While core installation of Wordpress is easy to use, this presentation will explain in 10 steps with specific measures how to protect your WordPress websites.
5. Set a secure password
ï¶ Use a password service such as LastPass
ï¶ Use a random 16 (at least) character password UPPER,
lower, digits, punctuation
Wordpress security
7. Block IP address after X number of login
attempts within a period.
ï¶ Use Limit Login Attempts plugin â
http://wordpress.org/plugins/limit-login-
attempts/
Wordpress security
11. Use .htaccess to protect your wp-
config.php file.
ï¶ Add to .htaccess â
<files wp-config.php>
order allow,deny
deny from all
</files>
Wordpress security
19. Default MySQL DB table prefix is wp_
Change before installing new WP sites.
ï¶ Add to wp-config.php â
$table_prefix = âmynewprefix_';
Wordpress security
21. Default MySQL DB table prefix is wp_
Change before installing new WP sites.
ï¶ Add WP Security Audit Log plugin -
http://wordpress.org/plugins/wp-security-
audit-log/
Wordpress security
22. This presentation has been submitted
by:-
Anuj Mathur
Anuj has over 14 years experience in
planning, managing and executing
software projects on the open source
platform. At AAPNA Infotech, he is
presently managing product initiatives and
process improvements.
Wordpress security