How to secure your WordPress blog

Repel attackers with these tips on creating a secure installation

By Karl Hodge

wordpress-security

A freebie WordPress.com blog won’t cut it – get your own web space, and install the full WordPress distribution from www.Wordpress.org

With around 200 million users worldwide, WordPress is not only the most popular blogging tool there is, it’s also become one of the most successful content management systems on the web.

So it’s no wonder that we periodically hear about rounds of attacks on the platform. The bigger the target, the more likely people are to aim for it.

There are few things more sobering than to wake up one morning and find that your sites have apparently disappeared or that they’re suddenly serving malware. It needn’t be that way if you maintain control of your WordPress installation and make it as exploit-proof as possible. It doesn’t require constant vigilance – just a bit of tweaking after installation and a secure routine from then on.

Post-install cleanup

After installation, there’s some immediate housekeeping that you’ll be prompted to do. Don’t put it off – do it straight away.

The most important change is to delete or disable the ‘install.php’ file in the wp-admin folder. That’s the file used to connect WordPress to a database and create a configuration file. It can be removed, or you can FTP to your website and rename it to something like ‘installOLD.xxx’.

install.php rename

Web design blogger Jeff Starr suggests a more lateral solution: replace install.php with a fake file that generates an error message and sends you an email informing you there’s been a hack attempt. To download his replacement, install.php from his website.

Read more: http://www.techradar.com/news/internet/how-to-secure-your-wordpress-blog-707915#ixzz0w2LkexfS

Previous Floating Share Plugin for Wordpress
Next Top 10 FREE Wordpress Plug-ins That Are A Must To Have

About author

Jarrett Gucci
Jarrett Gucci 289 posts

Jarrett Gucci is the owner of Dynasty Web Solutions. A full service Internet presence provider specializing in WordPress development for business owners. Jarrett Gucci along with his team of professionals have designed over 400 WordPress websites. Jarrett Gucci believes strongly in creating websites that are unique, functional and generate referrals.

You might also like

WordPress Resources 0 Comments

55+ Most Wanted WordPress Tips, Tricks, and Hacks

Contents1. How to use a Custom Page as a Home Page in WordPress2. How to Create a Page that Displays Random Posts3. How to Display any External RSS Feed on

WordPress Resources 0 Comments

How To Get One Of Those Custom Images For Your Blog Comments – Gravatar / Avatar

Step 1: Visit http://en.gravatar.com and click on “Get your Gravatar today” [divider /] Step 2: Enter the email address that you use when commenting on Blogs.  You can also add

WordPress Themes 0 Comments

Building a WordPress E-Commerce Website The Right Way

Contents1. E-Commerce Ready Theme ($30 – $70)Splashing PixelsStorefront Themes2. E-Commerce WordPress Plugin  (FREE)WP e-Commerce Plugin3. Payment Processor WordPress Plugin ($40)Gold Cart Plugin4. Affiliate WordPress Plugin ($47)Affiliate Plugin5. Members Only WordPress

WordPress Resources 0 Comments

Floating Share Plugin for WordPress

Digg Digg is a WordPress plugin that allows you to generate social media/sharing buttons for your site. It comes with plenty of customization options, and one of them is the

WordPress Resources 0 Comments

No More SLOW or Broken WordPress Event

WPfixt.com SUPER EVENT   LIVE webinar – March 11th at 10-12am PDT Giving you the secrets to SPEED up and FIX WordPress If you didn’t know already, Dynasty Web Solutions

WordPress Resources 0 Comments

WordPress Developer Client Contract Template

If you are running a WordPress design business it is always best practice to operate with a WordPress Developer Client Contract.  If you are using one, you are protecting both

0 Comments

No Comments Yet!

You can be first to comment this post!

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.