Search the worlds information, including webpages, images, videos and more. Google has many special features to help you find exactly what youre looking for. Security. Lets face it. Software has holes. And hackers love to exploit them. New vulnerabilities appear almost daily. If you have software we all do you need to. The best part is starting a WordPress blog is so easy, you can have one up and running in about 20 minutes this guide will help you do just that. Ways To Prevent Your Wordpress Blog From Being Hacked. There are over 5 million results in google for the keyword prevent wordpress hack. Everyone has their own opinion and I dont think all of these posts are updated frequently. Its been a while I have posted here. If you have been following me on my twitter then you should know what I have been up to. First, here are few things you should know I have made several changes to this blog. Recently, some of my blogs were hacked. It was funny how the index file had an image of a smurf showing the middle finger with a text saying wheres your security I was glad the hacker left his email address so I could thank him for mocking the security of my blogs and so, I did. The amazing part This guy didnt even touch the database he didnt even inject any shit virus. I felt it was weird but after checking out each files, I found they were all clean. I was so involved in other projects that I didnt pay much attention to security which is actually the most important thing here. If this dude didnt breach my security, I wouldnt have known it was vulnerable and hence wouldnt have bothered to take action. Whatever it is, I have sent him a Thank You Note I have removed some shitty plugins, transferred to Host. Gator, tweaked codes and moreToday, I have decided to write a post on how I did what I did that is, strengthen the security of my blog to keep off hackers and all creepy people. I will have a video tutorial created for this later this month but for now, check this out. Some basic tweaks can help protect all your hard earned content. Check out the following tips to prevent wordpress hack. Backup. This is the first step and the most important. Before you plan on making any changes, make sure you backup your entire DB. You can do this manually or use an available plugin. WordPress Keys in wpconfig. I didnt know much about wordpress keys but it is another important security measure. These keys work as salts for WordPress. Zinepal. If you dont use wordpress, Zinepal an easytouse alternative that will help you achieve similar results. Simply enter the URL to your blog or feed, and. Save Blog Post As Pdf Wordpress' title='Save Blog Post As Pdf Wordpress' />I recommend backup buddy which backs up your entire wordpress blog. Unlike free plugins which only backup your database, backup buddy exports your entire database with images, files and whatever you have in your blogs content folder Pretty sweeet Update Word. Press Version. Second crucial step after backing up your blog is to update it to the latest version. You should always make sure that your blogs version is up to date. Word. Press team creates patches to help fix security holes. Follow wordpress feed to find out about the latest updates or you could simply login to your admin. Save Blog Post As Pdf Wordpress' title='Save Blog Post As Pdf Wordpress' />I would also recommend that you follow Word. Press Development and Blog. Security as they will inform you whenever a new patchfix is released. Change your LoginPassword. The default wordpress login is admin and most hackers know that. TaaIKfw1lQI/AAAAAAAAAIQ/YF2GG9n59io/s1600/WordPress+Sharing.jpg' alt='Save Blog Post As Pdf Wordpress' title='Save Blog Post As Pdf Wordpress' />We should change this to something else that would be difficult to guess. Something like rogers. The best thing to do is delete the default admin and create a new custom login. I suggest that you use strong passwords which include upperlower keys, numbers and symbols. Something like rock. STAR1. 9 or Anabel. Most hackers try to brute force the password so if your password is really strong as I mentioned earlier, you should be fine. Do not use birth days, names, pet names or hobbies as passwords. People who are close to you know a little more about you you dont want any wild guesses 4. Word. Press Keys in wp config. I didnt know much about wordpress keys but it is another important security measure. These keys work as salts for Word. Press cookies thus, ensuring better encryption of user data. Use the Word. Press Key Generator to generate these keys. Now open up your wp config. AUTHKEY, put your unique phrase here defineSECUREAUTHKEY, put your unique phrase here defineLOGGEDINKEY, put your unique phrase here defineNONCEKEY, put your unique phrase here Save and you are done Install WP Security Scan. This plugin is the real deal. Its simple and automates stuff. It will scan your wordpress blog for vulnerabilities and inform you if it finds any malicious codes etc. If the texts are in green in the admin panel then you should be good. However, they will not just be green sometimes you have to make them. And I will tell you how. Change Table Prefix. The default table prefix for wordpress is wp. I know that, you know it and I am sure the hacker does too. SQL Injection attacks are easier with the default table prefix because it is easier to guess. A good prefix would be mashjg. Changing your database table prefix is highly recommended and you can do this in two ways. The manual way requires some work and is not suitable for newbie heres when WP Security Scan Plugin makes your work much easier. It has a tab called Database. Once you are in it, you have the option to rename your entire table prefix to something that is tough to guess. Do this and you will be a step closer to strengthening your blogs security. DB Password How strong is your database password Both your wordpress login password and database password should be strong. Include upperlower keys, numbers and symbols. Prevent Word. Press Hack by Blocking Search Engine Spiders from Indexing the Admin Section. Search engine spiders crawl over your entire blog and index every content unless they are told not to do so. We do not want to index the admin section as it contains all the sensitive information. The easiest way to prevent the crawlers from indexing the admin directory, is to create a robots. Then place the following code in the file User agent Disallow cgi bin. Disallow wp admin. Disallow wp includes. Disallow wp contentpluginsDisallow wp contentcacheDisallow wp contentthemesDisallow trackbackDisallow feedDisallow feedrssDisallow category. Hacks. htaccess hypertext access is the default name of directory level configuration files that allow for decentralized management of configuration when placed inside the web tree. This is not an exact tip that falls under the list but you should know about. I am not going to get in depth for this term but I found out some sweet. See them below. 9. Protect your. htaccess. After tweaking your. The hack below prevents external access to any file with. Simply place the code in your domains root. STRONG HTACCESS PROTECTIONlt code lt Files. HhTtAa order allow,denydeny from allsatisfy alllt Files 1. No Directory Browsing. Biofisica De La Circulacion Pdf. Its not a good idea to allow your visitors to browse through your entire directory. This is an easy way to find out about directory structures and this makes it easier for hackers to lookout for security holes. In order to stop this, simply add the piece of 2 lines in your. Word. Press blog. Options All Indexes. Secure wp config. Wp config. php is important because it contains all the sensitive data and configuration of your blog and therefore we must secure it through. Simply adding the code below to the. Order deny,allow. Deny from alllt files The code denies access to the wp config. Limit Access to the Wp Content Directory. Wp content contains everything. This is a very important folder and you should secure it. You dont want users to browse and get access to unwantedother data. Users should be only able to view and access certain file types like images jpg, gif, png, Javascript, css and XML. Place the code below in the. Order deny,allow. Deny from alllt Files. Allow from alllt Files 1. Protect Word. Press Admin Files.