Most Essential Security Tips to Save your WordPress Blog from Getting Hacked

Aritra Roy

Aritra Roy

Co-founder at daPazze
+Aritra Roy, is a professional blogger who can be found blogging at You can check out his ultimate comparison on Wordpress vs Blogger on daPazze.
Aritra Roy
Aritra Roy
You can get your own content published on this site as long as you have CommentLuv installed on your site.

Doing so means you get exposure to thousands and thousands of other CommentLuv users and your posts get sent out to the massive subscriber list.

Google loves this site and indexes it multiple times per day and posts always get lots of comments so you can be sure of some excellent exposure.

See the Write For Us page for more details

btw.. you can get this author box here

Wordpress Security

WordPress is the most famous and most popularly used CMS for blogging. The core of WordPress is very secure but still hackers always attempt to find a loophole in the core to hack it. As WordPress is used by millions of users, so the hackers try to find vulnerabilities in WordPress and exploit them to crack them.

This article focuses on securing your WordPress site against these hackers and all their hacking attempts. It covers some of the most important and fundamental elements of securing your WordPress blog.

There can be hundreds of loopholes for the hackers to breach your security. It is technically not possible for anyone to take care of each and every single loophole. But that certainly doesn’t mean that you will sit idle and wait for the hackers to steal or destroy all your hard work.

1)    Ensure that you are using a very secure Host

I personally consider this to be the first and foremost step in WordPress security. If your hosting provider itself is not providing you any security, then you are in real trouble. There have been many cases when hundreds of blogs got hacked in minutes due to poor hosting security.

There can be an another scenario too – suppose you are using a Shared Server and a particular site in your server (which has very weak security measures) gets hacked, then all other sites sharing that same server have ample scope of getting their security compromised.

It is the best option to go for a VPS. But neither everybody needs a VPS nor they can afford one. If your blog doesn’t get huge traffic then probably you will never need a VPS, but ensure that you are using Shared Server of a very reputed web hosting company.

2)    Securing the Username and Password of your Blog

Taking a strong password is the tip that you probably have read in almost all security related articles. The password is the key to the lock that opens up your admin panel. So choosing a very strong password is extremely essential.

If your password doesn’t contain alphabets, both capital and small, numbers, special symbols, like !, @, #,$,etc then you are probably not doing it correctly. Make your passwords look as ugly as possible. More ugly it gets, more secured it becomes.

Now, comes the point of securing the username too. Every WordPress blog has an admin username

by default. So, if the hackers are sure about your username, then all they need to do is make combinations to find the password.

So, it is always advisable to remove the default username of your blog permanently. So, now the hacker neither knows the username nor the password, they need to guess both of them.

3)    Securing the Database and wp-config.php and .htaccess files

These are some of the most technical aspects of WordPress security which needs utmost attention. Database is like the brain of your WordPress blog. It contains every single useful information which is required to run your blog.

By default, the WordPress database comes with “wp-”  prefix, so it is very important to change to prefix to something like this “bf432lxz2112fk” which is almost unguessable by the hacker in any way.

The wp-config.php file contains very sensitive data of your WordPress blog, so securing it is very important. All you need to do is change the permissions strictly and move the file one step up from your main folder.

The .HTACCESS file also contains very important data which are required to secure your blog. So, change the permissions of this file so that it becomes unreadable and un-writable by others. Also, do not forget to disable directory browsing, so that hackers do not get any chance to view the directories on your server.

4)    Taking complete backups of your blog regularly

Backup is just the next part of security. Securing your WordPress blog is never complete without a proper backup solution. You need to be very serious about taking regular backups of your entire blog.

If some day, your blog gets hacked even after taking all kinds of security measures then it is your backup that is going to save your day. Take regular backups of your Database, XML export and important files like wp-content.

Be prepared for all kinds of situations. It is best advised to use any automated backup plugin like BackupBuddy or BackWPUp to take care of the entire backup business of your blog, so that you can get enough time to write valuable content for your readers.

These are some of the most essential tips that you must follow in order to get your WordPress blog secured to some extent. There can be many other loopholes in the eyes of the hackers, but these are the most basic security elements that need to be taken care at the very first instant.

If you have any other security tip that you want to share it with your fellow bloggers, then you are most welcome to do so in the comment section.  Let us help each other to make our WordPress blog more secured.


  1. last recently day my blog was infected my a unknown virus, nothing tool reaches this

  2. Twitter:
    great tips. i use a security plugin to do these steps. My site was hacked once so i have experience. Install a security plugin and it will do the job for you. Well written, Aritra.
    Arslan Shoukat recently posted..Top 10 Best Intelligence Agencies In The World 2013My Profile

  3. Twitter:
    Great advice. Can you provide step-by-step for each of these suggestions?

  4. Twitter:
    I agree with the others Aritra. A good article with sound advice. Better to attempt to be safe than sorry.

    Kirby, if you are with a good hosting service, make notes from this post, then go on a chat line with your hosting support. A good hosting company will be more than willing to walk you through some of these steps.

    Also, Arslan’s tip for installing added security would be a benefit. I have it on my site. It not only protects the blog owner, but anyone who visits your site. A win – win as far as I am concerned.
    D Hayes recently posted..Discover Increased Sales By Building Consumer TrustMy Profile

  5. Twitter:
    I am so glad I am having backups done everyday!

    It is very important that you have your blog backed up in order not to lose all of your hard work.
    Samuel recently posted..3 Twitter Tools For You To Succeed On Twitter!My Profile

  6. Twitter:
    Hi Aarati ! Thank you for your excellent guideline. Prevention is better than cure, so that protect wrodpress blog from hackers. Wordpess blog and CMS template has been gaining popularities but need to be careful from hackers, anybody can hack so that ‘kill the hacker’ and ‘save the blog’.
    Googma Sansar recently posted..6 Ways to Get More Traffic to Your SiteMy Profile

  7. Hi Aritra, your first guest post here. Huh?
    The topic of wordpress protection can be discussed for days and this post will help every newbie out there.

    Thanks for the post.

  8. Twitter:
    I never really gave any importance to security things until someone actually tried to hack me. After that day, I never left my blog without security. Thanks for sharing these tips.
    Saqib Razzaq recently posted..101+ Ways To Dramatically Increase Blog Traffic Part IMy Profile

  9. Twitter:
    Thanks for such an informative post I have also few problems and from that moment I always backup my Blog, although your key points helped ne lot thanks for your magical words
    Jaykrishna recently posted..5 Essential Tips to Overcome Basic Computer IssuesMy Profile

  10. That’s a very good reminder, hackers are looming all over the internet looking for the slightest loopholes.

  11. Hi Aritra,
    Really very informative post. My WP blogs got hacked last year but thanks to my technical team. They recovered my blogs. Thanks, for sharing this info.

  12. Twitter:
    My wordpress and my server get hacked 3 years ago and the hacker have place a backlog access. Took me 1 months to clean away the hack and since then I have always ake sure that my wordpress security is tight.

    Thanks for your tips here too.

  13. Hi Aritra,it is very good advice for evry blogger.i take complete backups of my blog everyday to save my secret matter.
    Shamim recently posted..Insurance Mobile Marketing Experts In SMS AdvertisingMy Profile

  14. my blog keeps on getting hacked and i failed to found out the reason and finally ended up by shifting to blogspot.

  15. Twitter:
    I guess you have missed a Important Point. Once My blog Was Hacked when I was Just started with Blogging where My index.php was hacked, So I logged in to cpanel and changed the permissions to “444”.
    By the way other tips are awesome explained.
    Ravi recently posted..How to Create Custom Screensavers for Windows ?My Profile

  16. Twitter:
    Thanks a lot Ravi, for reminding me this important point. I will obviously mention it in my upcoming articles.
    Aritra Roy recently posted..Free Portable IDE for Windows : CodeLobster PHP Edition ReviewMy Profile

  17. Twitter:
    Choosing hosting provider is one of the most important thing in blogging security. I’m agree with you about this.I have bad experience in shared hosting. My blog was hacked many times. After using virtual private server, my blog is safe until now.

    To anticipate being hacked, I’m always backup my web regularly. We have to do that, because nowadays hacker more skillful. It will be nightmare when your web being attack and you don’t have any backup. Thanks aritra for share this complete guide. It’s really helpful for me
    Werry Adnan recently posted..Jual Jersey Grade OriMy Profile

  18. Twitter:
    What if you backup the hacked website before you know it’s been hacked?

  19. Twitter:
    Well the tips look promising, I’m going to implement these on my website to secure it.
    Thanks for sharing.
    Salman Ahmad recently posted..10 Top Paid Casual Games for AndroidMy Profile

  20. Good advices, but one more thing that I have learned is that there are many blogs that have the incorrect file permissions. WordPress writes about the dangers here
    Sebastian recently posted..PR och kommunikation, en viktig del av SEOMy Profile

  21. Twitter:
    Great tips for securing our wordpress blogs from hackers. Using a strong password doesn’t make it secure, We have use these tips for not getting hacked by anyone.

  22. What a co-incidence, I also wrote an article on this topic yesterday and published it today, but my article is about all blogs. BTW good tips Aritra, you haven’t warned users to beware of malicious themes, plugins etc. But still the tips are brilliant. Thanks for sharing.
    Rehmat recently posted..Best Practices to Protect Your Blog from HackersMy Profile

  23. Twitter:
    Really great tips Aritra !

    I found the #3 point pretty interesting, so you mean that one should rename all the folders with prefix “wp” to something more secure or just the CONFIG file?
    Salman recently posted..Nail Polish Designs: Choosing from the BestMy Profile

  24. Hey Aritra thanks for sharing these helpful tips! I agree with the importance of protecting your WordPress blog- I use a good host, try to change my password once in a while and very important I always back up my data to be sure I avoid any unpleasant events!

  25. I realized recently that if the hacker finds your blog attractive enough to hack it nothing will prevent him from doing it.. Unfortunately…
    Evan recently posted..Law Business WordPress themes 2013 best showcaseMy Profile

  26. Twitter:
    I was happy to see that I take all these steps with my site, so they must be pretty secure :-)

  27. Twitter:
    Nothing is 100% secure my friend, Hadley. If the hackers want to hack you, then they will hack you. Nothing can stop them. They are just UNSTOPABBLE.
    Aritra Roy recently posted..Interviews: Hongkiat Lim of Hongkiat Design BlogMy Profile

  28. Very informative article for securing wordpress.Now days where security is the biggest headache for bloggers i think your article could be the solution for it.Great post sir.Keep it up

  29. Twitter:
    As WordPress becomes more capable and dynamic, so too will the potential security threats. You can never be too careful with you sites and information online these days, there is no telling what can be done with only a small bit of your important personal information, even the stuff on your blogs and websites. Protecting yourself is essential, and creating backups is a very good idea. As long as you have a backup copy on hand, any kind of attack can be reverted quickly.

  30. Twitter:
    Good tips, they may seem like common sense but it’s amazing the amount of people who still use insecure passwords and a username of “admin”.
    Dave recently posted..Nerds SongMy Profile

  31. Twitter:
    This is basic advice but still very important for everyone running a blog to make sure they understand and take action on all parts. Blogs are tough work and take a long hard time as well as good effort to become successful. The last thing anyone wants is to have the blog they worked so hard for become a victim of a security issue they could have prevented.
    Thanks for the article, a great read.

  32. Twitter:
    You are most welcome Soina. Thanks you too. :-)

  33. Really great information here. It’s so important to protect yourself online and to a certain degree there’s no real security. However, avoiding little mistakes can save you time and money.
    Robert Koenig recently posted..Deadly Hot Air Balloon Crash in EgyptMy Profile

  34. Also, you need to get rid to some unknown plugins which you might not have downloaded from the WordPress directory and I would advise everyone to check the themes properly and even plugins too .

  35. check this site out for zombie lovers

  36. i didn’t use any WP plugin for the security but just focus on the database prefix and also a regular backup of my database, it’s good to have a restore plan once your wp is hacked.

  37. Installing a security plugin will make the job easier. Or is there a downside to it?

  38. Thats great..i am new to wordpress..i will follow these to be safe on this cyber world..thanks you

  39. Deepak Mehra says:

    it is very important and useful message for me. I think securing WordPress is an interesting topic.
    Thanks for sharing me this useful article.

  40. Twitter:
    hwllo aritra
    securing our blog is the most important thing otherwise you may end up losing it. and yes hosting provides an important role. and choosing good and strong username and password helps a lot. we should also use plugins
    prabhat recently posted..Top 5 Budget, Best Tablet under $200 or $250, 2013My Profile

  41. I’m agree with you about this.I have bad experience in shared hosting. Backup is just the next part of security. Securing your WordPress blog is never complete without a proper backup solution.
    backup making the intelligent person so prevention the wrong way the solution. so i think always take the backup everything.

  42. Twitter:
    Hey Aritra thanks for for useful information … These were really good tips..

  43. Twitter:
    Is there any way to check how secure your host is?
    Praveen Bhardwaj recently posted..Rihanna, Chris Brown Planning for a Wedding?My Profile

    • There is no such ways as such. Read some unbiased reviews. Ask some of your friends about their experiences. But its always advisable to use a VPS or a Dedicated server for maximum security.

  44. Eric Gahagan says:

    This is great information. I freaked out when writing a post on my site when I noticed it looked like someone had found a way to put their ad where I had one of my good earning affiliate banners. I was using a computer that had a p2p download program on it. Good tip is to only use a computer that you know is secure. I was out of town so used a friends laptop. I would not do this again.

  45. Jakub Marian says:

    As for making the password as ugly as possible — I don’t think this is necessarily true; there was a great comics about it:

    As for the database prefix — what good does it do to change the prefix, if a potential hacker doesn’t have access to the database? And if does, simply changing the prefix won’t stop him in doing bad things.

    • The comics is really very nice, thanks a lot for it.

      But I personally never believe using common dictionary words in password. This will make Brute Force attacks even more easier.

      Using some Capital letters, digits, symbols, makes the permutation and combination almost impossible to guess.

  46. hi, i am getting a lot of messages which make no sense how can i stop them.

  47. Twitter:
    Really great and useful tips Aritra :).One has to always keep his/her blog safe from all kinds of attacks.These days more and more blogs are being targeted by attackers and one has to ensure the safety of his/her blog.
    abhishek recently posted..Your Gadgets Are Spying On youMy Profile

  48. Twitter:
    Hi Aritra,

    I agree totally with you on making sure that your wordpress blog is secure all the time. My blogs have experienced security threats at various times. Today I use dropbox for my backup needs. Really reliable!
    Chadrack recently posted..Gain Peace Of Mind With Home Security Camera Systems!My Profile

  49. Ashutosh says:

    Hi thanks for the post good tips for keep safe our blog from hackers. The 4 points you share that will certainly .

  50. Using SFTP is also a big deal too because you’re transmiting data. If it’s unsecured someone can hack into that data.

  51. Lisa Lin says:

    Thanks so much, I followed one of your advices and changed my login password!

  52. Deepak Mehra says:


    Its a great and Unique Post ,this Post is very useful and informative
    I am moved by your blogging skills and find your posts attractive. I am a new blogger and would like to learn from you.

    Thanks for such a nice post

  53. wow… this is an interesting post, one worth sharing. thanks
    babanature recently posted..Optimizing Your WordPress Database For A Better PerformanceMy Profile

  54. Muhammet Kara says:

    Very helpful tips for securing wordpress. Thanks for sharing.
    Btw, is it so important to move htaccess file to a parent folder? Some plugins might need it in the wordpress directory to work properly.

  55. My website was affected by the hackers few days back . I recovered it somehow. But you tips are really good.

  56. This will help me allot to save my WordPress site because I am new in wordpress

  57. Twitter:
    Completely agree with you. We need a blend of all the best practices to secure our wordpress site. Although, in current times even high class sites are getting hacked but as a blogger we should ensure that at least our blog is safe from those amateur and ‘wanna be’ hackers. This subject is so vast that it is not possible for any one to cover it in one article but quite well summed up here.

    Riz recently posted..BSNL Broadband PlansMy Profile

  58. Twitter:
    Oh! Thanks for such a nice article. I was in search for something like this.
    By the way, which hosting providers would you recommend?

  59. Ammar Ali says:

    Well Upload Shell on your wordpress and change wp-config permission :P
    use .htaccess to protect admin area :)
    change index path to prevent defacing ;)

  60. Nice tips! I’m using wp-bettersecurity and it seems to do most of this. It also notifies me of the hackattempts which are a serious issue on my wordpress sites. I’m getting many attempts every day, mostly out of eastern europe.

  61. Twitter:
    Hi ,

    Thanks for sharing the information , it will really help me.

    Thank You
    Shorya Bist
    From Youthofest
    Shorya Bist recently posted..How to prepare for an interview?My Profile

  62. These are quite basic steps every single blogger should take care of but big thanks to you, Aritra, for reminding about them.

  63. APNA JAHANIAN says:

    all security tips are awesome, but I recommend to take your website/blog backup regularly. if security options failed then backup will help you to restore again…

  64. Cody Hind says:

    Excellent advice, Aritra. I recently started up a new WordPress website and have been looking at additional security options.

    Although my host does an automatic backup I didn’t feel entirely comfortable with that. So I’ve also added some WordPress plugins as you suggested to do another backup just to be safe. Some of them will save to the Cloud too which is fantastic and makes me feel like I will be able to quickly recover in the future if I need to.

  65. Chris Sampson says:

    These are good tips. I need to secure my blog more. However, I doubt hackers are very interested in mine.

  66. Twitter:
    This is some important stuff Aritra. Security for any website is a must these days. Hackers skills and methods grow rapidly and there would be no worse feeling that for ones website to go down in flames. I always implement all these tactics on my sites and maintain current backups of all my tables and settings. Thanks for posting this, everyone should be aware of how to protect their hard work.
    Robert recently posted..What is a Lobotomy and Can it Cure DepressionMy Profile

  67. Twitter:
    Brilliant tips to secure your site from hackers and also loss of function from either your end or hosting end. There is no substitute for making sure that you backup regularly. The BackupBuddy is good plugin, I have heard very good thing about it.
    Shalu Sharma recently posted..Holi – Festival of ColorsMy Profile

  68. Chris Svensen says:

    I haven’t tried BackupBuddy yet. I use WP-DBManager for my database backups and Better WP Security for backups of my settings etc. I really enjoy using Better WP security because it has lots of great features, has a to do list and is really easy to use. It scans your blog for all sorts of security issues and fixes them with a click. But I’m not sure if it’s the very best security plugin for WordPress, so my question is whether Bulletproof or Wordfence would be a better choice?


  69. Very Good Post! Definitely will consider!

  70. Koj T. Tajo says:

    Biggest fear for any Blogger! Being Hacked. Nice tip but can you plaese help me out on this “Securing the Database and wp-config.php and .htaccess files”. Details or Any link on how to do it.

  71. Twitter:

    Which method or tools you are using to take regular backup of your WordPress site?

    I mean I am running more than 10 WordPress sites so its not possible to take manual backup of files and DB each day. Let me know.
    Tushar Thakur recently posted..Does your Android really need an antivirus?My Profile

  72. great post awesome tricks for wordpress. keep it up dude… and come here for download free movies with Alive Movies Links

  73. Twitter:
    Yes Is there any WordPress Plugin Which Can Take Automatic Backups everyday?
    Ravi recently posted..4 Methods to hack Facebook Account used by HackersMy Profile

  74. While the post is simple and short, it is really great for me and for any beginner who know nothing about the matter more than using a strong password :)
    Thanks Aritra for your article.

  75. Twitter:
    Thanks Aritra for such great information and great tips so every should know the core basics of security :)

  76. Hi Aritra, this is a good list, but….do you mind if I say that there are many more ways to protect your blog from hackers that you haven’t included?

    There are many really easy-to-do, basic security checks that anyone can do – and that everyone should do.

    For example: you can create really super strength passwords (and a different one for each important url or account) and they are passwords you really can remember: Check out my website to find out how –

    NB Aritra: I don’t want to hijack your article, but there are many things that Bloggers should do in addition to what you write about here.

    For example, You should change your Admin name to something other than Admin – anything is better than Admin! If you use Admin, that is 50% of your front door security that’s left wide open for hackers.

    How about Changing your Login name to something which isn’t your name? Change it to a name that cannot be guessed by anyone who visits your blog. And there are many other simple and easy to do.

    I have written a Security Checklist for Bloggers which lists 10+ security essentials and explains exactly how to do each of them.

    Anyone interested can find the article at my website along with other Website Security articles.
    Carol recently posted..Website Security: Security Checklist For BloggersMy Profile

  77. I never said that this article is a complete security checklist. I have written various articles regarding them in my own blog You can check them anytime.

    I will write an another exhaustive article here too about WordPress Security. Thanks for your suggestions too. :-)

  78. I think configuring your htaccess properly can do wonders for security.

  79. Catherine Lily says:


    Thanks for this info, I have found the subject of “securing your blog” to be a little overwhelming as there seems to be so much that needs to be done. What are your thoughts on using services such as cloudflare? Also, do you recommend using plugins that backup your WP install to dropbox and other similar services?


  80. Thanks so much! I have had issues with WordPress Security in the past, and after changing my password to look as ‘ugly’ as possible, my issues have resolved themselves. :) Thank you so much for some more great tips on security.

  81. Taking complete and full back up always and getting good host is my best tips for blog security, Thanks for sharing.
    Donatus recently posted..Sure Explaination Of Insurance TermsMy Profile

  82. Twitter:
    Hey bro,
    I think constant backup of our wp files and database is what we should not toy with. Security should never be taken with levity.

    Thanks for the tut
    Enstine Muki recently posted..Why don’t I make money blogging like others?My Profile

  83. I am using Hostgator and Ipage shared hosting plans. What is your opinion about their security?

  84. Another thing that is important to safe guard a wordpress blog is to regularly update the plugins

  85. Twitter:
    Yes, security is a must. But if it fails, backups are the only way to get back to the latest state of a website. We have no excuse since there are a lot of articles about doing this operation for WordPress sites.

  86. deepak mehra says:


    I think it is really useful and informative article but i think it is better for previous article!!

    Thanks for share with me!!

  87. Twitter:
    Thanks for the info. I’ve heard about securing the htaccess file, going to call my dev friend tomorrow and have him do just that. Any reconciliations on a plugin to secure you from someone trying to hack your login? Thanks!
    Shannon Ryan recently posted..Do I Need to Waterproof My Basement?My Profile

  88. Twitter:
    Brother you forget to tell about the htacces file and how to protect it and what are the signs of healthy htacces file. Peace

  89. Twitter:
    all the above method are helpful
    i m using hostgator hope, it is a secure one.
    i backup my blog regularly
    but some of them i dont know like “secure web.config”
    thank you for sharing Aritra

  90. Koj T. Tajo says:

    Great list. But can you help me how to secure .htaccess file. Everyone say so but I dont have specific knowledge on how to do that. others I have make it sure.

  91. Getting hacked is one of the things any website or account owners dread to experience. I always do security measures like updating my plugins often.
    Connor Harley recently posted..How to Make Filing Taxes EasierMy Profile

  92. Thanks for this useful information. Now-a-days hacking accounts is a very common problem and this article provides good solution to all of them.

  93. you have given nice solution for hacking, it is very useful tip and it is also a informative post.
    thanks for sharing.
    Gajendran Megajolla recently posted..Shout me loud am a professional bloggerMy Profile

  94. After an exploit attack I decided to follow these steps and never more I had an attack. You are a very skilled blogger.I use login lockdown to protect my blog, how do I hide the WP version from my blog?

  95. Twitter:
    Running more than 10 websites. It is really not possible to take backup for each and every personally. Need anything working method to take database and files backup automatically.
    Tushar Thakur recently posted..8 Things to consider while designing ecommerce websiteMy Profile

  96. I strongly agree with the point says Making Backup is necessary since it can be used to restore the blog :)

  97. Twitter:
    Is there any Plugin which can Create Backup on Regular Intervals and Send those Files over any E-Mail Account?
    Ravi recently posted..Top 6 Stickam Alternatives to use After Stickam Shut DownMy Profile

  98. Twitter:
    mostly blogger use username admin by that there blog were hacked.
    ashish recently posted..5 Affordable Portable Chargers To Fulfill Your Battery Needs On The GoMy Profile

  99. Twitter:
    Aren’t there also some plugins that help with security too? I know of one but forgot its name but it did help with the database prefix thing
    Leslie Edwards recently posted..The Basics On How To Make Electronic Music: Drum LoopsMy Profile

  100. Twitter:
    wow great suggestions this is must every blogger to take care of their blogs from getting hacked… thanks for sharing this useful article with us

  101. Twitter:
    Hi,I was looking for this..Thank you for the article..Keeping the blog safe is something that must be on top priority of every blogger
    Suraj recently posted..Sony Xperia Z screen of death problem to be fixed soonMy Profile

  102. Twitter:
    Hey Aritra,
    Nice post and Thanks for sharing this post because now days its very easy to hack any account and if someone hacked our wordpress account then all of our hard work will easily wasted. We should use strong password having integers, character and some special character.
    Sudipto recently posted..Best Love Stories Of All TimeMy Profile

  103. Twitter:
    I usually take out the generator meta tag from the wordpress blog. Because that is the footprint that most of the hackers do look for in order to find a vulnerable blog.

  104. Twitter:
    Wordfence Security.. I think I should try it
    Rich Amor recently posted..Perawatan Kulit Harian untuk Berbagai UsiaMy Profile

  105. I am leaving here and going directly to implement #3 on your list. I hadn’t realized that I even had the option of altering that without messing something else up. Thanks!

  106. How do you put wp-config.php file in upper directory when you have WordPress installs in addon domains which have directories created for them in public_html ? If you move wp-config.php from every addon domain directory, you would overwrite same file over and over.

    What do do in such case where you have several WordPress blogs installed? Can you create and designate wp-config.php file of each to specific directory?

  107. Thanks for the info and thanks for helping me get my wordpress site secured as it should be – can never be too careful nowadays – in fact im amazed at how many bots i get trying to have a go at my site – anyways thankyou.

  108. i really appreciate you for the effort u have taken to write this post, by the way i would like to ask u something that is if i access my WP site through my computer which is affected by virus, will it affect my site too ?

  109. Greta post, Aritra.
    I dont’t realize that WP is easy to be hacked until I read thi post. Now I can protect my site.

    Thank you.
    Ilmu Kimia recently posted..Sifat Kimia PolimerMy Profile

  110. Thanks man for the post.

    I recently wrote a post on wordpress security, which actually is a hybrid of all posts on Internet on wordpress security tips. I tool some of your tips as well as of others and Included some of mine as well.
    By the way thanks.

  111. Saidur Rahman says:

    Thanks Aritra, you have posted such a nice and informative article about the word press securing techniques. I really liked your post. However, I want to add one more thing here that we also have to conscious about the robot.txt editing from the c panel. this is also the most important thing to do .I must share your article with my friends. Thanks for sharing me here my point of view.

  112. I liked your article but seems too difficult to maintain all these points intact. For those who own a couple of blogs can follow all the steps listed above but becomes impossible for people who own websites in double or even three figures. I have seen many people securing their sites with various wordpress plugins.

  113. Rajkumar Jonnala says:

    no doubt these are absolutely perfect tips for securing the blog in wordpress and every wordpress blogger should read this

  114. Twitter:
    I use a plugin called “Login LockDown” to protect by word-press blogs from login theft. It implements a 1 hour lock out of an IP block after 3 failed login attempts. I need to start taking regular backups.
    Chang recently posted..HTC First to Launch Facebook Phone on AndroidMy Profile

  115. awesome tips man. one my my blog is hacked recently. this is much needed tips for me .

  116. Twitter:
    I don’t know what is happening in the background but it seems like this article embedding some predefined script along with the article..,
    I’ve seeing some unexpected extension to the words like… “doesn’t ” (9th line form top)
    Rohit recently posted..Top Budget Smartphones under 10K price range | 2013My Profile

  117. Twitter:
    hello Aritra ..
    Ya you said right security is very crucial for any blog. And creating the backup of site regularly is very important .Thanks for this wonderful tips Aritra .
    Mahendra recently posted..Ways to reduce cell phone bill :easy and effectiveMy Profile

  118. Twitter:
    Whenever i read the tips for wordpress blog security then i get worried about my blog security and I start asking with me that Is my blog secure??? Haha
    But Its nothing. Its only the proof of how much i care of my blog.
    My blog is totally secure. and thanks aritra roy for sharing these valuable tips with us.
    Chetan Gupta
    Chetan Gupta recently posted..10 Cool Things You Should must do This WeekendMy Profile

  119. Twitter:
    Good tips Aritra but the plugin Better WordPress Security does everything you just mentioned :) and more
    Osei Fortune recently posted..Best Security Plugins For WordPressMy Profile

  120. Twitter:
    Great Tips… Would find some time to implement all this you have explained regarding the securty of wordpress…
    SAJID recently posted..Gmail Login – – Gmail Sign InMy Profile

Speak Your Mind


CommentLuv badge