Secure and harden wordpress part 1.
WordPress blogs are being hacked. That’s not new thing, it’s painful and sad.
It would be stressful if you already spent your time and energy for your blog, and the next day, you will find your blog is hacked.
I hope it will never happen to me or to you, but we as the owner of the blog should do many things to secure and harden our wordpress site.
In this video, i will show you how i try to secure my blogs, and please give me any suggestions or ideas if i miss something.
Wordpress secure blog plugins i use that you should use too, if you still don’t have them:
1. Login lock down Plugin.
Login Lockdown plugin is very useful because it gives us choices to limit unwanted login attempt.
2. Login logger Plugin.
This Plugin enables us to see, who tried to login to our dashboard, as well as showing their ip address.
At the end of this post, things we should do to secure our wordpress blog:
1. Always backup your wordpress. See more in this video.
2. Always use the recent version of wordpress and upgrade all plugins that you use.
3. Don’t use same password as your cPanel password, or other password.
4. Get rid of your “Admin” username, if you still have it, see here how to change it.
5. Change your wp_ table prefix, watch the video here.
6. Limit registration access to your blog, if you don’t need people to register in your site, delete login or register form from your sidebar.
7. Remove “Powered by wordpress.org” text as most of us know hackers will type in “allintext:powered by wordpress.org” in Google search to see which blogs are using wordpress.
8. How important is your api key in wp-config.php. I almost forgot to generate it as well, and i know it’s a small stuff but very important.
9. Using Login lockdown and using Login logger Plugins.
That’s how we secure wordpress part 1, I will see you in the next part 2 which you can find here.