I have been studying up recently trying to put together a good security strategy for an existing site and it's beginning to feel a bit like trying to learn a new language. I'm hoping that I might be able to get a little advice from some WordPress experts on the matter.
So far these are the plugins/services I am looking at:
1. Bulletproof Security Plugin
2. Better WP Security Plugin
3. Secure WordPress Plugin
4. Sucuri.net services
5. Website Defender's beta security service
I am not someone who knows how to edit .htaccess files or coding or anything like that.
I have done a few things already though like moving the wp-config.php file, deleting the readme.html/install.php files. I put a blank index.html file in the uploads directory. I'm also considering password protecting my admin folder through cpanel. That's about the extent of what I know how to do technically and honestly I don't even fully understand why I did these things, except that they were recommended to me by someone I trust.
My fear is that some of the plugins, like "Bulletproof" and "Better WP Security" will have features that might break my site and I won't know how to fix it. Is that fear unfounded?
Securi seems like a good idea since they monitor your site and will fix things if it does get hacked. However, I'm not sure that their preventitive measures are on par with that of the afore mentioned plugins.
Does anyone have experience with these plugins/services?
What would you recommend for someone like myself who doesn't have the desire nor the capability to edit files and fix compatibility issues, but would like some peace of mind concerning the security of their site?
Hope that wasn't too long...
Thanks in advance!