How to make your WORDPRESS MORE SECURE Print

  • wordpress, security
  • 0

Use a Strong Password

Change the admin username

During your WordPress installation, you should never choose “admin” as the username for your main administrator account. Such an easy-to-guess username is approachable for hackers. All they need to figure out is the password, then your entire site gets into the wrong hands.

Monitor your files


If you want some added WordPress security, monitor the changes to your website’s files via plugins like Wordfence, or again, iThemes Security.


Make backups regularly to secure your WordPress website

No matter how secure your WordPress website is, there is always room for improvements. But at the end of the day, keeping an off-site backup somewhere is perhaps the best antidote no matter what happens.

Disable File Editing

Once your site is live we recommend that you disable this feature. If any hackers gain access to your WordPress admin panel, they can inject subtle, malicious code to your theme and plugin. Often times the code will be so subtle you may not notice anything is amiss until it is too late. To disable the ability to edit plugins and the theme file, simply paste the following code in your wp-config.php file.

Install SSL Certificate (or even activate autossl) 

Change your WP-login URL

Limit Login Attempts

Hide wp-config.php and .htaccess files

We strongly recommend this option to be implemented by experienced developers, as it’s imperative to first take a backup of your site and then proceed with caution. Any mistake might make your site inaccessible.

To hide the files, after your backup, there are two things you need to do: First, go to your wp-config.php file and add the following code,

<Files wp-config.php> order allow,deny deny from all </Files>

In a similar method, you will add the following code to your .htaccess file,

<Files .htaccess> order allow,deny deny from all </Files>

Although the process itself is very easy it’s important to ensure you have the backup before beginning in case anything goes wrong in the process.

Update your WordPress version

It is also important to update your plugins and themes for the same reasons.

Was this answer helpful?

« Back