Lỗi error while sending site lockouts notification plugin ithemes security năm 2024
The iThemes Security plugin offers 30+ ways to secure and protect your WordPress website. In this guide, we walk through all the iThemes Security plugin settings with an in-depth explanation of the features. Show
Introducing the Settings ModulesAll iThemes Security settings are organized into “Modules” on the Settings page. After installing and activating the plugin on your website, navigate to the Settings page within the iThemes Security plugin menu in your WordPress Admin Dashboard. [content_upgrade cu_id=”50548″]Download the iThemes Security Setup Guide ebook [content_upgrade_button]Download now[/content_upgrade_button][/content_upgrade]Security CheckThe first module in the list is the Security Check. The Security Check ensures your site is using the basic recommended settings.
With the Security Check, the following settings modules will be enabled and configured for you:
Note: Running the Security Check more than once will re-enable recommended settings that have been disabled. The following sections provide an in-depth explanation of each iThemes Security plugin settings module. While this information may seem overwhelming at first glance, please note that the Security Check module is designed to handle configuring most of the recommended settings for you. Don’t worry—you don’t need to enable or manually configure all of these settings one by one! The remainder of this guide is designed to be a reference for available settings within the plugin. It can also help you evaluate the advantages of the iThemes Security Pro plugin.
Global SettingsThe Global Settings module allow you to configure basic settings that control how the iThemes Security plugin functions.
Notification CenterThe Notification Center settings module allows you to manage and configure all email notifications sent by iThemes Security related to other settings.
404 DetectionThe 404 Detection module allows you automatically block users snooping around for pages to exploit.
Away ModeThe Away Mode module disables access to the WordPress Dashboard on a schedule. When away mode is active, all traffic trying to access the login page will be redirected to the site’s homepage.
Banned UsersThe Banned Users module blocks specific IP addresses and user agents from accessing the site. Here you can find all things related to permanent bans.
Database BackupsFrom the Database Backups module, you can create backups of your site’s database. The backups can be created manually and on a schedule.
Note: The Database Backup module will send a copy of any backups to the email addresses listed in the Database Backup section of the Notification Center module. You can customize the email subject and recipients. File Change DetectionThe File Change Detection module monitors the site for unexpected file changes.
Note: The File Change Detection module will email a file scan report after changes have been detected. From the Notification Center module, you can enable this email, customize the subject and select which users should receive File Change emails. File PermissionsThe File Permissions module lists file and directory permissions of key areas of the site.
Local Brute Force ProtectionThe Local Brute Force Protection module helps protect your site against attackers that try to randomly guess login details.
Network Brute Force ProtectionThe Network Brute Force Protection module allows you to join a network of sites that reports and protects against bad actors on the internet.
Password RequirementsIn the Password Requirements module, you can manage the password requirements for users.
SSLIn the SSL module, you can configure use of SSL to ensure that communications between browsers and the server are secure.
System TweaksThe System Tweaks module contains advanced settings that improve security by changing the server config for this site.
WordPress SaltsThe WordPress Salts module allows you to update the secret keys WordPress uses to increase the security of your site.
WordPress TweaksThe WordPress Tweaks module contains advanced settings that improve security by changing default WordPress behavior.
iThemes Security Pro SettingsWhile the free version of the iThemes Security plugin will secure your website on a basic level, Pro settings are designed to add an even stronger layer of protection to your website. Pro settings can be accessed from the Settings page like all other iThemes Security settings modules.
Magic Links ProFrom the Magic Links module, you can configure a setting to send an email with a Magic Link that bypasses a username lockout.
Note: The Magic Links module sends an email with a Magic Link that bypasses a username lockout. From the Notification Center module, you can customize the subject and message of this email. Basic HTML and some email tags are supported. Malware Scan Scheduling ProWith the Malware Scan Scheduling module, you can protect your site with automated malware scans. When this feature is enabled, the site will be automatically scanned each day. If a problem is found, an email is sent to select users.
Note: The Malware Scan Scheduling module sends an email if it discovers an issue or has repeated difficulty conducting the scan. From the Notification Center module, you can enable this email and select recipients. Privilege Escalation ProWith the Privilege Escalation module, you can allow administrators to temporarily grant extra access to a user of the site for a specified period of time.
reCAPTCHA ProThe reCAPTCHA module protects your site from bots by verifying that the person submitting comments or logging in is indeed human.
Settings Import & Export ProWith the Settings Import and Export module, you can export your iThemes Security plugin settings as a backup or to import on other sites for quicker setup.
Note: The Settings Import Export module sends an email with the settings export file attached. From the Notification Center module, you can customize the subject of this email and the message. Basic HTML and certain email tags are supported. Security Dashboard ProFrom the Security Dashboard module, you can see a real-time overview of the security activity on your website with this dynamic dashboard.
Two-Factor Authentication ProThe Two-Factor Authentication module allows you to enable two-factor authentication. Two-Factor Authentication greatly increases the security of your WordPress user account by requiring additional information beyond your username and password in order to log in.
Note: The Two-Factor Authentication module sends an email containing the Authentication Code for users using email as their two-factor provider. From the Notification Center module, you can customize the subject and message of this email. The Two-Factor Authentication module sends an email containing the Authentication Code for users when they are setting up Two-Factor. Try to keep the email similar to the Two Factor Email. Disabling this email will disable the Two-Factor Email Confirmation flow. From the Notification Center module, you can customize the subject and message of this email. User Security Check ProSee how your users might be affecting your security and take action when needed in the User Security Check module.
The User Security Check module allows you to remind users to setup two-factor authentication for their accounts. From the Notification Center module, you can customize the subject and message of this email. User Logging ProWith the User Logging module, you can log user actions such as login, saving content and others.
Version Management ProWith the Version Management module, you can protect your site when outdated software is not updated quickly enough.
The Version Management module will send an email with details about any automatic updates that have been performed. From the Notification Center module, you can enable this email and select recipients. Trusted Devices (Beta) ProThe Trusted Devices module identifies the devices users use to login and can apply additional restrictions to unknown devices.
Users can receive a notification if there is a login from an unrecognized device. From the Notification Center module, you can enable this email and customize the subject and message of the email. Password Requirements ProThe Password Requirements module includes additional settings for Pro users.
Grade Report ProThe Grade Report module allows you to see your WordPress security grade and fix issues. Note: Enable Grade Report must be selected in the Global Settings module for this module to display on the Settings page.
Once enabled, a new Grade Report link will appear in your WordPress admin dashboard beneath the Security menu. Click this link to see your Security Grade Report summary. You can manage the Grade Report Change emails from the Notification Center. The Grade Report module can send a notification whenever your Security Grade Report changes. From the Notification Center module, you can enable this email and then customize the subject, schedule (daily or weekly) and message of this email, along with selecting recipients. Advanced Plugin SettingsSeveral settings can be located by clicking the “Advanced” tab on the settings menu. Note: These settings are to be used with caution and only by advanced users! Admin UsersAn advanced tool that removes users with a username of “admin” or a user ID of “1”.
Warning: Only do this on fresh WordPress installs and make a database backup before making the change. Change Content DirectoryAdvanced feature to rename the wp-content directory to a different name. Warning: This is an advanced feature and it will likely cause more problems than it solves. This feature can also break custom post types and other plugins. Change Database PrefixChange the database table prefix that WordPress uses. Warning: Only do this on fresh WordPress installs and make a database backup before making the change. Hide BackendHide the login page by changing its name and preventing access to wp-login.php and wp-admin. Hides the login page (wp-login.php, wp-admin, admin and login) making it harder to find by automated attacks and making it easier for users unfamiliar with the WordPress platform. Warning: While this can add a layer of security through obscurity by changing the login URL, you should rely more on strong passwords and two-factor authentication. Server Config RulesIf you need to manually add the server config rules generated by iThemes Security to your server, you can find them here. wp-config.php RulesIf you need to manually add the wp-config.php rules generated by iThemes Security to your server, you can find them here. Get iThemes Security ProiThemes Security Pro, our WordPress security plugin, offers 30+ ways to secure and protect your website from common WordPress security vulnerabilities. With WordPress two-factor authentication, brute force protection, strong password enforcement, and more, you can add an extra layer of security to your website. |