Simpa studio blog » security

Simpa studio blog » security http://blog.simpa.ba Been there, done that... Fri, 06 Jan 2012 11:17:44 +0000 en hourly 1 http://wordpress.org/?v=3.3.1 Securing WordPress Blog http://blog.simpa.ba/2009/03/securing-wordpress-blog/ http://blog.simpa.ba/2009/03/securing-wordpress-blog/#comments Tue, 03 Mar 2009 17:13:52 +0000 aarsla http://blog.simpa.ba/?p=29 General recommendations Use the latest stable version of WordPress Rename “admin” user (using sql query) Use strong passwords (lEtTerS, numbers, special chars) Do not use “wp_” table prefix in your wordpress database [TABLE=3] Secure wp-content folder .htaccess file: Order Allow,Deny … Continue reading →

]]> General recommendations

Use the latest stable version of WordPress
Rename "admin" user (using sql query)
Use strong passwords (lEtTerS, numbers, special chars)
Do not use "wp_" table prefix in your wordpress database

[TABLE=3]

Secure wp-content folder

.htaccess file:

Order Allow,Deny
Deny from all
<Files ~ ".(css|jpe?g|png|gif|js|doc|pdf)$">
Allow from all
</Files>

Secure wp-admin folder

.htaccess file:

Order deny,allow
Deny from all
Allow from my.ip.addr.ess1 my.ip.addr.ess2

Recommended plugins

WP Security Scan

]]> http://blog.simpa.ba/2009/03/securing-wordpress-blog/feed/ 0