Website Defender WordPress Security – Plugin

 
The WebsiteDefender WordPress Security plugin is a free and comprehensive security tool that helps you secure your WordPress installation and suggests corrective measures for: strengthening passwords, securing file permissions, security of the database, version hiding, WordPress admin protection and lots more.

Key security features:

  • Easy backup of WordPress database for disaster recovery
  • Removal of error-information on login-page
  • Addition of index.php to the wp-content, wp-content/plugins, wp-content/themes and wp-content/uploads directories to prevent directory listings
  • Removal of wp-version, except in admin-area
  • Removal of Really Simple Discovery meta tag
  • Removal of Windows Live Writer meta tag
  • Removal of core update information for non-admins
  • Removal of plugin-update information for non-admins
  • Removal of theme-update information for non-admins (only WP 2.8 and higher)
  • Hiding of wp-version in backend-dashboard for non-admins
  • Removal of version in URLs from scripts and stylesheets only on frontend
  • Reporting of security overview after WordPress blog is scanned
  • Reporting of file permissions following security checks
  • Strong password generator tool to protect from brute force attacks
  • Integrated tool to change the database prefix
  • Disabling of database error reporting (if enabled)
  • Disabling of PHP error reporting

Installation

  • Make a backup of your current installation
  • Unpack the downloaded package
  • Upload the extracted files to the /wp-content/plugins/ directory
  • Activate the plugin through the 'Plugins' menu in WordPress

If you do encounter any bugs, or have comments or suggestions, please post them on the WebsiteDefender WordPress Security plug-in forum.