pic by petervanallen
phew, i just updated my site, i read an article from MyTestBox “Is your WordPress blog hacked? Why not upgrade to the latest version?” and realize how fragile my site is. I think anyone who have wordpress blog should know this.
Here are a couple of things that i didn’t know it would be key point factor in securing my site.
- The wordpress default plugin directory is not secured, so anyone can see what plugin i’ve installed, in case u want to see it the default directory is in here “www.yoursite.com/wp-content/plugins”.
- Change my admin password regularly, lucky i’ve just download a portable password manager KeePass Password Safe Portable couple of days ago. There’s a built in password generator in it (dont forget to click save after u’ve save all of your password).
There’s also a lot of recommended plugin in the site. And i thought updating my site with the latest wordpress is enough.
u may also like this :