If you are an internet marketer, you probably have quite a bit on your plate already. You have spent a great deal of time putting together a good website or blog and are really concentrating on how to deliver your product or information. Unfortunately, there are a certain nulled theme for WordPress of people out there in cyberspace whose self appointed mission is to break into your vault and create havoc.
If you are using WordPress as a platform to blog from, here are a few tips on how to secure WordPress
Keep WordPress Updated and Backed Up
Older versions of WordPress still have many vulnerabilities that are widely known in the hacker community. To their credit, the WordPress people are always doing their best to plug security holes and are updating constantly. So your first line of defense is to keep your blogging platform updated.
Medical Tip: To avoid increasing your blood pressure, always be sure to make a backup of your blog before installing any updates. Its a good idea to regularly to keep your WordPress backed up regularly anyhow, since any number of things can go wrong.
Another tip is to delete the meta tags that tells the world of the version of Wp you are using. This info is usually in the header file.
Keep Your Plugins Hidden
One of the great things about using WordPress is the plugins. While they greatly increase your blogs capabilities, they too contain certain bugs and vulnerabilities that are exploited by hackers. So be sure to keep them updated also.
It is easy for anyone to see what type of plugins you are using by visiting the wp-content/plugins folder. To keep potential intruders from finding out the plugins that you use, create an empty ‘index.html’ file and place it in your plugins folder
Its also a good idea to check your plugin folder and make sure the plugins there are the ones you want. Some hacker, once they get into your files upload their own plugin. So if you see something that you are not familiar with, delete it.
Here is a Free WP plugin that keeps track of the attempts to login to your site. Many hackers use brute force to try and get your password. So, if there are too many of them coming from the same IP address within a short period of time, the plugin will disable the login function for that IP range. Login Lockdown: bad-neighborhood.com. Click on login lockdown and you will be taken to the download page. Be sure to check out their other plugins to.
Change Your Passwords
This is an easy hack that is often exploited. You can have a more secure blog by making up a crazy, difficult password. Even change it monthly if need be.
But not only your WordPress login. Don’t forget your hosting account and your ftp passwords as well.
Headache tip: Be sure to write your passwords down immediately and keep all your them all in a safe place.
Secure the /wp-admin/ directory
Your most sensitive WordPress information is stored in the /wp-admin/ folder. By default, WordPress leaves that folder open, so people can access these files to make changes if they know what they are doing.
To secure this folder:
Place an .htaccess file inside the /wp-admin/ folder to block the access to all IP addresses, except yours.
Here is the code you need to put in the .htaccess file:
AuthName “Example Access Control”