**UPDATE** – View my WordPress Security Guide instead of the link below – it has more in depth information to secure your wordpress blog than the post below – and it’s free!
Last month I wrote the Ultimate Guide to Securing WordPress for NetTuts+. It is an all probability one of the longest articles that I’ve ever written (8,000 words). Through about 75 hours of research I wrote an exhaustive guide that is a must-read for every WordPress owner.
What you will learn:
- How to scan and look for exploits in your WordPress site
- How to monitor your WP site for theme file changes
- How to limit access to your WP site
- How to use Secure FTP
- What to look for in a good web host
- How to make your usernames and passwords more secure
- How to lockdown comments and lockout bots
- How to find and monitor errors
- How to use a more secure connection
- What you should change in your wp-config file
I wrote this guide for several reasons. In the last few months I’ve had a few clients that had their wordpress sites broken in to, and I had to fix them and teach them how to implement some wordpress security. A few forums I frequent had some posts where people panicked about cross site scripting (XSS) attacks and wordpress “viruses”. When I started to do some research I found bits and pieces of information all over online, but nothing “all in one place” – and that’s the way this guide was born!
Check out The Ultimate Guide to Securing WordPress, you’ll be glad you did!
If you’re not a NetTuts member, you might instead be interested in my WordPress Security Guide.