Support » Installing WordPress » Security after installation

  • Are there any files that should be deleted, renamed or protected after installation?

Viewing 9 replies - 1 through 9 (of 9 total)
  • Moderator Matt Mullenweg



    But the key point is, you don’t have to delete or remove anything. Everything is protected by default, unlike some other blogging systems.

    I think those files *should* be deleted after each install. They only provide more ways to potentially break an installation and provide information about the system they’re on that could help attackers. The installation script should provide an option to delete unnecessary files once it’s completed.

    Thanks allusion

    It’s been a while but I was wondering what is the new install/update script behavior in regards to the files that are unnecessary and as such should be deleted once everything’s installed.
    I had mentioned it in the 5-minute install on the Wiki but for some reason Matt removed it without any explanation (see the document’s history).
    Thanks for any clarification on this.

    After installing WP 1.5 and everything working fine, are there any files that need to be deleted or permissions changed?

    I assume not from Matt’s post above but wanted to check for sure.

    Moderator James Huff


    Halfelf Minion 🚀

    Nope, you don’t have to delete anything or change any permissions.

    Why delete something that may be used in the future?

    Just password protect the directory.

    Password protect which directory?

    Moderator Matt Mullenweg



    You could password protect wp-admin, but it really isn’t necessary.

Viewing 9 replies - 1 through 9 (of 9 total)
  • The topic ‘Security after installation’ is closed to new replies.