Out-of-the-box security configurations tend to not be very secure. This is usually true for all software and WordPress is no exception. Best practices suggest you take a few of these steps to harden WordPress and protect your environment against bad bots, brute force, and other automated attacks.

For example, the WordPress login page is – by default – open to the entire world and has no limit on the number of failed authentication attempts.

Continue reading How to Harden WordPress: A Basic Overview at .

Via Sucuri.net