| You might think that installing a few WordPress | | | | installed to "beef up" your security, your WordPress |
| security plugins does the entire job of protecting your | | | | site is still at risk. You can, for example, protect your |
| site. Security plugins can help make your site safer (i.e. | | | | site from brute force password attacks for your WP |
| database backups, login lockouts). Most people don't | | | | admin area. However, this does not protect your |
| realize that there's much more involved in order to | | | | database nor does it prevent unwanted visitors from |
| protect a WordPress blog. | | | | entering your server via FTP. Remember, when it |
| WordPress is an application powered by PHP and | | | | comes to securing your WordPress site, you have to |
| MySQL. Many high-traffic websites use MySQL and | | | | make sure you cover all angles. |
| PHP for large-volume data storage. If you are a | | | | Every time a user installs WordPress, it will always |
| WordPress user, anytime you create a post or page, | | | | install the default folders and directories. Since many |
| the information gets stored on your database. Even | | | | people don't bother configuring the back-end, they don't |
| though there are WordPress plugins out there that can | | | | realize that they end up leaving the doors wide open, |
| help backup your database in case of disaster, you | | | | making them vulnerable for a malicious attack. |
| always want to take all necessary precautions to | | | | With that said, it's important to make sure that you |
| prevent your site from being hacked. | | | | secure all areas of your website, including your server, |
| WordPress developers release a security update | | | | database, logins, comments, files/directories, and |
| when a known vulnerability needs to be addressed, but | | | | wp-admin. If you're looking for help in securing your |
| it's impossible to seal every loophole. In the world of | | | | blog or website or would like a WordPress security |
| cyber crime, someone will always find a way around it | | | | audit, let us know. Just remember, installing a few |
| -- it's inevitable. Even with the addition of plugins being | | | | security plugins is only half the battle. |