How to secure a WordPress Website?

WordPress is very secure out of the box, however there are certain precaution that we could take to Harden our WordPress installation even further. WordPress has a standard guide to follow while Hardening WordPress while this post will help simplify and add to some of those steps along with links to plugins and instructions on how to go about completing them.

The following steps will help you with risk reduction (not elimination) since the risk will never be zero. New exploits are always found and it’s important to keep up with the ever evolving security scenario.

1. Incorporating the Least Privilege Principle

It’s important you plan out your installation in such a way that each file/folder/user only has access to what they need.

2. Changes to wp-config.php

Update WordPress Salt and Keys


How to: Edit these in your wp-config.php file

What are these?: A WordPress salt is a random string of data that hashes the WordPress security keys in the wp-config.php file. Read More


Author: Victor Fernandes

A friend I really respect once told me, unless you are able to dumb down a concept for someone who has no prior information about it, you can't be sure you know it yourself. I try to create blog posts that are extremely easy to understand most suitable for those in a hurry. The topics I write about include web development, digital marketing and software in general.

Notice an error in any content or would like to get something removed? Please inform Victor here.

Leave a Reply

Your email address will not be published. Required fields are marked *