SUBSCRIBE NOW AND WIN PRIZES, USEFUL TIPS AND MUCH MORE
 

Tips to Protect your Wordpress Installation

Posted by DiggItLive
January 22, 2008

Welcome! If you're new here, you may want to subscribe to my Full RSS feed. You can also subscribe via Email and have posts delivered to your inbox. You also increase your chances to win prizes!

I’ve been surfing a lot lately and i have gathered some tips from some other Wordpress blogs to protect your blog’s Wordpress installation.

Use a blank index.html or index.php
First of all make sure that you have a blank or a redirecting index.php or index.html in your wp-content/plugins directory. This prevents anyone from knowing which plugins you have currently installed and helps to protect your blog from being exploited/hacked as the hacker might find some security holes which can expose your blog(s) to hackers.

Stay Up To Date
You should always stay up-to-date with latest Wordpress release to prevent hackers crackers from hacking cracking your Wordpress blog. Subscribe to WordPress development blog to say up to date. Also make sure to update your plugins whenever an update is available.

Use .htaccess to prevent outsider access
Another way to prevent others from accessing your Wordpress Admin Dashboard is to use .htaccess file to prevent users from accessing it. You must place your .htaccess file in wp-admin directory. Add these lines in a new file and name it .htaccess :
# deny all except those indicated here

order deny,allow
deny from all
allow from 12.345.67.890
allow from .*domain\.com.*

Replace IP 12.345.67.890 with your IP address and domain\.com with your domain name.
Do not use this tip if you have a dynamic IP which keeps changing frequently i.e. everyday, after reconnecting, etc. You can also use WP-Ban plugin for more advanced IP blocking/allowing.
Note: This plugin will not block intruder access to Wordpress Admin Dashboard.

Backup your Database and Files
You should get in a habit of backing up your Database and files atleast once a week.

What do you think? What do you do to protect your Wordpress Installation?

Stumble it!


Related Posts:

  • Wordpress 2.3.2 out! Upgrade now!
  • Wordpress needs an Uninstall Option for Plugins
  • Turn Wordpress into Contact Manager!
  • Wordpress 2.4 has Different Administration Panel
  • Say Good Bye to Wordpress 2.4, Next is 2.5!

    • Wordpress

    If you enjoyed this post, please consider to leave a comment or subscribe to the feed and get future articles delivered to your feed reader.

    Bookmark and Share

    RSS | Trackback URI

    2 Comments »

    Comment by Andrea
    2008-01-25 22:37:09

    Just what I need,while starting my first blog.

    Reply to this comment
     
    Comment by T.Pettinger
    2008-01-26 22:44:03

    Useful tips. I use the backup plugin, that’s quite useful

    Reply to this comment
     
    Name (required)
    E-mail (required - never shown publicly)
    URI
    Your Comment (smaller size | larger size)
    You may use <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong> in your comment.