“How To Secure WordPress”

1 Nov 2007 ·

Blogging, WordPress



BlogSecurity, the only organization that deals with social networking and web blog security has recently released a WordPress security whitepaper entitled “How to Secure WordPress“.

I haven’t finished reading the whole thing but I’ve already learned many things and gained more knowledge about securing WordPress installations. When I find the time, I’ll try to apply some of the things I’ve learned. One thing I’m really interested in trying out is the WPIDS plugin that detects intrusions. This is just an initial release so some aspects and topics were missed or weren’t fully covered. Expect additional topics and improvements in the next release or versions of this whitepaper.

Here’s what you’ll find inside version 1.0:

  • Table of Contents
  • Introduction
  • Installing WordPress
    • Accessing your WordPress tables
    • Changing your WordPress Table Prefix
    • Before Installation
    • Manually Change
    • Through WP Prefix Table Changer
  • Preparing the Blog
    • Changing your Admin Username
    • Create a new limited access user
  • Hardening your WP Install
    • Restricting wp-content & wp-includes
    • Restricting wp-admin
    • Block all except your IP
    • Password Required – .htpasswd
    • The .htaccess file
    • The .htpasswd file
  • MUSTHAVE Plugins
    • WPIDS – Detect Intrusions
    • WordPress Plugin Tracker – Are you updated?
    • WordPress Online Security Scanner

Anyone else read the “How To Secure WordPress” whitepaper? What topics or additional information should the authors add in the next version? Share your thoughts!

Download the “Hot To Secure WordPress” PDF.


Subscribe to JaypeeOnline's RSS feed  Share this on del.icio.us  Stumble It!  Digg this!  Share this on Facebook  Tweet this!  Share on FriendFeed  Bookmark It!  Submit to Reddit!  Share on Mixx  Buzz It!  Email this story to a friend!
Written by Jaypee Habaradas
Owner and editor of JaypeeOnline. Self-proclaimed geek. New media writer and consultant. WordPress advocate. Loves blogging, gadgets, video games and sports. You can follow him on Twitter @jaypee or Facebook.
Didn't find what you're looking for? Try looking for it again.

Related Posts

Related Ads























, , , , , ,

« WP Theme Review: dfMarine
2007 Weblog Awards »


7 Responses to ““How To Secure WordPress””

  1. Jaypee UNITED STATES Mozilla Firefox Windows Says:
    November 15th, 2007 at 5:30 pm

    @Robberto – Yes it is very useful. You’re most welcome! :D

  2. Robberto NETHERLANDS Mozilla Firefox Mac OS Says:
    November 15th, 2007 at 5:26 pm

    Very useful, thanks!

  3. Jaypee UNITED STATES Mozilla Firefox Windows Says:
    November 7th, 2007 at 11:50 pm

    @aj – No problemo! Btw, have you read it already? ;)

  4. AJ Batac CANADA Mozilla Firefox Mac OS Says:
    November 7th, 2007 at 11:46 pm

    Thanks for this Jaypee! :smile:

  5. Jaypee UNITED STATES Mozilla Firefox Windows Says:
    November 7th, 2007 at 1:40 pm

    @charles – You’re welcome and thanks for dropping by! ;)

  6. charles PHILIPPINES Mozilla Firefox Windows Says:
    November 7th, 2007 at 1:39 pm

    Thank you for this tip. :smile: Downloaded it already. :)

**Comments posted on JaypeeOnline are moderated. I reserve the right to edit/delete comments that contain words or phrases that are defamatory, abusive, incite hatred and advertise an email address, commercial services or spammy.

Don't Be Shy. Share your thoughts!


Live Comment Preview


Trackbacks/Pingbacks

  1. Silkenhut Reaching Out Issue 16 | Silkenhut’s World says:
    November 3, 2007 at 9:31 pm

    [...] How to secure wordpress – Jaypee finds a white paper on wordpress security and gives us a brief overview / summary on what to expect on that white paper. ^_^ [...]