Securing Word Press

By on

To set up a functional yet secure Word Press blog you’ll want to chmod all of your directory permissions to 755 and file permissions to 644 at most. If you can find a configuration that works with lesser permissions, please let me know. The only exceptions are for files that need to be written to by the webserver (generally via the file editor), in which case, these files should be set to 666. The files are listed below:

If it’s not necessary to edit a file, don’t give it 666, stick with 644. Images are the perfect example. It’s not like you can edit them from the file editor anyway.

I found the following Word Press support documents and threads especially helpful in determining how to set up a secure Word Press blog: