Wordpress: Keep your blog secure

The Wordpress is currently the largest reference online content managers free. Ease of use allows create blog in minutes.

As 99% of bloggers are more concerned in providing content and monitor your blog’s statistics, they forget that some visitors want find vulnerabilities that enable attacks such SQL Injection, Session Hijacking , among others.

To help newbies and hards bloggers users follow a collections of actions and tools that will help in task keep availability, integrity and reliability of your blog.

1 – Keep the WP and plugins updated – WordPress Automatic Upgrade Plugin

2 – Do daily backups – WP-DBManager Plugin

3 – Change your password and use strong passwords

4 – Rename admin user – Admin Renamer Extended Plugin

5 – Clean unnecessary plugins

7 – Rename the Wordpresse DB tables – WP Security Scan Plugin

8 – Hide the plugins directory content – Create a blank index.html file in this directory

9 – Avoid that search tools indexing the WP directories – Create a robots.txt file adding the line “Disallow: /wp-*” inside the file.

10 – Protect your autentication – Login Lockdown and Chap Secure Login Plugins

11 – Block browsing directories Edit the .htaccess file adding the line “Options All -Indexes”.

12 – Hide WP version – Secure WordPress Plugin.

13 – Make a vulnerabilities scanning – WP-Scanner and Exploit Scanner Plugins.

Note: Be very careful in the use of some plugins. The installation of many plugins can degrade the performance of your blog.

The tips are quite simple and easy to implement, some need to access SSH put some webhosts don’t allow this access.

See some interesting links that served as “inspiration” and that have important information and more complete than this simple post.

20+ Ways to Harden and Secure Your WordPress Blog

20+ Ways to Harden and Secure Your WordPress Blog

Hardening Wordpress

20 Wordpress Security Plug-ins And Tips To keep Hackers Away

Wordpress Security FAQ

WordPress Security Links

Tweet This Post