No need to change it. if it aint broken, don’t try to fix it.
you can change the salts at any time – all existing cookies will become invalid.
I don’t know whether fantastic uses random salts but if not it it would be pretty pointless using them at all.
it’s always a good idea to use a table prefix other than ‘wp_’, but as tables with that prefix already exist in the database, you will have to update your existing tables if that setting is changed in wp_config.
Also if fantastico set up a user called admin, and you care about security (and you should), it is a good idea to create a new user account with administrator role with a unique name, sign in as that user & delete the admin account.
Thread Starter
EMar
(@sounds)
Fantastico didn’t create a user called admin, for WP or in the data base.
So i’m guessing creating another admin in wp wouldn’t make a difference,
As he would have superadmin rights to the site also right?
I said *if* fantastico created a user called ‘admin’ – this was referring to the administrator username you use to log into WordPress – if it didn’t & you were asked to chose a username for your admin user, you don’t need to worry about that – having a known default username such as ‘admin’ can make an attack easier.
The WP Security Scan plugin will let you change the table prefixes.
