Change the default WordPress login URL

[rifathasan]

As I said before, the default URL for the WordPress login page for any WordPress site is easy to find. Plugins like WPS Hide Login change this login page URL for you.

Disable File Editing in WordPress Dashboard
By default, WordPress allows fantuan database administrators to edit the code of their files directly using a code editor. This gives attackers the ability to easily modify your files if they gain access to your account. If a plugin hasn’t disabled this feature yet, you can do a little coding to disable it yourself. Add the code below to the end of your wp-config.php file:

// Запретить редактирование файлов
define( 'DISALLOW_FILE_EDIT', true );
Change the database file prefix
The names of the files that make up the WordPress database start with “wp_” by default. Hackers use this setting to find the database files by name and perform SQL injections. The easy solution? Change the prefix to something else, such as “wpdb_” or “wptable_”. This can be configured when installing the WordPress CMS. If your site is already running with this setup, you can rename these files. In this case, we highly recommend using a plugin to handle this process, since the database stores all your content and setting it up incorrectly will break your site. Look for the ability to change table prefixes in the features of your chosen security plugin.