website conversion to wordpress
Published On: 28 November 2015

WordPress is the most widely used CMS system in the world. WordPress is a flexible system and is also free to use.
Wordpress is basically secure. It then depends on whether certain things are properly regulated or set up.
100% security is unfortunately not possible here either. But it actually works the same as with ordinary burglars. If neighbours leave the key in the door, they are generally more likely to get a visit from uninvited guests.

Here are some key things that should definitely be done for a WordPress website.

User name & password

Under no circumstances use "admin" as the username. This is the default name of the administrator account in WordPress and the first name tried in a brute-force password attack. In fact, such an attack involves trying different passwords until the correct password is found.
From the username, we automatically come to the second part; the password. This should have at least 8 but preferably 16 characters. Preferably totally random, for example a code like 5GDkjs8HMcZlm3N3. When remembering/saving passwords, always use a programme such as Keepass. This ensures that you only need to remember one password.
In the sitemap, author pages should be off if the same login name is used to communicate in comments, blogs etc.

WordPress installation

The important things that need to be in place here are the database name, username, password and table prefix.
For all four, use a unique and non-guessable combination.
You enter these in the wp-config.php before installation or you can edit them here.

Templates & plugins

All templates and plugins that we install are purchased from trusted parties. However, you can often find websites on the internet that offer these paid templates and plugins for free. They often have additional or modified code that allows access by means of a backdoor or allows the website to be abused in other ways. Think of sending spam or copied results with advertising in Google.

Update regularly

It is also important to regularly update all templates, plugins and WordPress itself. Some updates (especially for templates and plugins) are more important than others.
Often an update just consists of a new language or feature or fixing a bug, but it can also be a fix/fix for a security vulnerability.

Hosting

The WordPress website can be as secure as it is, but if the hosting of the website is not handled properly and seriously, then getting in is an easy trick.
For this reason, we only provide security for websites on servers we manage security for ourselves.
We host your WordPress website in collaboration with MooijWerkt! and TransIP. Both are companies with years of experience in reliable hosting and security.
Also ensure that a daily backup is made. This ensures that you can restore the website to its previous state should your website be hacked.

Security plugin

wordfence logo

Wordfence has a free and a paid premium version

An important tool for security is a good security plugin. We offer a premium licence of one of the best security plugins with our security packages as standard.
Among other things, this controls ip blocking and website scanning.
With a security package, we monitor the website and take action if necessary. You have nothing else to worry about when it comes to security.

Summary

Securing a WordPress website is a serious job. The above is only part of what is possible and what is done by us. Milcraft can take security completely out of your hands.
You pay a fixed low price per month and we take full care of the security of your website.
Also take a look at our maintenance- and hostingpackages.

Would you rather upgrade your security yourself anyway? Then keep in mind that for a number of things (such as changing the database data in wp-config,php), it matters whether you do this on a new installation or running website. This can cause major problems.
Also, always backup your website before making any changes.

If you have any questions about the above or would like more information about our security packages? If so, please contact us without obligation via the contact form or info@milcraft.nl.