There are many things you can do to secure your wordpress blog – a lot of them are pretty technical are require programming and/or sysadmin knowledge. Here’s a list of easy things that YOU can do to secure your wordpress blog:
- Remove unused themes (by removing the whole directory)
- Disable and remove unused plugins.
- Keep your wordpress version up to date.
- Keep your used plugins up to date.
- Add an empty index.html file into the themes and plugins directories. This stop people from browsing to see what themes/plugins you have installed.
- Install the XSS-Me and SQLInject-Me Firefox plugins and run them against your site.
- Remove the XMLRPC.PHP file from the root directory of your blog if you are not using XML RPC.
Sign up for our daily email newsletter:
