There are several ways to make a WordPress site more secure. One of the most important is to use secure passwords, especially ones that can’t be readily guessed using a script. A second important consideration is to always keep WordPress itself, and well as any plugins and themes updated. A third is to not install any plugins that the website does not need. A fourth is to install a SSL certificate and enable the appropriate plugins to fully utilize it.
Another security consideration is the role of various users on the site. To prevent unwanted access to the site, it is a good idea to limit the number of users, and to only give users the permissions they actually need to perform their roles, and no more. For this site, I will be the sole content creator and site administrator, so the only user types I will be enabling are the site administrator and subscriber roles.
A reflection on the importance of all users being able to access the website
Some use cases for not storing every piece of data in WordPress
Some helpful tips on sourcing and using plugins, and why I chose WPCode
This website uses cookies.