18 thoughts on “WordPress Security Tips – Safeguard Your Blog

  1. These tips are crucial to keeping your site safe. I have never been attacked but it has been tried and iw as able to see who and where it was coming from. Not only did they try and hack my blog they tried my twitter and facebook.

  2. Recently someone tried to hack my blog with a script attack but failed. We can do whatever best we can but hackers always try new techniques to hack. All the suggestions given in your article are very helpful and I am implementing the same on my blog too. Thanks! 🙂

  3. The final advice is the best as hackers now can do eveything and in fact you need to have a regular backup. It will save you in case of hacking. As for the other protection for sure they should be done, but again hackers are getting to sly.

  4. It is every webmaster’s responsibility to diligently take care of the site’s security. There should be no excuse for a website being hacked, as we all know that hacking is extremely prevalent nowadays. These are some very useful suggestions. Thanks for sharing them.

  5. I’ve always been a big believer in backing up, and I agree that updating WordPress is a good idea because of security improvements. I don’t use admin as a username either, but I think that’s pretty obvious.

    I didn’t know about changing the WordPress table prefix or securing the wp-admin folder. I’ll look into doing these.

    I use a couple of security plugins:

    1.Limit Login Attempts – stops hackers breaking your password. It limits the number of password attempts, and e-mails you details of any failed attempts.

    2. WordPress Firewall – stops hackers accessing restricted areas via normal pages. It blocks any abnormal navigation attempts.

  6. Nice post. Great tips you have covered. for your WordPress blog or site safety, you need to consider other factors such as limit WordPress admin access by IP, Encrypt your web browsing session, Keep WordPress visitor registration turned off etc.

    • Christopher (admin team)

      Some interesting tips there 🙂

      Thanks for the comment, welcome to the community!
      Christopher – Admin Team

  7. It always amazes me that after reading comments on a post like this, you can click through to some of the sites and still find plenty of holes in people’s WordPress sites.

    One of the most basic and common problems that all users should check (It’s always nice to get free themes and plugins but here’s a clue for the guilty)…….


    Options All -Indexes

    Make sure it’s there. If it isn’t, anyone can stroll right through the door and download anything found in there – you don’t need to be a hacker, that’s just real basic stuff 🙂

    Oh and if you upload plugins etc. via your WordPress admin remember to delete the zip files afterwards – wp-content/uploads is where you’ll usually find them and they serve no purpose other than taking up space.

Leave a Reply

Your email address will not be published.