Support » Fixing WordPress » Getting hacked

  • I have been lurking the forums a bit and I’ve been seeing alot of threads about being hacked. I’m just starting to build my site and I’m wondering if theres any preventative measures I can take right now to help me stay secure in the future.

    I will be consistently backing up my content, and all of my accounts are unrelated as far as passwords go but what other things can I do?

    Thank you guys!

Viewing 5 replies - 1 through 5 (of 5 total)
  • Here are a few rules that I follow:

    1. Never use an automated WordPress installer to set up WP. Your username should NOT be ‘admin’.
    2. Use your own database table prefix
    3. Disable unauthorized access to the wp-admin folder (I restrict access to a certain set of IP addresses. Of course, if you also users registration, you cannot restrict the backend.)
    4. Be careful about what plugins you install. Badly coded plugins can create vulnerabilities. Also make sure that they are up-to-date.
    5. Check folder permissions.
    6. Hide wordpress version.
    7. Consider 3rd party services. (CloudFlare will speed up your site and help secure it for free.)
    8. Make sure your directory structure is hidden.

    Some great advice!

    Thank you

    There’s a lot of tips out there. You might as well start here:

    You could also Google it and if you have any questions about anything, just ask about it here on the Forums.

    Make sure your own desktop is clean as well (lots of sites get hacked through stolen credentials via desktop virus).

    A good text about it:


    What says is true. Another tip is that if you use FileZilla to put it in Kiosk mode before it’s first usage.

Viewing 5 replies - 1 through 5 (of 5 total)
  • The topic ‘Getting hacked’ is closed to new replies.