The Way To Make Wordpress Safe Without Any PluginsPreserve headers/logos underneath 125 pixels high. It takes up beneficial viewing space, primarily for laptop users, that is ideal left for the good stuff to appear"above the fold" Take a cue from the massive businesses, straightforward logos completed nicely say it all. This is our #1 pet peeve - screaming logos and headers!
repair hacked wordpress site will also tell you that there is no htaccess from the wp-admin/ directory. You may put a.htaccess file if you wish, and you can use it to control access from IP address to the directory or address range. Details of how to do this are available on the internet.
Don't depend on your Web host - Many men and women rely on their web host to"do all that technical stuff for me", not realizing that page sometimesthey do not! Far better to have the responsibility lie rather than out of your control.
1 step you can take is to delete the default administrator account. This is important because if you do Visit Your URL not do it, a user name that they could try to crack is already known by malicious user.
Along with adding a secret key to your wp-config.php file, also consider altering your user password into something that is strong and unique. A good tip is to avoid common phrases, use letters, and include amounts, although wordPress will tell you the strength of your password. It's also a good idea to change your password regularly - say once every six months.
Don't use wp_. Web hosting providers are removing that default but if yours does not, adjust wp_ to anything else but that.