WordPress ile Hazırlanmış Sitelerin Güvenliği

WordPress Security: The Ultimate Guide

http://codex.wordpress.org/Hardening_WordPress

14 WordPress Security Tips in One Easy Plugin

http://www.google.com/webmasters/hacked/

https://sitecheck.sucuri.net/

 


1.  htaccess 

<files wp-config.php>
order allow,deny
deny from all
</files>
<Files .htaccess>
order allow,deny
deny from all
</Files>




<IfModule mod_rewrite.c>
RewriteEngine On
RewriteBase /
RewriteRule ^wp-admin/includes/ – [F,L]
RewriteRule !^wp-includes/ – [S=3]
RewriteRule ^wp-includes/[^/]+\.php$ – [F,L]
RewriteRule ^wp-includes/js/tinymce/langs/.+\.php – [F,L]
RewriteRule ^wp-includes/theme-compat/ – [F,L]
</IfModule>

Options All -Indexes
——————–
2. wp-config
define( ‘DISALLOW_FILE_EDIT’, true );
define( ‘DISALLOW_FILE_MODS’, true );
error_reporting(0);
@ini_set(‘display_errors’, 0);
3. functions.php
remove_action('wp_head', 'wp_generator');


Bir cevap yazın

E-posta hesabınız yayımlanmayacak. Gerekli alanlar * ile işaretlenmişlerdir