Secure you WordPress Installation

If you are my constant readers you know that I have been hacked before. That is why I can’t help sharing this to you guys I just found a very good security tip from Dailyblogtips.com.

1. Secure the /wp-admin/ directory

2. Hide your plugins

3. Keep up with patches and updates

Go Ahead and check your blog. ๐Ÿ™‚

Update : I just found out that lots of Filipino bloggers are susceptible to Item # 2. So you better check your blog and hid your plugins.

Make Blank index.html at your /wp-content/plugins/ folder. You know who you are. Better check it or be sorry ๐Ÿ™‚

Dexter Panganiban https://techathand.net/about-2/

Dexter is a person who loves technology,new gadget, SEO, Social Media and Christianity. Follow him at twitter via @techathand and add him @ Google+ and contact us at admin@techathand.net

You May Also Like

More From Author

19Comments

Add yours
  1. 1
    jayl

    Im not a coder as well. The tip of Marhgil did not work out for me, I did a post about an alternative way of disabling wp directories. It worked for me.

    thanks,
    jayl

    jayls last blog post..Hide Those WordPress Directory Files

  2. 3
    Hide Those Wordpress Directory Files | Hinlalato

    […] the Options All -Indexes tip of sir Marhgil did not work out for you? or you figured out that Sir Dexter’s method of making blank index.html and uploading it to your /wp-content/plugins/ or in any folder is just a bit […]

  3. 4
    jayl

    how about a redirection of your 404’s to your sitemap ๐Ÿ˜€ this way your “visitor” would just be dumbfounded at your categories, archives and pages. Also good for the bots ๐Ÿ˜€

    jayls last blog post..Sad Guys on Trading Floors

  4. 6
    Rayland

    just insert it on any line actually.. as long as it is on a line of its own.

    # BEGIN WordPress

    RewriteEngine On
    RewriteBase /
    RewriteCond %{REQUEST_FILENAME} !-f
    RewriteCond %{REQUEST_FILENAME} !-d
    RewriteRule . /index.php [L]

    # END WordPress

    Options All -Indexes

    the “# END WordPress” are just comments like in css where they have it as /* comment here */ . so they just get ignored. those rewrite rules are for your permalinks so dont remove them.

    Youre Welcome ๐Ÿ˜€

  5. 7
    Dexter

    @ Rayland

    I have this

    # BEGIN WordPress

    RewriteEngine On
    RewriteBase /
    RewriteCond %{REQUEST_FILENAME} !-f
    RewriteCond %{REQUEST_FILENAME} !-d
    RewriteRule . /index.php [L]

    # END WordPress

    Where do I have to insert it..? Thanks in advance

  6. 8
    Rayland

    this should work on all apache servers..

    i know what you mean by how it can be destructive to SEO. but how i see it, adding that line merely prevents users from seeing the folder contents. but it doesnt prevent robots from accessing the folders and the contents within. ๐Ÿ˜€

  7. 9
    Dexter

    @ Rayland

    Is this applicable in all types of platform.. I mean applicable sa Apache….( I am not an expert on this ) ussually I am afraid to touch .htaccess.. It can be helpful or distructive to SEO..

  8. 10
    Rayland

    a faster way to prevent access to those directories is by adding a line to your .htaccess file..

    Options All -Indexes

    adding that line denies access to directories which do not have an index file, but contain other sensitive files. you might want to try it. it sure saves a lot of time compared to adding an index file to each and every directory you want to protect.

+ Leave a Comment

This site uses Akismet to reduce spam. Learn how your comment data is processed.