I recently wrote a post about cleaning up your hacked wordpress site, and want to follow up with a quick post on how to really prevent your site from being hacked.
The order in which I choose to publish my posts seems a bit silly.Of course, you have to prevent hackers first, but most people don’t even consider Anti-hacking Their website until it actually happens.
I keep this article short and sweet, because no one wants to read too much about this boring and scary subject.I won’t go into details about each safety warning. Maybe I will create a post later to discuss these…
So look at my 24+ WordPress security tips Please pay attention to safety below!
- Upgrade WordPress
- Update your themes and plugins
- Delete the default administrator account
- Change the default password
- Use “strong” passwords
- Limit login attempts (note: this is included in good hosting)
- Two-factor authentication
- Move your wp-config.php file
- Use the key in the wp-config.php file
- Change WordPress table prefix
- Lock your htaccess to allow only certain IPS to access it
- Use shell access instead of FTP
- Create a blank index.html in your plugin directory (should be in a newer WP version)
- Use .htaccess file to block access to wp-admin folder
- Remove the WordPress version string from the header.hp file
- Block your wp folder from search engines
- People are not allowed to register as administrators by default-restrict user access
- Keep out spam comments
- Regularly back up your database and server-side files
- Use correct file permission settings for all files on the server
- Use a secure connection to access your WP management page
- Add SSL to your website
- Scan for vulnerabilities
- Use good hosting
- Implementation techniques 1 to 24
Hope this list can help you improve WordPress security. If you want to take security to a new level, check out other WordPress security tips provided by our WPExplorer author:
- 5 default security threats in WordPress and how to fix them
- How to protect your WordPress blog and provide useful tips for any user
- The best .htaccess snippets to improve WordPress security
- Is your WordPress website secure?10 things to look for
- WordPress Security: Is your WordPress website really secure?
If you have any questions, please tell us what is useful to you in the comments below!