddos protection. i had also integrated with cloudfare.
and inspired from your video i am going to install this solid security plugin. is there anything more i can do to secure my website, or this would be sufficient?
and yes since my hosting provide daily backups, do i need to select daily backup in solid security as well or i can do weekly and max 30 days?
Hi there! Thanks for the questions! You are already doing a really good job with everything, excellent. Yeah the free version should be sufficient for you! And no, it doesn’t have to create backups as you already have a good backup system from your host. So you should be good. Make sure to use a strong password and 2FA, follow my tutorial to the letter and you should be good!! 😀👍🏻
thanks matt@@WPressDoctor
@@WPressDoctor i tries several times but this hide backend doesn't work. i can still login by wp-login. and with my new slug too. why the wp-login is not disabled?
Thank you❤ very much for the tutorial Matt, could you make a video of the pro version? It's the version I had installed before I found out that you had a video about the new ithemes. By the way, thank you very much for the subtitles in Portuguese, I'm from Angola so it was a great help
Hi Mauro Paulo! Thanks for your kind words, the sub and the great idea. I will make a video about the PRO version really soon! Thats great to hear that the Portuguees Subtitles worked for you. Hve a great day and stay safe!
Hi Matt,
At some point, is there any chance you will do a security plug-in round-up for comparison purposes? I've used Wordfence and WP Cerber in the past. I am wondering how Solid Security compares to those packages? Also, were there any features in your demo that were paid features?
Hi there! Thanks for the questions. That’s a great idea to make a video about it. I will add it to my list. In this video there are no paid features, only the basic (free) version is used 😀👍🏻
Very useful! Well done 👍!
Hi there! You are very welcome! I’m glad I could help you out with this video. Stay tuned, more awesome tutorials coming up! Have a great day and take care 😀👍🏻
Thank you, Matt! This is very helpful! I followed along with your tutorial and made it to the end. I just noticed that after activating and setting up this plugin, I can no longer add or edit new user roles in my WP dashboard. Is there another way to configure this without deactivating the plugin, making the necessary changes for user roles, and then reactivating the plugin? :)
Hi there! Thanks for the question. Good job! I’m glad you got through the end and secured your website! Hm that’s odd, I have never encountered that issue when changing user roles for other people with this plugin 🤔. You could send support a email and ask them how this is possible?
@@WPressDoctor Thank you again, Matt! For some reasons, it's already fixed now! Have a great day!!
Awesome!
Very useful video
Thank you for your efforts
Hi there! You are very welcome. I’m glad I could help you out with this video and that you found it useful. Stay tuned for more new awesome videos! Have a great day and take care 😀
@@WPressDoctor thank you sir
Thank you! Great tutorial!!
Hi there! You are very welcome! I’m glad you like the video 😀 More awesome video’s are coming up! Have a great day and a wonderful new year!
really best video !
Hi Naeem again! Good choice after building your eCommerce website to secure your WordPress website 😀 Have a great day and take care, greetings
He Mat,
Geweldige nieuwe video. Heb dan ook maar alles zeer goed en aandachtig gevolgd. Volgens mij is alles gelukt, waarvoor dank, op 1 ding na. Bij gebruikers krijg ik onderaan alleen het scherm te zien bij To Factor authentification een hoop uotles en een knop cofigureren te zien. alles is geconfigureerd maar krijg niets anders te zien zoals de mogelijkheid om een nieuwe aan te maken , of de qrcode die krig ik niet te zien
wat zou er mis kunnen zijn ?
Hey goedenavond! Dank voor je compliment en goed dat je je website hebt beveiligd! Maar wat je zegt klinkt inderdaad vreemd. Wat zie je precies staan bij ‘Gebruikers’? “Uotles“?
@@WPressDoctor Two-Factor Authorization dit is wat ik te zien krijg bij de gebruiker die ingesteld is op beheerder
Enabling two-factor authentication greatly increases the security of your user account on this site. With two-factor authentication enabled, after you submit your username and password, you will be asked for an additional authentication code to complete your login. Two-factor authentication codes can come from an app that runs on your mobile device, an email that is sent to you after you log in with your username and password, or from a pre-generated list of codes. The button below allows you to configure which of these authentication code providers are enabled for your user.
daaronder een knop confifureren
Dat heb ik dus gedaan geconfigurrerd en ik als ik inlog moet ik inderdaad die code van mijn Iphone ingeven. dus dat werkt allemaal wel maar krijg enkel die gevens en die Qr code niet te zien, enkel als ik terug op configureren druk krijg ik de q code te zien en kan ik terug een nieuwe two factor aanmaken. Ook de herstelcodes die ik heb afgeprint die werken wel degelijk.
Hm dat blijft een gek iets. Even alle two factor verwijderen bij "Users" "My profile" en dan opnieuw erin zetten op diezelfde pagina, dat zou moeten werken!
This is good! Thanks. I will install Solid Security on all my sites today! Thanks again.
Hi mr. Stockholm Syndrome! Thats pretty awesome and the best way to keep your sites from getting hacked. Make sure to also update regularly and don't put your password on the internet 😁 have a great day and stay safe!
@@WPressDoctor -I will follow all your instructions and do it on all my 30 sites. Greetings from Sweden.
Excellent! Good luck 😀👍🏻
@@WPressDoctor I think they changed Solid Security Free version and some stuff is not accurat anymore? Update?
Hi there! Thanks for letting me know. I wait a little bit before launching a new video, let there be more updates 😀👍🏻
Thanks a bunch for this video and for explaining everything in detail. quick question is there a way to export the settings to use on other websites, or is it best to do each website manually?
Hi Sal! You are very welcome. Yes that is possible! I have covered that later in the video 😃 Have a great day and take care!
@@WPressDoctor great thanks, will watch the entire video. 👍😃
Awesome, good luck!
Thank you for the update on WordPress Security plugin
Hi Sal Adel, Thank you very much for your kind words. You are very welcome! Here is indeed the updated version of Solid Security, formely known as iThemes Security 😁 Have a great day and stay safe!
Thank you SOOO Much!!
Hi Salvador! You are very welcome, it makes me happy to read your comment, thank you for taking some time out of your day to write me! I'm glad I could help you out with Securing your WorDpress website. Your 👍🏼 and subscribe would be very helpful if you haven't already done so. Have a great day and take care, greetings
Hi,
Great tutorial video! I have a question regarding changing the "login URL." When a customer clicks "Reset Password," they receive an email with a link. It shows my login URL. How can I hide this?
Hi there! Thanks for the kind words. Yeah that's a good question... 🤔 I think the best way to do this is to change the e-mail that is being send out from itself. You can then alter the link to the custom login page you created for your customers. What do you think about that?
@@WPressDoctor I will try that and see if it works. I have another question: after activating the plugin and following all your instructions, there's a popup login showing when I scroll the website ( as a visitor or admin) that says, 'Your login information will be sent securely. | username + password |'. It's very annoying. How can I disable this?
🤨 that message is not from Solid Security. Try inspecting it to see where it comes from?
Matt, is it a good idea to have this set up on the staging site when building a website, or should you wait, until the site is moved to the live domain it will be on?
Hi there! Thanks for the good questions. I build websites on staging domains on my own server, they are shielded from the outside, so no chance for hackers. Then after putting it live on the final domain I install Solid Security 😃
Thank You So Much Sir❤
More Power To you..
Hi there! Thanks for the kind words, I really appreciate it. I’m glad the tutorial was clear! Have a great day and stay safe! I receive that power ⚡️😎
Thank you so much! My two websites were hacked and they are safe now but I'm just following all your instructions to prevent that from happening again. Next, I'm working on opening my shop using WooCommerce so as I was installing Solid Security I was wondering about the client group security settings. Should I also skip the two-factor identification as with subscribers? What would you suggest?
Hi Joanna! Thanks for the kind words, really appreciate it! The client group should also indeed skip 2-factor, as they can’t change anything of importance in your site 😀👍🏻 Great work you got it cleaned!
@@WPressDoctorthanks! I'll have it just like you suggest.
Thank you you are very helpful.
Hi there! You are very welcome! I’m glad the video was useful. I hope my other video’s will also add something to your knowledge and skillset! Getting the word out there with your 👍🏼 and subscribe, and possibly a share would be much appreciated. Good luck with your adventures. Have a great day and take care. Greetings
Great video Matt (as always). Keep up the good work. After this tutorial after login in where de 2FA should pop up. I'll get a 502 Bad gateway error. After I rename the plugin as in your tutorial I'm gladd I can still login. Do you know what this is?
Hi there! Thanks for the kind words, I really appreciate that! That's odd, it shouldn't be that way... Try following the new tutorial about setting it up, I have a slightly different approach wtih 2FA: ua-cam.com/video/nbO5ijGhN0k/v-deo.html
can i ask one more question? i have included table of content in my blog, like what/ how/ advantages/ disadvantages etc. if someone searches for just advantages of that topic. then its mentioned in my sub heading, its not the title of my blog. what can i do so that google will show to result from that sub section with few lines of snippet in the search result?
Hi there! Thanks for the question. It should work the way like you designed it, but Google only shows it when the algorithm likes the answer and it will be picked up… so good luck 👍🏻😀
Thanks for the tutorial. God bless
Hi there! You are very welcome! Thank you for writing a comment. Really appreciate that! Please consider a like and subscribe or maybe a share for my video, that would help me a lot! If you want a free website review / audit, check wpressdoctor.com/audit