WEB Maniacs - Website Security, Compliance & Maintenance
As part of the Maniacs Group Protection of Personal Information Compliance Toolkit – POPI Pack N Stack- Web Maniacs has created a Toolkit designed especially for our clients. Whether your business is small or large, our WordPress Toolkit and Maintenance Plan can certainly increase your Website’s Security and ensure that you are compliant with the POPI Act that will officially be in service as of 01 July 2021.
How Web Maniacs can help you
Web Maniacs Maintenance Plan
(Monthly Service per domain)
Our Monthly Maintenance Plan is a MUST (Available exclusively to Clients who have domains and hosting with Web Maniacs (Pty) Ltd. Transfers to us, are welcome! – Don’t wait before it’s too late. We spend approximately 60 minutes every month on your site. We make sure that your themes and plugins are up-to-date, we do weekly backups, run security checks, look for broken links, do speed tests and run SEO/Google Analytics – This report will be sent to you. We also make sure that you have the latest WordPress and PHP Versions.
- Run a performance and security analysis.
- Update PHP Versions.
- Update WordPress Version .
- Update Plugins.
- Update Themes.
- Check Broken Links Internal.
- Check Broken Links External.
- Performs complete weekly scheduled backups of all your WordPress files, databases, plugins and themes.
Google Analytics helps to keep a track of all the content that receives views and shares. With this data, you can enhance the top viewed blogs so that they appeal to the customers in a more productive manner. – You will thus receive a report of your traffic for the previous month.
iTheme Security
(Once-Off per domain but needs to be maintained)
iThemes Security gives you over 30+ ways to secure and protect your WordPress site. On average, 30 000 new websites are hacked each day. WordPress sites can be an easy target for attacks because of plugin vulnerabilities, weak passwords and obsolete software.
iThemes Security takes brute force attack protection to the next level by banning users who have tried to break into other sites from breaking into yours. The iThemes Brute Force Attack Protection Network will automatically report IP addresses of failed login attempts and will block them for a length of time necessary to protect your site based on the number of sites that have seen a similar attack.
- iThemes Security works to protect your site by blocking bad users and increasing the security of passwords and other vital information.
- Prevents brute force attacks by banning hosts and users with too many invalid login attempts.
- Scans your site to instantly report where vulnerabilities exist and fixes them in seconds.
- Bans troublesome user agents, bots and other hosts.
- Strengthens server security.
- Enforces strong passwords for all accounts of a configurable minimum role.
- Forces SSL for admin pages (on supporting servers).
- Forces SSL for any page or post (on supporting servers).
- Turns off file editing from within WordPress admin area.
- Detects and blocks numerous attacks to your filesystem and database.
- Detects bots and other attempts to search for vulnerabilities.
- Monitors filesystem for unauthorized changes.
- Run a scan for malware and blacklists on the homepage of your site.
- Receive email notifications when someone gets locked out after too many failed login attempts or when a file on your site has been changed.
- Changes the URLs for WordPress dashboard areas including login, admin and more.
- Completely turns off the ability to login for a given time period (away mode).
- Removes theme, plugin, and core update notifications from users who do not have permission to update them.
- Removes Windows Live Write header information.
- Removes RSD header information.
- Renames “admin” account.
- Changes the ID on the user with ID 1.
- Changes the WordPress database table prefix.
- Changes wp-content path.
- Removes login error messages.
WP 2FA
(Once-Off per domain but needs to be maintained)
Statistics show that traditional logins are too weak, due to the sharp increase & success of automated password attacks. By adding 2FA you add an additional layer of security to your login pages.
Add an extra layer of security to your WordPress website login page and its users. Enable two-factor authentication (2FA), the best protection against users using weak passwords, and automated password guessing and brute force attacks.
Use the WP 2FA plugin to enable two-factor authentication for your WordPress administrator user, and to enforce your website users, or some of them to use 2FA.
Cookie Notice
(Once-Off per domain but needs to be maintained)
Cookie Notice provides a simple, customisable website banner that can be used to help your website comply with certain cookie consent requirements under the EU GDPR cookie law and CCPA regulations.
- Customisable notice message.
- Consent on click, scroll or close.
- Multiple cookie expiry options.
- Link to Privacy Policy page.
- WordPress Privacy Policy page synchronisation.
- WPML and Polylang compatible.
- SEO friendly.
- Customisable GDPR & CCPA notice templates.
- Consent Analytics Dashboard.
- Cookie Autoblocking.
- Cookie Categories.
- Proof-of-Consent Storage.
- Link to ‘Do Not Sell’ page.
SSL Certification
(Annually per domain but needs to be maintained)
An SSL certificate is a piece of code on your web server that provides security for online communications. When a web browser contacts your secured website, the SSL certificate enables an encrypted connection. It is like sealing a letter in an envelope before sending it through the mail.
- Standard SSL Single Domain.
- Wildcard SSL Single Domain.
Privacy Policy
(Annually per domain but needs to be maintained)
As all companies require a Privacy Policy, Web Maniacs can assist by creating a Privacy Policy Page on your website, Add your Link in the Footer Area of your Website and Link it to your cookie consent pop-up.
• About the Company.
• The information we collect.
• How we use your information.
• Disclosure of information.
• Information Security.
• Your Rights: Access to information.
• Correction of your information.
• Definition of personal information.
• How to contact us.
Get a Web Maniacs Quote
More Reading material on these Products and Services.
Other POPI Compliance Products and Services
- Sendmarc - DMARC Email Protection
- Microsoft Office 365 - Email and Office Applications
- Solarwinds - Email Filtering and Archiving
- Mimecast - Email Security for O365
- File Server and Auditing
- Sophos - End Point Protection
- FortiGate - Firewall
- Redstor - Backup & Recovery
- SPOTICA - Information Security Management Software as a Service (SaaS)
- Keeper Security - Password Manager
Will these plugins and services completely stop all attacks on my site?
No, And nothing will.
Our Plugins and Maintenance are designed to help improve the security of your WordPress installation from many common attack methods, but it cannot prevent every possible attack. Nothing replaces diligence and good practice. These plugins and services make it a little easier for you to apply both.
What changes does the iThemes plugin make that can break my site?
iThemes Security makes significant changes to your database and other site files which can be problematic for existing WordPress sites. Again, we strongly recommended making a complete backup of your site before using this plugin. While problems are rare, most support requests involve the failure to make a proper backup before installation.
DISCLAIMER: Under no circumstances do we release this plugin with any warranty, implied or otherwise. We cannot be held responsible for any damage that might arise from the use of this plugin.
Note that renaming the wp-content directory will not update the path in existing content. Use this feature only on new sites or in a situation where you can easily update all existing links.