Three tips to protect your WordPress installation - The Diigo Meta page

• 15 Nov 09
  

  soulgrind r

  Securing your wordpress blog (part 2)

  wordpress blog howto blogging useful security

  • Secure your /wp-admin/ directory. What I’ve done is lock down /wp-admin/ so that only certain IP addresses can access that directory. I use an .htaccess file, which you can place directly at /wp-admin/.htaccess . This is what mine looks like:
    
    

    AuthUserFile /dev/null
    
    AuthGroupFile /dev/null
    
    AuthName “Access Control”
    
    AuthType Basic
    
    order deny,allow
    
    deny from all
    
    # whitelist home IP address
    
    allow from 64.233.169.99
    
    # whitelist work IP address
    
    allow from 69.147.114.210
    
    allow from 199.239.136.200
    
    # IP while in Kentucky; delete when back
    
    allow from 128.163.2.27

• 07 Oct 09
  

  vi ka
• 22 Sep 09
  

  Andy Brudtkuhl

  cloudbacks wordpress backup

• 19 Sep 09
  

  Marcel Weiss

  security wordpress tipps

• 11 Sep 08
  

  Cameron Morgan

  blog-design wordpress security blog htaccess howto tips

• 05 May 08
  

  Jon Gos

  security

• 24 Mar 08
  

  .htaccess blog blogging howto htaccess import security tips wordpress

• 22 Mar 08
  

  Chris Smith

  care2dev wordpress

• 20 Mar 08
  

  Tris Hussey

  system:unfiled

• 27 Feb 08
  

  Muhammad Ulinnuha

  wordpress

• 12 Feb 08
  

  Qaid Jacobs

  security wordpress

• 07 Feb 08
  

  Jeppe Mortensen
  • Instead of limiting the /wp-admin/ directory to only IPs via your .htaccess file, I just password protected the /wp-admin/ at the directory level. Then you can access it from anywhere in the world on a per user-level.
  • Check out Login Lockdown as well. It bans people by IP address if they enter the wrong user name and password after so many attempts.
  • 2 more annotations...
  • • Use the noversion plugin found at http://blogsecurity.net/wordpress/bs-wp-noversion/ to hide your WP version number.
    • I go one step further and password protect the wp-admin directory in the control panel.
• 05 Feb 08
  

  Chris Cree

  HowTo wordpress security tips

• 04 Feb 08
  

  kim y
• 23 Jan 08
  

  Dominic Sayers

  howto wordpress

• 20 Jan 08
  

  Therese Hansen

  Wordpress.org sikkerhedstips

  blogging TODO security del.icio.us

• 19 Jan 08
  

  David Wallace

  Three things from Matt Cuts on what I need to do to protect WP blogs.

  wordpress

• 

  Shanta Rohse

  wordpress:guides .htaccess delicious_import

• 

  Krishnan Subramanian

  wordpress security wordpresssecurity

• 18 Jan 08
  

  mitt squinter

  wordPress install security tips

• 

  jeremiah hester

  wordpress security .htaccess imported

• 

  Dobromir Hadzhiev

  wordpress tips security htaccess

• 

  Jon Aston

  wordpress security blog htaccess blogging webdev

• 

  Munish Gandhi

  Here are three easy but important ways to protect yourself if you run a WordPress blog:

  wordpress security tips

• 

  leaf duo

  Options -Indexes

  wordpress security .htaccess

• 

  Dennis Howlett

  For the geekerati only but good advice. If you have a WordPress implementation and understand a bit of code then this is worth reading

  wordpress security

Would you like to comment?

Join Diigo for a free account, or sign in if you are already a member.