What if your beloved Blog, with its 100+ awesome posts, 200+ followers and over 1000+ comments is hacked by some unsocial Geek just for fun. What happens then ? You will lose your entire hardwork, research and time you gave to nurture your Blog.
But you must not Fear anymore, because here we have some set of Tips that'll help you keep your WordPress Blog safe and secure.
1. Backup your Database
Your WordPress Blog Database contains every post, every comment, image and every link you have on your Blog. If your database gets corrupted or erased, you will probably lose everything you have written. There are many reasons why this could happen and not all are things you can control. With a proper Backup of your database and files, you can easily restore things back to normal.
2. Upgrade to Latest WordPress version
You must always keep your Blog Platform's version up to date. WordPress development team keeps coming up with changes and upgrades to fix various security holes. So keep checking for the latest version of WordPress, and keep your Blog updated.
3. Delete Admin User and Login with Email Address
Just to make things difficult for Hackers you can also Create a new user with administrative privileges and a completely random Username. Then Delete the original "Admin" User and start using your Email address for Login with help of WP Email Login Plugin.
Doing so will not initiate any secret security trick to safeguard your Blog, but will puzzle the Hacker as most of the hackers get access to your Blog through the hacked Admin Account. Hence they will have to put in some extra frustrating efforts to breach into your Blog.
Doing so will not initiate any secret security trick to safeguard your Blog, but will puzzle the Hacker as most of the hackers get access to your Blog through the hacked Admin Account. Hence they will have to put in some extra frustrating efforts to breach into your Blog.
4. Install WP Security Scan
WP Security Scan checks your website/blog for security vulnerabilities and suggests corrective actions such as Password strengthening, File Permissions, Database Security, Version hiding. It also alerts you if it finds any malicious code in your WordPress Blog. But this Plugin is only available for WordPress versions 3.0 to 3.3.2 .
5. Scan every Theme, Plugin and Widget
There are hundreds of Websites these days, which offer free templates for Blogs. But you must be very cautious when you download such a theme for you Blog. You must scan every theme and Plugin that you get from Non WordPress source, because you never now that the theme you just downloaded might carry some malicious codes or any Backdoor for the hacker to hack your Blog. You can use your PC's antivirus to scan them. VIP Scanner is also very good WP plugin for scanning themes and file.
6. Create a .htaccess file in ''wp-admin/"
.htaccess (hypertext access) is the default name of directory-level configuration files that allow for decentralized management of configuration when placed inside the web tree. These files are often used to specify the security restrictions for the particular directory.
Open a new Text file and Paste this code
Options -Indexes
preg_replace(‘/<\/?p( [^>]*)?>[ ]*/’, ‘ ‘, preg_replace(‘/
preg_replace(‘/<\/?p( [^>]*)?>[ ]*/’, ‘ ‘, preg_replace(‘/
[ ]*/’, ‘ ‘, ‘
# BEGIN WordPress
RewriteEngine On
RewriteBase /
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule . /index.php [L]
# END WordPress
‘))
Save the file as .htaccess and upload it to your "wp-admin/" folder, that is to the link http://www.yourblog.com/wp-admin/ .
7. Secure your Login Page
Of course your Blog's Login Page is available for all, but still we can prevent the unauthorized internet users from logging into our Blog using login plugins available with WordPress. Login Dongle and Google Authenticator are the best ones.
8. Install Plugins that Monitors your Blog
You must install Plugins both on your WordPress blog as well as with your hosting service to notify your through Mail if it encounters any change to your Blogs files.
- WordFence Security - This is a very powerful Plugin to scan your Blog for any changes, firewall protection and virus scan.
- WordPress Sentinel - This plugin acts as a sentinel that watches over your core WordPress programs, installed themes, and plugins and notify you whenever changes happen.
- Exploit Scanner - This plugin searches the files and databases of your Blog and its installations for signs that may indicate that they have fallen prey to the malicious hackers.
We hope this simple Tips will surely help you to secure your Blog from hackers and safeguard your Blog. Do comment and enlighten us, if you know any other simple Tip for the same.
