Working Ninja
2014-10-16T17:51:07

Add the following to your .htaccess file to block posts to wp-comment-posts.php and wp-login.php that have do not have an http referrer or user agent. This will also redirect the user back to their IP address.

<IfModule mod_rewrite.c> 
    RewriteEngine On 
    RewriteCond %{REQUEST_METHOD} POST 
    RewriteCond %{REQUEST_URI} .(wp-comments-post|wp-login)\.php* 
    RewriteCond %{HTTP_REFERER} !.*domain.name.* [OR] ...

READ MORE

2014-10-28T17:53:13

There’s a lot you can do to make your WordPress install more secure–some easier than others! Here are a few of the easy ones. These can be applied to a new or existing WordPress install.

wp-config.php

Salt passwords:
https://api.wordpress.org/secret-key/1.1/salt/

Salting the passwords on an existing site will force everyone to ...

READ MORE