Make Safe your Wp-admin from defacer!

hI GUYS,
Yesterday i have chat with my friend (he is defacer) and he look some sample a blog that he has defaced. And i ask to him, How to make safe wp-admin (wordpress) from defacer?
and he give me question like this.
1. Make a file with name .httaccess
2. put this code and .httaccess

<Files ~ "(\.php.?|\.pl|\.cgi)$">
order deny,allow
deny from all
allow from [B]xxx[/B].
allow from [B]xxx[/B].
</Files>

Code (markup):

Change xxx. with your IP that you mostly use to access your wp-admin

3. Upload you file in to root/wp-admin/

Finish.

If you not sure with this tips, you can suggest your friend (with other IP address) to open your wp-admin.

regard

hadie

 

you may have interested for more Wordpress secure tips.

 

thanks for wallaceYeung. Your methode is very Completed. and now i really understand how to make safe my Wordpress

 

it's great if you find this post useful for you.

 

Yes, these must cover most of the security attacks.

 

thanks nice idea

 

Hemm, i have try this trick for all my blog.

 

This idea will only allow your ip address to access the wp-admin folder, if you have the same ip address or don't post from another location then its fine. However its not fine if you post from different locations. There is a plugin called login lockdown that is good.