Hi, i am a newbie in the field of hosting and website administration. I am now building a new wordpress site. I want to make sure that my blog is secure. so what all things i have to do to Protect my blog? These are the things i have read across the web regarding security of wp. I wasn't able to find robots.txt and .htaccess files. Please help me how to go further. I read this from this site, http://www.noupe.com/how-tos/wordpress-security-tips-and-hacks.html i haven't understood all those. if possible can anyone suggest if those are necessary. thanks
You should create robots.txt http://www.robotstxt.org/ and .htaccess http://en.wikipedia.org/wiki/Htaccess (if you use Apache) files yourself. The main rule of WordPress security is always upgrade to the latest version. The current version is 2.6.2. It is pretty secure at the moment. Also, install third-party themes and plugins from trusted sources only. Some third party components may contain backdoors, exploitable security holes, and other things that may compromise your blog. As with any other site: use strong passwords and not very obvious username ("admin" is not a good choice). Change passwords regularly. Before you setup the site, check your own computer for viruses and spyware. If there is a trojan on your computer, all your passwords may be immediately available to hackers. Hope, you will not have any security issues with your new site.
2 best plugins for assessing wp securities are: WP Security Scan and WordPress Exploit Scanner Always use them periodically and after installing any addon/themes....