Wordpress Security
April 3, 2008
One of my wordpress blogs was hacked last week - some swine had stuffed some iffy links into the theme’s header.php file.So it’s got me thinking what sensible precautions should be taken to protect a wordpress installation. Here are some things to consider/action:
- Keep on an up-to-date release of wordpress and make yourself aware of patches by subscribing to the wordpress development blog.
- Keep your plugins up-to-date too. Wordpress 2.5 offer automatic plugin upgrades.
- Ensure you backup your wordpress data. I mentioned a backup plugin a while back.
- Get your themes from trusted sources.
- Matt Cutts offers 3 security tips here. Additionally, I think it’s okay to create a empty index.html in your /themes folder to stop snoopers seeing what’s in your theme folder.
- Use strong passwords and change regularly.
Additionally you can modify your .htaccess file to restrict various actions, though some people may not have the confidence to change that file.
What other precautions do you take to secure your wordpress installation?
Are you looking to publish a fully featured website that contains your static content, photos and video and an integral blog for your latest news? WordPress is an easy-to-use, powerful website publishing platform that allows you to do all of the above and much, much more! We can get you up-and-running with WordPress - for a lot less than you think! Find out more about our 
Comments
Got something to say?