How to Make your WordPress Site Hack-Proof

Seeing the boom in the Internet world has magnetised a whole bunch of people who wish to make their presence in the world of web.  Everyday lot many people enter the world of blogging world or decide to get their websites. WordPress, we all is one of the most liked CMS for miscellaneous good reasons. The cool features and the ease it provides makes it a pick worth it.

Well, deciding on getting a website and running it is not as simple as it sounds to be. There are many obstacles that come in the way thereby making your efforts go down the drain. Hacking for example can be quite shocking. Every now and then we get to hear the news about celebrity websites getting hacked and as its a normal human tendency that we don’t even for once think of the fact that it can happen to us one day. I am not at all asking you to think negative and keep worrying but then it is always good to hope for the best but be prepared for the worst. I am almost about to use the cliche sounding line which is that precaution is better than cure. The title and my introductory paragraphs are sure to give you the idea as to what the article of the day revolves around.

Yes, its about working on making your WordPress website hack-proof. With the ever increasing number of websites popping up daily some notorious minds are working on hacking the websites. Most of the times their targets are big websites but sometimes they hack any website they wish to. You never know yours is the next one. Why risk it when you can act smart and make some efforts to make it hack-proof.

Here, I will be listing down some key points to make your WordPress site hack proof that will ensure to help you all the best possible way. Read them out and take actions now…before it is late!

1. Update Your WordPress

If you are wondering what this has to do with the hacking, I would like to make you recall the incident that took place in June 2007. The SQL injection exploit of enabled hackers to gain access to entire databases worth of account user names and passwords. It was only when the WordPress team remedied the situation with a security patch that they came to know the main reason which was usage of outdated version and not updating the latest one which made the task of the hacker easier. Now you can well imagine how further delay in latest stable updates when available can help make hacking easy.


2. Use a Strong Password

But obvious, using passwords that anyone can make out is not done even though your password is being encrypted as you login. Use strong password that is difficult for others to guess. Characterize the password by making use a combination of digits, special characters and different case to form your password. Password checker on WordPress 2.5 is one good way to check the strength of your password.

Use a Strong Password

3. Hiding WordPress Version Number

I have already talked about updating the WordPress to latest version. This one is like taking anther step. It is a wise idea to prevent potential hackers from knowing what version of WordPress you’re using. This will make it difficult for them to figure out which exploits will work to hack your website. remove_action(‘wp_head’, ‘wp_generator’); addition to the functions.php file will hide the WordPress version.

4. Change Your Login Name

We all know that the default username is admin and hackers know it too but there is a smart move that you can make by changing the login name. What you have to do is go to WordPress dashboard go to Users and set up a new user account. Give this new user administrator role.

Log out and log in again with the new user account. Simply again go to users again, check the box besides the admin user and press Delete. Thereafter click on Attribute all posts and links to: and select your new username from the drop down bar. Transfer all the posts to your new user account and Press Confirm Deletion. Does that sound to be a daunting job? I guess none of you will say yes instead work on it.


5. Use FortWave Plugin

This is is an ultimate Security plugin for WordPress that ensures to help you make your website hack proof. From firewall to malware and reputation scanner, secured-simplified login, brute force attack detection, backup, WordPress core scanner these are superb features that make it worth it!


6. Akismet

Akismet is a plugin that checks your comments against the Akismet Web service to see if they look like spam or not.  It lets you review the spam it catches under your blog’s “Comments” admin screen. You’ll need an API key that is free for personal blogs and paid subscriptions are available for businesses and commercial sites.


7. Backup Your Database

It is essential for any website user to backup the entire WordPress data for the fact that despite your keen efforts incase your website gets hacked at least you can have the security of restoring its last known working version. There are oodles of plugins that can help you in this case.


8.Protecting WP-Admin Folder

The wp-admin folder has all the important website information related to your website. You can use password protection tools to protect the directory from hackers.

9. Hide Plugin Folder

Above I have added two of the plugins that are available for your ease to ensure your website is hack-proof. Also, there are may plugins that we use on your websites. Ensure that this list of plugins are hidden.You can do this by uploading an empty index.html to the plugin directory. 

10. Regular Security Scan

You can install plugins that are available for making a regular security scan of your blog ensuring you don’t leave any security loopholes.

So, now you know what all steps you need to follow to increase the level of security of your WordPress blog. Believe me, this will take just a few minutes or to be more precise not more than 30-45 minutes to make your WordPress website hack-proof. Do it now and ensure that your website is safe. Hope you’ve enjoyed this post. If yes why not share it with your friends and help them the same way.

PS : There are more best WordPress security plugins that we will come up with anytime soon.

One Comment

Add a Comment

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.