How to secure your WordPress blog

Repel attackers with these tips on creating a secure installation

By Karl Hodge

wordpress-security

A freebie WordPress.com blog won’t cut it – get your own web space, and install the full WordPress distribution from www.Wordpress.org

With around 200 million users worldwide, WordPress is not only the most popular blogging tool there is, it’s also become one of the most successful content management systems on the web.

So it’s no wonder that we periodically hear about rounds of attacks on the platform. The bigger the target, the more likely people are to aim for it.

There are few things more sobering than to wake up one morning and find that your sites have apparently disappeared or that they’re suddenly serving malware. It needn’t be that way if you maintain control of your WordPress installation and make it as exploit-proof as possible. It doesn’t require constant vigilance – just a bit of tweaking after installation and a secure routine from then on.

Post-install cleanup

After installation, there’s some immediate housekeeping that you’ll be prompted to do. Don’t put it off – do it straight away.

The most important change is to delete or disable the ‘install.php’ file in the wp-admin folder. That’s the file used to connect WordPress to a database and create a configuration file. It can be removed, or you can FTP to your website and rename it to something like ‘installOLD.xxx’.

install.php rename

Web design blogger Jeff Starr suggests a more lateral solution: replace install.php with a fake file that generates an error message and sends you an email informing you there’s been a hack attempt. To download his replacement, install.php from his website.

Read more: http://www.techradar.com/news/internet/how-to-secure-your-wordpress-blog-707915#ixzz0w2LkexfS

Previous Floating Share Plugin for Wordpress
Next Top 10 FREE Wordpress Plug-ins That Are A Must To Have

About author

Jarrett Gucci
Jarrett Gucci 289 posts

Jarrett Gucci is the owner of Dynasty Web Solutions. A full service Internet presence provider specializing in WordPress development for business owners. Jarrett Gucci along with his team of professionals have designed over 400 WordPress websites. Jarrett Gucci believes strongly in creating websites that are unique, functional and generate referrals.

You might also like

WordPress Resources 0 Comments

Floating Share Plugin for WordPress

Digg Digg is a WordPress plugin that allows you to generate social media/sharing buttons for your site. It comes with plenty of customization options, and one of them is the

WordPress Resources 0 Comments

Top 11 Shopping Cart Plugins for WordPress (5 are FREE)

WARNING – Video is mildly funny only! A WordPress shopping cart plugin can instantly turn your WordPress site into a full blown online ecommerce store. Nowadays there are many WordPress

WordPress Resources 0 Comments

5 Reasons Why WordPress Websites Are Better

WordPress based websites are faster to setup, easier to maintain, easier to market and extend. About 2 years ago I started messing around with WordPress and have been deploying WordPress

WordPress Resources 0 Comments

No More SLOW or Broken WordPress Event

WPfixt.com SUPER EVENT   LIVE webinar – March 11th at 10-12am PDT Giving you the secrets to SPEED up and FIX WordPress If you didn’t know already, Dynasty Web Solutions

WordPress Resources 0 Comments

Building a WordPress E-Commerce Website The Right Way

Contents1. E-Commerce Ready Theme ($30 – $70)Splashing PixelsStorefront Themes2. E-Commerce WordPress Plugin  (FREE)WP e-Commerce Plugin3. Payment Processor WordPress Plugin ($40)Gold Cart Plugin4. Affiliate WordPress Plugin ($47)Affiliate Plugin5. Members Only WordPress

WordPress Resources 0 Comments

Blogging with Blogger vs WordPress

Blogging is without doubt one of your most effective marketing tools for a small business. It can also be a way to begin letting others know of a business you

0 Comments

No Comments Yet!

You can be first to comment this post!

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.