I'm on Wordpress. Now what? Pt. 1

I’m going to be walking you through some steps and recommendations which will make your Wordpress site secure, current and user-friendly. This will be a three part post starting with Getting Started, moving onto Design and Functionality, and finally, Converting.

These are just for starters, not the whole package, please don't hesitate to ask me if you'd like to delve a little deeper.

Enough jibber-jabber, let’s get your site secure first.


Being open-source, unfortunately Wordpress is prone to hacks and security breaches. I had a test site online only 2 weeks and I was hit by one. Being a test site to show the client a live site I overlooked security as you figure you don’t need to lock your door when you’ve gone to the store for 5 minutes.


By default WordPress allows unlimited login attempts either through the login page or by sending special cookies. This allows passwords (or hashes) to be brute-force cracked with relative ease.

Limit Login Attempts blocks an Internet address from making further attempts after a specified limit on retries is reached, making a brute-force attack difficult or impossible.


WordPress Website Security Protection. Website security protection against: XSS, RFI, CRLF, CSRF, Base64, Code Injection and SQL Injection hacking…



We’ve all seen those weird advertisements in our comment dashboard. Many of you have activated Akismet, it’s built-in and it’s only a matter of activating it in your plugins. Get your key here if you have yet to use it.



WP Engine

All you need to do is look at their customer list. Whether you are setting up a personal blog or an intricate and complex multi-site for your brand, WP Engine makes managed WordPress hosting a snap. No matter what your requirements.