#WPSecurity 24+ WordPress security tips #Tekcafe

I recently wrote a post about cleaning up your hacked wordpress site, and want to follow up with a quick post on how to really prevent your site from being hacked.

The order in which I choose to publish my posts seems a bit silly.Of course, you have to prevent hackers first, but most people don’t even consider Anti-hacking Their website until it actually happens.

I keep this article short and sweet, because no one wants to read too much about this boring and scary subject.I won’t go into details about each safety warning. Maybe I will create a post later to discuss these…

So look at my 24+ WordPress security tips Please pay attention to safety below!

Upgrade WordPress
Update your themes and plugins
Delete the default administrator account
Change the default password
Use “strong” passwords
Limit login attempts (note: this is included in good hosting)
Two-factor authentication
Move your wp-config.php file
Use the key in the wp-config.php file
Change WordPress table prefix
Lock your htaccess to allow only certain IPS to access it
Use shell access instead of FTP
Create a blank index.html in your plugin directory (should be in a newer WP version)
Use .htaccess file to block access to wp-admin folder
Remove the WordPress version string from the header.hp file
Block your wp folder from search engines
People are not allowed to register as administrators by default-restrict user access
Keep out spam comments
Regularly back up your database and server-side files
Use correct file permission settings for all files on the server
Use a secure connection to access your WP management page
Add SSL to your website
Scan for vulnerabilities
Use good hosting
Implementation techniques 1 to 24

Hope this list can help you improve WordPress security. If you want to take security to a new level, check out other WordPress security tips provided by our WPExplorer author: