WordPress security, several simple steps can be implemented

1. Do not use “admin” as username 2. Using complex password 3. Hide WP-config.php and .htaccess 4. Hide WordPress Backstage Login Address 5. Disable file editing 6. Server security 7. Keep the latest 8. Place More security layers 9. Best security plugins and topics 10. Regular backup directories

If you are using or using WordPress, you should always consider the security of the site. WordPress is not safe than any other platform, but the number of users, plugins, and third party attachments make it a common goal of an attacker. However, please feel free to take some basic steps to ensure WordPress security.

1. Do not use “admin” as user name

Most WordPress attacks are trying to force into your WordPress by guessing passwords. If they don’t have to guess your administrator user name, this is much easier for them! Avoid using common words (for example, admin) in the username, greatly reduces the efficiency of violent attacks.

If you are using an “admin” user, you may be time to delete the account and add a safer username!

2. Use complex passwords

Having more complex passwords will make guess or violent cracks more difficult. One technique using complex passwords is: complex, long, unique. It is recommended to set a long password (20 characters or more than the above) and contain less uncommon characters such as # or less.

3. Hide WP-config.php and .htaccess

Your WP-Config.php and .htaccess file are critical to WordPress security. They usually contain your system credentials and disclose information about the structure and configuration of the site. Ensure that an attacker cannot access them vital.

Hidden these files is relatively easy, but do something wrong, it may make your website can’t access it. Back up and carefully operate.

To improve WordPress security, you need to add it to .htaccess file to protect WP-config.php:

This prevents files from being accessed. Similar code can be used for .htaccess file itself:

4. Hide WordPress Backstage Login Address

Violent attacks are usually targeted in your login address. Therefore, changing the login address will make the attacker more difficult to enter. You can refer to this article “Hide WordPress Backstage Login Address, Improve Website Security”, there is a detailed steps.

5. Disable file editing

If the hacker invaded, the simplest method of their changes is to go to “Appearance> Editor” in WordPress. To improve WordPress security, you can disable editing of these files through this editor. Similarly, you can do this by adding the following code line from WP-Config.php:

Define (‘Disallow_File_Edit’; True);

6. Server security

Even if you have a good security for the security, your server is safe, but it is very bad!

If an attacker can access your website hosting, they can fully control all content. So select the correct hosted server very heavy. The cheap trust server usually does not have a good security or backup, or may not provide support to help you clean the black website.

Sharing hosts are often particularly dangerous, as an attacker may access your site through another infected site on the same system. That’s why we always recommend that you don’t want to be cheap in the choice of the server, choose a well-known service provider.

7. Maintain the latest

It is also important to update the subject, software, plugin, and other components are part of the ongoing routine. Otherwise, you will open the gate to the attacker. If you don’t update it regularly, it is easy to be attacked by known vulnerabilities.

8. Place more security layers

The best security solution prevents attackers from reaching anywhere near your website. Therefore, we recommend that most websites run a WordPress firewall plugin. These plugins look for known attackers and common attack patterns, and will block them before they have the opportunity to harm your website.

9. Best security plugins and themes

Most WordPress users tend to apply the subject and plugins to their websites. We recommend paying attention to testing different topics or plugins, especially without using the test server. Most plugins and many topics are free. It is recommended to select plugins and topics that are downloadful and frequently updated.

10. Regular backup

It is very important for regular backups. You will never know when the future will come, prevent it in need, keep backup regularly, so as not to quickly restore the website quickly, avoid losses.