Tips to Avoid Hacking WordPress Blog Engine

Not infrequently a webmaster or blogger was worried at the hack, especially with the more popular a website, the more often exposed and threatened hack. To avoid this danger, here are some tips to secure your wordpress installation from hack attacks.

Secure Database
The first suggestion that I recommend is to secure the database you website or blog. How, make frequent backups of the database and backup data regularly. You can do this through phpMyAdmin hosting account, or using plugins, like WP-Database Backup ( These plugins backup task becomes easier. You just need to log into WordPress admin panel, then click a few links. These plugins should be owned by every blogger.

Scan WordPress
After a plugin that protect a database website, the next step is to scan to make sure the WordPress installation not found a gap in security. This task can be done also by using a plugin called WP Security Scan ( With this plugin you can mengedintifikasi gap - if the security hole found in the blog. In addition we will be told how to fix it. WP Security Scan plugins will also be offered for tables renaming prefixes, password strength testing, remove the admin account and verify your blog directory to have good security.

Tree Intruders
Intruder in this sense is a combination of letters, numbers and so are trying to find the password. Even bias Python script used to try to find the password you WordPress blog.

It would be very easy for an intruder to find the password if you use a blog or a word that is predictable. Therefore, try to use the correct password - really strong, using a combination of lowercase letters, numbers and special characters. You're also biased using a password generator in the WP Security Scan to create a strong password.
While using the password is juat a good trick, another way that will provide efficient protection for your blog, by adding an Apache Login form to the WP-Admin directory. Ask Apache (WP Security Scan) plugin allows you to protect your wp-admin directory was the equivalent of the security authentication server level (htpasswd). This plugin allows you to disable hotlinking, or prevent direct access to the wp-content directory and wp-includes.

Observe Plugins
Not all plugins were good, some of them who are the eyes - the eyes to see that there are security gaps in your blog. For this reason, there is a need for you to hide the content directory / wp-content/plugins. The trick is to create an empty file named index.html, which is then uploaded to the directory wp-content/plugins

WordPress version Hide
If there is a security hole in certain versions of WP, a hacker only needs to show the source code of your blog on your browser and see if the version you are wearing a bias related to penetrate. With the left version of Meta, chances are you biased infiltrated blog. To prevent this, delete the line in header.php in the theme you use. Similarly, there is also a plugin that allows you to trick on the version of WordPress that you use.

What's on Your Mind...

My Blog List


guest book

ShoutMix chat widget