Disable the theme / plugin editor

Disable the theme / plugin editor

Anyone with access to your Wordpress admin can edit your theme or plugin files and insert their own malicious code, replace a template file into a PHP uploader and upload more files or change file permissions without your knowledge.

Protection Requirement:

SPECIAL

>

Skills/Resources:

>Edit system files
>Text editor

Securing wp-config.php

Securing wp-config.php

The wp-config.php file contains database access as well as authentication keys and salts that can be used in any number of potential hijacking attacks.

Protection Requirement:

OPTIONAL

Skills/Resources:

>Edit system files
>text editor

Security options for new WordPress install

Security options for new WordPress install

Most people will be wanting to increase the security on an existing Wordpress installation but for those that have a need to install Wordpress this guide will show you the best security settings.

Protection Requirement:

BASIC

Skills/Resources:

> Edit files
> File Manager or FTP