WordPress.org

Support

Support » How-To and Troubleshooting » Getting hacked

Getting hacked

  • C.Flores47

    @cflores47

    I have been lurking the forums a bit and I’ve been seeing alot of threads about being hacked. I’m just starting to build my site and I’m wondering if theres any preventative measures I can take right now to help me stay secure in the future.

    I will be consistently backing up my content, and all of my accounts are unrelated as far as passwords go but what other things can I do?

    Thank you guys!

Viewing 5 replies - 1 through 5 (of 5 total)
  • VelvetBlues.com

    @velvetbluescom

    Here are a few rules that I follow:

    1. Never use an automated WordPress installer to set up WP. Your username should NOT be ‘admin’.
    2. Use your own database table prefix
    3. Disable unauthorized access to the wp-admin folder (I restrict access to a certain set of IP addresses. Of course, if you also users registration, you cannot restrict the backend.)
    4. Be careful about what plugins you install. Badly coded plugins can create vulnerabilities. Also make sure that they are up-to-date.
    5. Check folder permissions.
    6. Hide wordpress version.
    7. Consider 3rd party services. (CloudFlare will speed up your site and help secure it for free.)
    8. Make sure your directory structure is hidden.

    C.Flores47

    @cflores47

    Some great advice!

    Thank you

    MickeyRoush

    @mickeyroush

    There’s a lot of tips out there. You might as well start here:

    http://codex.wordpress.org/Hardening_WordPress

    You could also Google it and if you have any questions about anything, just ask about it here on the Forums.

    Daniel Cid

    @ddsucurinet

    Sucuri.net Support

    Make sure your own desktop is clean as well (lots of sites get hacked through stolen credentials via desktop virus).

    A good text about it:

    http://blog.sucuri.net/2010/11/yet-another-wordpress-security-post-part-one.html

    thanks,

    MickeyRoush

    @mickeyroush

    What dd@sucuri.net says is true. Another tip is that if you use FileZilla to put it in Kiosk mode before it’s first usage.

Viewing 5 replies - 1 through 5 (of 5 total)
  • The topic ‘Getting hacked’ is closed to new replies.