Top Plugins to Optimize and Secure WordPress

Speed Up and Secure

  1. WordFence
    Enable firewall, periodic scans, failed login block, secure passwords.
  2. WP Super Cache
    Speed up delivery of static content and pages: configure it for visitors to prevent overload by bots/crawlers.
  3. Use Google Libraries
    Load JS from CDN. Reduce load.
  4. WPS Hide Login
    Protect from brute login.
  5. Robots.txt File
    Edit the robots.txt file.
  6. Really Simple SSL
    Redirects pages to HTTPS (SSL required).
  7. Easy WP SMTP
    Use an account to send emails with necessary verifications to reduce spam filtering and lost emails.

Troubleshooting Tools

  1. P3 Plugin Performance Profiler
  2. Server IP & Memory Usage Display

Configuration

  • robots.txt

    User-agent: *
    Crawl-delay: 90
    Disallow: /wp-admin/
    Disallow: /wp-includes/
    Disallow: /streams/
    Disallow: /wp-login.php
    Disallow: /wp*

    User-agent: MJ12bot
    Disallow: /

Install ZMQ for PHP

wget http://download.zeromq.org/zeromq-4.1.0-rc1.tar.gz
tar -zxvf zeromq-4.1.0-rc1.tar.gz
cd zeromq-4.1.0 
./configure
make
make install

 

pecl install zmq-beta

 

Find php.ini :

php -i | grep ‘Configuration File’

 

Check if extension was added:

cat /usr/local/lib/php.ini | grep zmq
Should show:
extension=”zmq.so”

Setup a phpinfo.php file containing code phpinfo() in that folder, to check if library is loaded.

 

If server has a firewall, this requires opening some ports in firewall for TCP. Ex: 5555, 8080. Check scripts like push-server.php .