Finally, installing the fix wordpress malware scanner Scan plugin alert you that you might have missed, and will check all this for you. It will also inform you that a user named"admin" exists. Of course, that is the user name. If you desire, you can follow a link and find instructions for changing that title. Personally, I think that a strong password is good enough protection, and there have been no attacks on the numerous blogs that I run because I followed these steps.
This is great news as it means that there is a strong community of users and developers who can further improve the platform. However, whenever there's a group of people trying to achieve something, there'll always be people who will try to take them down.
Should you ever want to migrate your site elsewhere, like a new web host, you'd be able to pull this off without a hitch, and also without needing to disturb your old site until the new one was in place and ready to roll.
As I (our fictitious Joe the Hacker) understand, people have way too many usernames and passwords to why not look here remember. You've got Twitter, Facebook, your online banking, LinkedIn, two site logins, FTP, web hosting, etc. accounts which all include logins and passwords you need to remember.
However, I advise that you set up the Login LockDown plugin instead of any.htaccess controls. From being permitted after three unsuccessful login attempts from a specific IP address for one hour login requests will stop. You may still access your panel while away from your office, and yet you have great protection against hackers if you do that.