• Home
  • 071 – 8 Ways to Secure Your WordPress Site

Podcast Episode

071 – 8 Ways to Secure Your WordPress Site

Apr 11 2012  |  24:40 |   Dustin Hartzler |   Podcast

You can now hear Your Website Engineer Podcast’s on Stitcher Radio! Always have access to the latest episode on the go.

Announcements

WordPress News

WordPress 3.4 Beta 1 is now available for download. If you like playing with the latest builds, be sure to download it and try it out.

WordPress Stats

WordPress 3.3 has been downloaded over 12 million times.
16% of all websites run on WordPress in 2012.
Indonesians are the most prolific WordPress users on the planet.
WordPress holds 53.8% of the market share for Content Management Systems.
WordPress has been translated and localized into at least 73 different languages.
There are 19,017 plugins freely available in the WordPress Plugin Directory.
Over 20,000 people make their living with WordPress.
Speaking of which, WordPress skills are in higher demand than ever.

Read Full Article

Listener Feedback

Speed Up Performance of Shared Hosting Account

I received some helpful feedback on a couple of mistakes I made on previous episodes and Chris wrote in to clear some of the things up. He shares a way in a blog post on how to improve the performance of your site on a shared hosting account. Read Full Article.

8 Ways to Secure Your WordPress Site

  1. Remove the admin user
  2. Use a strong password
  3. Always update WordPress ASAP
  4. Remove WordPress version number
  5. Change file permissions
  6. Backup your database
  7. Hide your WordPress plugins
  8. Have a plan in place to restore from backup

Code to remove WordPress Version Number:

remove_action(‘wp_head’, ‘wp_generator’);
    • Bryan_Knowlton Reply

      Great podcast, found you from podcastanswerman very nice!!! I really want to ask a question, but for the life of me I can’t find out how to submit one here. I will keep looking. Thanks!

      Apr 11, 2012
      • Bryan_Knowlton Reply

        Ooops, found it on your Contact Form. Duh
         
        I thought I checked all of your pages and didn’t see it on your contact form.  Sorry!
         
        I really am not a novice! Lol

        Apr 11, 2012
        • dhartzler10 Reply

           @Bryan_Knowlton Glad you found it 🙂

          Apr 12, 2012
    • thepmpodcast Reply

      In the sea of podcasts, yours is a beacon of light helping those of us with WordPress sites and guiding us through!! God bless you!! Love the show!!

      Apr 13, 2012
      • dhartzler10 Reply

         @thepmpodcast Thanks! Glad you find the show helpful 🙂  If you ever have a specific question, please let me know!

        Apr 14, 2012
    • stefangr Reply

      This podcast came just in just after one of the  servers got hacked that  a customers site is hosted on.  All the index.php files were replaced and the users removed from the database.  I am now going through each site  i have done adding these security ideas as it was a pain to get it back.  Great show again Dustin!

      Apr 17, 2012
      • dhartzler10 Reply

         @stefangr Crazy how this podcast was released right after you got hacked.  It’s always worth a little extra time to set up a secure site then to fix it when it gets hacked. In my experience, I’ve never been hacked on a day that I have nothing going on. It’s usually the day that I am completely booked and don’t have time to mess with my (or a customer’s) site.

        Apr 17, 2012
    • ospryjustin Reply

      I was searching online and found this code

      function wpbeginner_remove_version() {
      return ”;
      }
      add_filter(‘the_generator’, ‘wpbeginner_remove_version’);

      that seems to be an updated version of what you have above. How can I tell if the code has successfully worked?

      May 8, 2015

Leave a Reply