There are probably very few webmasters who have not built up at least one site on the basis of the Open Source CMS WordPress. The advantages of this are numerous. Most commonly it is well used, because you really can build a complete website including design within minutes without having the knowledge of graphics or programming. And the countless plugins that can extend the installation, were responsible for enthusiasm. But where there is sun, there is also shadow. The WordPress installations safety, for example, is always a big issue.
Popular CMS have mostly a disadvantage: they are gladly used by hackers who gain access to files and use them for their purposes. This is not only annoying, but can have many negative effects. Particularly “popular” for hackers is, the distribution of malware via WordPress – and that is depleasing to everyone. It is therefore important, not only to set up a WordPress installation, but to also protect it as well.
It is no secret that mainly the up-to-dateness of the WordPress installation and the used plugins contribute extremely to safety. The cancellation of unused plugins is now a standard. But beyond that too many website owners, unfortunately, do not worry about how they can protect their WordPress installation. It is not as complicated as one would think and usually saves a lot more time as it represents an effort. Quite simply, plugins can make the most of the work. But you can also act by yourself.
With the check of wprecon you can, for example, once making a “stocktaking” and see how safe the WordPress installation is so far. There is also a good advice on how to correct any safety deficiencies and thus ensures that you are largely protected against attacks. Most of these changes that are proposed, take only a few minutes of work – so there is no real excuse not to make it.
Those who want to delve further into the matter, will find more tips on WordPress security and also links that show how such an attack on a WordPress installation can be constructed. It is, however, quite technically – so it’s not interesting for everyone. What is most important in the end is that you follow the advice. A 100% safety course it can never be, but with the implementation of the proposals to ensure at least that hackers do not have it is quite easy.
