Wordpress Safety: You Can Learn It QuicklyFirst thing that platform should I choose? I believe the most easy way to construct a webshop is to use a CMS system. Because the CMS systems are systems that are well-tested and popular. And these systems are easy to use and easy to customize. I suggest that you choose WordPress. Why? I'm a software programmer, so I will use any CMS system easily, but my customers can't use the majority of the CMS systems. My experience is my customers can learn WordPress in a time and it can be used by them without my aid. And you'll see at the end of this article WordPress is very user friendly.
The rename your login url to secure your wordpress website Codex has an outline of what permissions are okay. File and directory permissions can be changed either through an FTP client or within the page from the hosting company.
No software system is immune to vulnerabilities and bugs. Security holes will be found and bad men will do their best to exploit them. Keeping your software up-to-date is a good way to stave off attacks, once security holes are found, because their products will be fixed by reliable software vendors.
Yes, you want to do regular backups of your site. I recommend at least a weekly database backup and a monthly "full" backup. More, if possible. Definitely if you make changes and regular additions to your website. If you have a community of people which are in there all the time, or make changes multiple times a day, a daily backup should be a minimum.
As I (our untrue Joe the Hacker) know, people have far too many usernames and passwords to remember. You've got Twitter, Facebook, your online banking, LinkedIn, two blog logins, FTP, internet hosting, etc. accounts which all come with logins and passwords you will need to read the article remember.
However, I recommend that you install the Login LockDown plugin as opposed to any.htaccess controls. That will stops login requests from being permitted from a certain IP-ADDRESS for an hour or so after three failed login attempts. It is still possible to access your admin cell while and yet you still have good protection against hackers if you accomplish this.