How to Secure Your Wordpress?

How to Secure Your Wordpress?

-> Maintain Strong password- Your Password should not be less than 10 characters , use upper, lower case characters & also use special characters like :- @ , # etc.. -> Should not the admin [by default] for your wordpress user name. -> use Limit Login Attempts plugin As the name suggests , this plugin works by limiting the number of login attempts per IP address. This means users who try to log into your site a certain number of times are locked out. IP addresses of all users who are blacklisted are kept in a log list, & this comes in handy if you wish to lock them out permanently. ->You can secure your upload directory by creating a file named .hteccess Create a file named .htaccess & paste the following code in it. Once done, upload the filet into your wp-content/uploads directory. The following example will only accept images files. If you need to be able to upload other file types, such as .pdf, don't forget to add the file extension to the list on line 5. <Files ~ ".*..*"> Order Allow,Deny Deny from all </Files> <FilesMatch ".(jpg|jpeg|jpe|gif|png|tif|tiff]$)" Order Deny,Allow Allow from all </FilesMatch> ->Keep WordPress up-to-date WordPress does a good job of identifying issues & updating their code quickly. They will notify you in the Admin Dashboard when new versions are released. Make sure you keep your installation up-to-date. ->There are plugins that help you lock down your WordPress installation & scan for issues. Here are a few: Login Lockdown Plugin BP-Secutity Wp Security scan Antivirus Exploit Scanner VIP Scanner
Read more...