Surely you already know that WordPress stores the IP of each of the users that leave comments .
Basically is a security measure because you can filter in the comments list all comments left from any IP and, if necessary, inform the authorities in case of crime.
But you may not want to store this information and offer a plus of privacy to your readers, in which case you will have to apply some of these two techniques for that WordPress does not save the IPs of the comments .
Once you save the changes it will leave the IP field blank it does not store anything.
Equally easy, or more, but with some nuance. Install and activate the plugin Remove IP . Contrary to the previous code this plugin does not remove the IP field but puts the same to all: 127.0.0.1 (best known at home at lunch time as localhost )
Well thought out! If we are going to guarantee the privacy of our users we will have to erase all previous traces. For that go to your hosting and open the tool PHPmyAdmin and, once you are in the database of your WordPress, execute the following command in the tab called SQL:
In the last hours it is being informed of multitude of users that can not access their blogs hosted on WordPress.com .
The problem seems to be motivated because WordPress.com has blocked the IPs of the service provider (ISP) Sky Network which manages traffic from Europe to the US and other countries.
This has been because WordPress.com has detected IPs, coming from that provider , which could be a danger to your servers so have blocked the entire ISP at least for the time being.
So if you can not access your blog or even all WordPress .com may be because WordPress.com has your IP among the blocked.
We do not know anything else at the moment, so patience. In the meantime you can encourage to install your own WordPress the .org, the authentic one, and thus not depend on the decisions of others in the future. And if nothing, wait.
Lately, joined to the growing popularity of WordPress there are increasingly unpresentable trying to inject malware and other types of malicious software in WordPress installations, which somehow goes to certify the coming of age of this CMS and, consequently, the interest of all, with good and bad intentions.
Actually, keeping a WordPress Safe is relatively easy, you just have to follow some advice from WordPress security but it never hurts to help yourself with tools, and the more powerful the better.
Well, what I'm going for you to present here today is to date the best I've seen to ensure a WordPress installation …
I'm talking about the best WordPress security plugin I've ever known with the what have I been doing tests for almost a month and with some really remarkable results.
I am referring to Wordfence Security a complete security suite for WordPress and to a level of completely corporate professionalism, that have nothing to envy to tools that cost thousands of euros.
The best thing is that the free version is really complete although the best option is the Pro pack for only $ 17.95 a year and site, which is not money if we care for our website.
But hey, it's best to make a list of features, and I'll point you to the pack that covers them:
Traffic in real time that shows when you visit the bots of search engines (and others), being able to discriminate by users, IPs and more – Free
File scan of the installation of WordPress for search of infections. In case of finding differences, it offers links to see the differences in the code, edit the file or delete it, and if you want to ignore the alert, until new changes or always. You can also restore the original file from the official WordPress.org repository with a click (not recommended for non-English installations, because it compares them to the English version and, for example, in Spanish, always detects location changes ) – Free
File scanning of WordPress theme to search for infections, offering the same options above – Payment
] Scan plugins to search for infections, and you can also see changes, edit, etc – Payment
Scan comments to search for URLs marked as malware websites in blacklists – Free
File scanning known malware – Free
Scanning of files containing URLs of malware and viruses – Free
Blocking of false Googlebot and aggressive crawlers –  2] Free
Scanning comments to block malware and phishing URLs – Free
Hiding the WordPress version – Free
Blocking access attacks by brute force – Free
View main "content consumers" – Free
Hiding user error messages and password in WordPress access – Free
View 404 page errors not found – Free
Scan of available memory – Free
Scan and report of software environment installed on the server – Free
Monitoring of disk space – Free
Passwords security check – Free
Scan DNS changes – Free
Monitor dangerous IPs – Free
Integrated full firewall, easily configurable via rules – Free
Email configurable alerts – Free
Scheduled scans – Paid
Blocks of access to your web by country, being able to personalize a message or simply make a redirection – For payment
Premium support – For payment
As you can see, with this security suite you can uninstall another good number of security plugins since it combines in one it only software the characteristics of many others, whether they are access limiters, plugins to force strong passwords, and many more.
Another wonder is that you do not have to go crazy with the numerous settings that it offers, principle you are offered a series of safety configuration profiles to choose from:
Level 0: Disable all security options
Level 1: Light protection, only with the basic ones
Level 2: Medium protection, the ade for most of the sites, and that works as a joke without touching any setting
Level 3: High level of security, to use when there is knowledge of an imminent attack
Level 4: Level of Blockade, protects the site against attacks in progress, at the expense of inconvenience for some users
Custom level: it is activated only when you change some adjustment.
Anyway, totally recommendable, even in the free version although the most recommended is the Pro Pack, only by scanning the theme and plugins, which make it a essential software for any user responsible for WordPress .
Final note: if you can not afford to pay The Pro pack can complement what is missing from the free version of Wordfence through the plugin File Monitor Plus which scans all the files of your installation in a scheduled way (plugins and included topics) and warns you by email when there are changes.
NOTICE : this publication is from two years ago or more. If it's a code or a plugin it might not work in the latest versions of WordPress, and if it's a news story it might be obsolete. Then do not say we have not warned you.
I already discussed the issue of restrict access in depth a few months ago, but I thought it would be interesting to have this information in particular because there are more and more situations in which we need to avoid any visitor, or RSS feed thief, access our site created with WordPress.
Edit the file .htaccess and add these lines, modified according to your need, logically:
IP xx.xx .xxx.xxx is what you have to modify. You can also add as many lines deny from xx.xx.xxx.xxx as you need.