Tips for Wordpress Security Setting
WordPress is one of the most popular blog platforms throughout the world. Because it is so wildly used that there are someone will write program which will attack the wordpress blog sites. So the Wordpress security setting is very important to your site. The following tips will show you some basic setting about WordPress system, and it can prevent your work in some ways.
As you can see, my this site ShoppingDict.com is the WordPress platform, and it has worked normally for long time.
First, do update your WordPress to the latest Version.
Normally speaking, the latest version will be good at the security problem. It must have fixed the known security problems. Especially for the major upgrade, the new version may resolve the more critical issues.
However there are many notes you should know about how to update your WordPress to keep your data safe. It is said that it will be dangerous when you do your upgrade program, if some accidence happened, it will cause some irreversible errors.
Second, hide WordPress Version Information.
Edit the header.php file, remove the version information, so the hacker won’t be able to know the security problem about your site through checking the code.
Third, do not use the default user name admin and strong your password
Use some other name and a strong password will be very helpful. Change your password into complex passwords with 10 characters or more, including letters, numbers, symbols.
fourth, protect the wp-admin folder.
As the wp-admin folder is very important, you should do some special protection on this folder. You can limit the IP addresses to access the admin folder, and all other IP addresses to access will be denied except the IP address you gives the allowance. Creating a .htaccess file will be a useful method.
Fifth, create a robots.txt file to limit the search engine.
You can create a robots.txt file to limit the search engine to prevent search engine contain some files you don’t want to show.
Sixth, install Login Lockdown plugin.
Login Lockdown can record failed login attempts of IP address and time, and if from a certain IP address logged more than a certain conditions and failure, then the system will ban this IP address log.
Final, backup your database.
No matter how much protection you do, you should periodically backup your database. If there is really some accident on your site, you can be back with the database backup.
If you enjoyed this site, make sure you subscribe to my RSS feed !
