Chapter 7. Galvanizing WordPress
Following on from Chapter 5 and Chapter 6, the WordPress platform, in itself, is fundamentally secure but we can't quite call it quits. Let's carry on by considering some lesser tips, some broader tips, and some darned highly advisable tips.
The server aside, by the end of Galvanizing WordPress, the platform will be encased in steel and you'll know how to keep it so. Here are the most vital tasks to tackle now:
Consider a security-assistive local web development solution
Know the disparity between obscurity and real-deal security
Use obscurity practices to hide WordPress more (or entirely)
Lift
wp-config.phpabove the more vulnerable public web rootExtend
htaccessdefense against spam, scrapers, and hackersShort circuit malbots with some honeypot trap techniques
Set up a simple yet effective WordPress anti-malware solution
Scrutinize plugins, themes, widgets, and third party code
First though, let's pore over a commonly used installation method, Fantastico.
