I don't know about you, but when I was securing my WordPress blog, and I was researching to find out what others were doing to maintain their blog secure, I found so much information that I was completely confused. And some of the data was actually over superstitious or the top. People told me to rename this file, rename this folder and install these ten plugins. It appeared to be a bit of work and energy.
fix hacked wordpress site Watch out form submissions. You can useRegexp to process the information . You can even define preloaded variables as type data in the form of checkboxes, radiobuttons etc..
Strong passwords - Do your best to use a strong password, alpha-numeric, with upper and lower case and special characters. Easy to remember passwords are easy to guess!
Move your wp-config.php file one directory up from the WordPress root. WordPress will search for it there if it can't be found in the visit main directory. Additionally, nobody else will be able to read the file unless they've FTP or SSH access to your server.
Can you see click here to read that folder, Imagine if you visit WP-Content/plugins? If so, upload that blank Index.html file inside that folder as well so people can't see what plugins you might have. Because if your version of WordPress is up to date, if you're using a plugin or an old plugin using a security hole, someone can use this to get access.
I prefer using a WordPress plugin to get the job done. Just make sure is in a position to do select backups, has restore and can clone. Also be sure it is often updated to keep pace with all new versions of WordPress. There's absolutely not any use in not click this functioning, and backing your data up to a plugin that's out of date.