Year and a half taught us that WordPress security should not be taken lightly by any means. Between 15% and 20% of the planet's high traffic websites are powered by WordPress. The fact that it is an Open Source platform and everyone has access to its Source Code makes it a tempting prey for hackers.
secure your wordpress site will even tell you that there's not any htaccess from the directory. You may put a.htaccess file if you desire, and you can use it to control access to the directory from IP address or address range. Details of how to do that are available on the net.
Well, we're actually talking about WordPress but what's the feeling of doing upgrades and security checks if your computer is at risk of hackers. There are files which can encrypt key loggers in your PC. Regardless of what you do, they can easily access everything that you type on your computer when this occurs. You can find a lot of good antivirus programs . Just look for a antivirus program or ask experts.
Move your wp-config.php file up one directory from the WordPress root. WordPress will look for it if it can't be found in the root directory. Also, nobody will have the ability to read the document unless they have FTP or SSH access.
Install click for more the WordPress Firewall Plugin. Prevent and this plugin investigates web requests with WordPress-specific heuristics that are easy to recognize attacks that are most obvious.
I prefer using a WordPress plugin to get the job done. Just make sure is in a position to do select backups, has restore and can clone. Be sure that it is frequently updated to keep pace with all new versions of WordPress. There is not any use in not working, and backing up your data to a plugin that's out of date.