htaccess protections

txt doc link

Also:

  • add to wp-config
    //DISABLES FILE EDITING
    define(‘DISALLOW_FILE_EDIT’, true);
  • delete these files:
    (root)/readme.html [info about site]
    (root)/wp-admin/install.php [could be executed if connection to database is cut]
  • last section is standard wordpress once permalinks have been activated