WordPress has a lot of excellent security features. One of these features is the ability to specify randomized keys and salts to help keep cookies and form nonces secure.
Sadly, there are a lot of WordPress users who miss out on this extra security because they haven’t configured it for their site.
That’s why I’m happy to announce that from today, VaultPress will help you out by detecting sites that haven’t set up any keys or salts. It’ll offer to fix the problem for you too, by generating and inserting long and secure randomized values.
Be warned that when your keys and salts are reconfigured, any logged in users at your site will be logged out, and will have to log in again. After that, everything should work as it did before the update — except with stronger security!
The VaultPress Security scanner runs daily, looking for dangerous files and code on your web server. If VaultPress finds something suspicious, or a known threat, you’ll get an email, and a new notice shows up in your VaultPress dashboard.
The VaultPress Security Report
While we don’t recommend it, you’ve always been able to ignore a security threat. Now you can view these ignored security threats. Just click on the Ignored Threats button, and you’ll see a list of any ignored notices.
Viewing ignored security notices.
You can see all the details of the ignored security threat, including the names and locations of the affected files. You can even Un-Ignore a threat, moving it back to your active security threats.
VaultPress helps secure your site from known and potential security threats with daily file scans and real-time backup of your WordPress site. Learn more about how VaultPress can protect and secure your content, themes, plugins, settings and customizations. Contact us with questions, or sign up to protect your site.
My last blog post showed how easy it is to allow other WordPress.com users to access your VaultPress dashboard. Today we’re making it just as easy to transfer ownership of your VaultPress subscription. Maybe you’ve set up VaultPress on your client’s site, but now want to switch the billing over to their credit card. To switch the ownership, just head to your VaultPress account page:
You’ll see yourself listed as the owner. To change the owner, click on the blue “Change Owner” link. This will show a list of all the site’s current users, along with a field to add a new user:
Choose one of the existing users, or type in a WordPress.com email address, and click the “Change Owner” button. Any billing information on file will be erased, and the new owner will be sent an email and asked to enter a new credit card. Once ownership has been changed, you’ll still have access to the site’s VaultPress dashboard, but not to any billing or plan details.
VaultPress makes it easy for you and your clients to backup and secure any WordPress-powered site. Learn more about how VaultPress can protect your content, themes, plugins, and site settings and customizations. Contact us with questions, or sign up to protect your site.
Your friends at VaultPress have been busy dreaming up the latest contraption for you, and today we’re ready to launch it!
You’ve always been able to restore your VaultPress backups to the same server. But starting today, all VaultPress subscribers can automatically restore a backup to a new site altogether!
Why would I want to do this?
- Maybe you’ve always wanted to restore a backup to a new server, or a subdirectory on your current server, for troubleshooting or development purposes. Well, now you can restore your VaultPress backups to a test site!
- Or perhaps you’re getting ready to move to a new host. Now you can easily copy your current site to a new host!
What’s required to make this work?
You only need a few basic things to get started. You’ll need:
- A fresh WordPress installation on a new host, or in a subdirectory on your existing host
- A publicly accessible URL — “localhost” won’t work
- Your FTP, SFTP, or SSH credentials for the host where the new WordPress installation lives
- The filesystem path to the new WordPress installation
Okay, I’m ready! How do I use this thing?
You can restore your backup to a new site in just a few steps:
- Log into your VaultPress Dashboard
- Click on “Backups” in the sidebar
- Choose a backup, and click the “Restore” button:
- Click on the “Change Site” button:
- Fill out the form, including your site’s new URL, FTP credentials, and the path to your new WordPress installation:
- Click the “Save Alternate Site” button
- Click the “Restore” button:
You can watch the progress bars if you’d like, or you can close this page. The restore will run in the background, and your site will be restored in no time!
Have any questions?
If you have any questions about restoring your backup to a new site, or just want to say howdy, drop us a line!
Want to allow your “tech guy” to review a VaultPress security alert? Or maybe your designer needs to download a backup of your site? We’ve recently updated the way you add users to VaultPress, and it’s easier than ever to allow others to view your VaultPress Dashboard. Head to your VaultPress Settings page and you’ll see the new Users section:
Just type in the new user’s email address, hit enter, and they’ll be added to your VaultPress subscription. The VaultPress Dashboard requires a WordPress.com account, so those people you want to add will need to create a new account, if they don’t already have one. Anyone can create a WordPress.com account in minutes — and it’s completely free.
The people you add to your VaultPress Dashboard will be able to view, download, and restore your backups, as well as view and manage your security notices (for Premium subscribers). Only the owner of the VaultPress subscription can add or remove other users, as well as manage the billing information for the subscription.
VaultPress makes it easy for your team to react to the unexpected. Learn more about how VaultPress can protect your content, themes, plugins, and site settings and customizations. Contact us with questions, or sign up to protect your site.