Best Free Security Plugin for Wordpress Website

[Onthebrightside]

Hi,

Grateful if anyone can recommend the best security plug in for a Wordpress Website. Hosting UK comes with JetPack, but would something like Wordfence be better. Grateful for any advice from anyone in regard to this.

Regards,

 

[fisicx]

Bin jet pack. It’s a resource hog.

Wordpress is an excellent security plugin but you also need to secure your server.

 

[itsnathanhere]

Ironically, the more plugins you install the more you increase the chances of creating a point of vulnerability in your site.

 

[Alan]

There is no best FREE security plugin for WordPress. As the free plugins all have limitations, deliberately, so they can upsell the pro version.

Take WordFence as an example of how it goes, they delays rules updates for 30 days on the free version. So what that means is as soon as WordFence know of a vulnerability, they leave you open to attack on the free version for 30 days.

That is OK for a hobby site - with backups - that doesn't mind the occasional hiccup, but any business site is seriously exposed.

 

[Darren_Ssc]

Echoing the comments above. Look at it another way,if your site was hacked or taken offline for a while how much would it cost you and how confident are you that you'd be able to recover?

 

[Onthebrightside]

Thank you all for your honesty and I take your point on Free plugins for security. Moving forward then, which is the best paid security plug in for Wordpress please? We are a simple family business advertising our construction capabilities, so no sales, no downloads. I guess to answer the question above it would cost us the c. £96.00 we paid for the Wordpress site and the time to remake it.

Grateful for advice on this if anyone has any suggestions.

 

[fisicx]

Paid who £96?

Install wordfence and upgrade?

 

[Onthebrightside]

We paid HostingUK £96.00 for two years for the name and the hosting - I thought that was quite a good deal.

OK, got wordfence on there at the moment and will upgrade.

 

[Alan]

If the website is of no real value and simple in that it has minimal number of plugins, then
1. make sure you have backup(s) ( not just the hosts backup ) - see updraft
2. install WordFence free ( you have already )
3. have a process where you update your plugins and WordPress regularly

Then you will be fine, and if you do get hacked you will have a backup to recover from.

(the biggest mistake with backup is keeping them 'on host' as some hacks wipe everything including the backups )

I know this goes against my earlier comment, but I thought by the very fact you were asking you valued your website highly.