random musings from a twisted mind
securing wordpress
Notes on how to secure wordpress 2.7.1 (this is all pretty well documented, but I ran into a couple of dohs!)
o Remove the default admin user
o Create a user you want to login as
o Login as this new user
o Remove the ‘admin’ user – assign all posts to new user
o Force all admin features via HTTPS, edit wp-config.php
define('FORCE_SSL_ADMIN', true);
o Force logins via SSL, edit wp-config.php
define('FORCE_SSL_LOGIN', true);
Things I ran into was a cut and paste error inserting those annoying smart quotes, but once I did that everything’s golden.
| Print article | This entry was posted by mike on March 8, 2009 at 10h29, and is filed under computers. Follow any responses to this post through RSS 2.0. You can leave a response or trackback from your own site. |