A Comprehensive Guide to WordPress Security

In this article I’d like to enumerate a number of suggestions/tips on how to improve security on your own WordPress website.

  1. Make sure that your are using latest version of WordPress. [Current Version 4.4]
  2. Your All Themes and Plugins should be updated.
  3. There should be only ONE Administrator Account.
  4. Don’t use “admin” as a Username.
  5. Your Password must contains atleast one Uppercase, one Lowercase and some special symbols like (~!@#$%^&*)
  6. Install Captcha for Login/Registration Pages for brute force prevention.
  7. Your hosting should be secured enough.
  8. Disable File Editing via the Dashboard.
  9. Try to avoid free Nulled themes/plugins.
  10. Hide wp-config.php and .htaccess file

Related Posts