What to Do After WordPress Installation

by 6 years ago

Worpress Installation

After WordPress installation you should do the following tweaks to improve your WordPress security and change default setting to your own custom settings.

Most of the times beginners asked this question “What to do after WordPress installation”. Here I am going to answer it. These are the following changes you should do to make your WordPress more secure and user friendly.

What after WordPress Installation

 

0. Change the Default Image Upload Folder

By default the images are stored in same directory that is wp-content/uploads. You can change it to any custom folder to sub-domain.

Uploading images in separate folder or sub-domain makes short URL for your images and also it become easy to manage your directories.

1. Remove version details from blog.

By default WordPress Installation includes its version number and name in your WordPress blog page.

<meta name=”generator” content=”WordPress 3.4.1″ />

Attacks always starts form finding your WordPress software version to know the strength of your security level. This WordPress information acts like a goldmine for them. Once they find information about your blog it becomes easy for them to detect which hacking tools they may use.

To remove this information from your blog’s header, add this following PHP code to your functions.php file. That is in Dashboard -> Appearance -> editor ->functions.php.
<?php
remove_action(‘wp_head’, ‘wp_generator’);
function blank_version() {
return ”;
}
add_filter(‘the_generator’,’blank_version’);
?>

2. Prevent your WordPress directories from user to  browse

You might have seen some times when you go to some websites for particular file it takes you to its file directory. It is really a bad thing for the website owner. Your directory becomes open to the world.

To prevent it you should add following code to .htaccess file.

Options All -Indexes

Read in detail: 5 Essential Tips to Improve Your WordPress Security.

3. Turn off Post Revisions in WordPress 2.6

In WordPress 2.6 you have an option to do the document revisions where you have all previous versions of documents. Let me make it easy to understand, When you do any changes to your post, each time a new version of your post is created in your server directory.

It is good for only those blogs which has multiple users. 90% of bloggers don’t need it. Each revision increase size of your wp-posts table. To turn it off you need to just add following code to your wp-config.php file.

define(‘WP_POST_REVISIONS’, false);

Also, you can turn it on whenever you feel it’s use. To turn it on just remove the above code from your wp-config.php file.

4. Disable HTML for your WordPress Comments

WordPress comment box acts like a HTML editor. People uses your comment box to live their backlinks or to highlight some contents by using <b> or <a> HTML tags. If wish to turn off  HTML comment you can disable it by adding following code to your functions.php file.

add_filter( ‘pre_comment_content’, ‘wp_specialchars’ );

5. Windows Live Writer Templates & WordPress

Windows Live Writer is used by the bloggers for content writing, it facilitate authors to see live previews of their post.

If you are not blogging with it you can disable it by adding following codes to your functions.php file.

<?php remove_action(‘wp_head’, ‘wlwmanifest_link’); ?>

Windows Live Writer used WLW-Manifest function  to download the styles / themes used in your WordPress blog.

Read Also : How to Secure WordPress Login.

Those are the basic but essential changes that you should do after your WordPress Installation to manage your blog properly and to improve your blog security.

If you want to share any tips regarding WordPress Security feel free to leave a comment.

Comments

Load More