Wordpress Security Guide

ventics.com| Publicado el: 26/04/2011

Server Configuration

1. Disallow bots from scanning the important Wordpress directories

By using the Robots.txt ?le it is always a good idea to block the wp-content, wp-admin, etc... directories. This can be done by adding the following line:

Disallow: /wp-*

2. Turn off directory browsing.

Many servers by default allow you to browse the listing of ?les with in a given directory. You may have come across this before when a page is missing or there is no index to a directory. The server outputs a listing of the ?les in the directory instead. This is particularly important in…

Leer artículo completo →