Wordpress Security - From Beginner to .htaccess

Stop Hackers & Prevent Spam. Learn how to install, secure, and backup a Wordpress website for maximum uptime.
4.8 (13 ratings)
Instead of using a simple lifetime average, Udemy calculates a
course's star rating by considering a number of different factors
such as the number of ratings, the age of ratings, and the
likelihood of fraudulent ratings.
51 students enrolled
57% off
Take This Course
  • Lectures 41
  • Length 2 hours
  • Skill Level All Levels
  • Languages English
  • Includes Lifetime access
    30 day money back guarantee!
    Available on iOS and Android
    Certificate of Completion
Wishlisted Wishlist

How taking a course works


Find online courses made by experts from around the world.


Take your courses with you and learn anywhere, anytime.


Learn and practice real-world skills and achieve your goals.

About This Course

Published 12/2015 English

Course Description

Watch the above promo video now to see real world attempted password guessing attacks on a Wordpress website, and how it was blocked.

Learn the strategies that you'll need to secure, protect and monitor your own or your client's Wordpress website.

Implement the steps taught in this course and you will avoid a stressful and usually lengthy website recovery process and potentially lost revenue that is associated with a successful website attack or accidental content loss caused by a site administrator.

Wordpress is popular platform for running a website and powers thousands of sites around the world. It's popularity has also made it a target for both human and scripted attacks. Your Wordpress website is likely under a daily barrage of attacks from brute force password guessing to endless comment spam. The promo video above showed the global nature of password guessing attacks as an example.

In a recent test Wordpress website I created as a "honeypot" the site had received two spam comments within the first 24 hours of going live on the Internet. After following the strategies and steps in this course all subsequent attacks and comment spam were successfully blocked.

As a Wordpress site owner and operator you want to focus on creating content for your visitors - that why you setup a website in the first place, right? But securing your Wordpress website can fall by the wayside for a number of reasons:

  • You're unsure where to start on securing Wordpress
  • You feel Wordpress security is complex and takes a long time to setup
  • You may be concerned that implementing security may break your site
  • You're searching for a structured, step-by-step course on Wordpress security that is easy to follow.

If you can relate to any of the above then this is the ideal course for you.

Content and Overview

Suitable for beginner and intermediate Wordpress site owners and operators, you'll learn the strategies in a step-by-step approach to secure your Wordpress website. Quizzes and recaps used throughout this course will help reinforce your learning experience.

Starting with the analogy that Wordpress security is like an onion, you will implement layers of security on your site such that each layer builds on the previous one. An attack on one layer of security should not compromise the integrity of your website.

The course will then take you through several layers of security steps including:

  • Prepare a secure Wordpress installation package
  • Perform critical post installation cleanup tasks
  • Harden Wordpress and install one of the best security plugins available today
  • Understand Wordpress user roles and the concept of Role Based Access Control (RBAC)
  • Unlock the power of the .htaccess configuration file that I have developed and tested for students of this course.
  • Master how to backup and recover your Wordpress website.

By the end of this course, you'll have valuable skills that will help you create a secure and robust Wordpress website.

You'll also receive bonus resources including downloadable .htaccess template files and printable quick reference security checklists.

Take this course now and if at any point in the next 30 days you don't believe that you can improve the security of your Wordpress website using the material in this course, then simply ask for a no quibble refund.

Just scroll to the top of this page and click on the button that says 'Take this course'. I look forward to welcoming you on the inside.

What are the requirements?

  • Basic knowledge of Wordpress and navigating the administration panel
  • This course is designed for students who run, or intend to run, a Wordpress site on a web hosting provider that supports the Apache or Litespeed web server (most do!)
  • Video lectures are based on a web hosting provider that offers cPanel management
  • Students will need to download and install some open source tools discussed in this course

What am I going to get from this course?

  • Gain the skills necessary to secure your Wordpress website
  • Understand the best time to secure a Wordpress website
  • Select the appropriate Wordpress user roles for maximum security
  • Harden Wordpress to minimise security breaches
  • Unlock the power of .htaccess files
  • Setup an effective backup and recovery solution
  • Learn ongoing Wordpress security best practices

Who is the target audience?

  • Wordpress site administrators
  • Wordpress enthusiasts and hobbyists
  • Consultants who manage their client's Wordpress sites - add massive value to your service offering!
  • Anyone who realizes they need to look at Wordpress security but are unsure where to start

What you get with this course?

Not for you? No problem.
30 day money back guarantee.

Forever yours.
Lifetime access.

Learn on the go.
Desktop, iOS and Android.

Get rewarded.
Certificate of completion.


Section 1: Course Introduction
Welcome Message
Set Best Viewing Experience
Download Your Course Software Toolkit
Section 2: Wordpress Security Overview
Why Security Is Like An Onion
When to Secure Wordpress
Section 3: Install Wordpress Securely - The Right Way
Prepare Your Web Hosting Account
Create A Secure Wordpress Install Package
Upload Your Wordpress Install Package - Securely!
Post Installation Cleanup
Section 4: Wordpress User Roles
Role Based Security
Administration vs Content Curation - Know The Difference
Wordpress User Roles Quiz
3 questions
Section 5: Hardening Wordpress - Adding More Onion!
Hardening Wordpress Introduction
Secure Administrator Login & Session Over SSL
Add Google Captcha To Wordpress Login
Install & Configure Wordfence Plugin
Disable File Editing
Section 6: Unlock The Power Of .htaccess
Section Introduction
What Is .htaccess?
Permalinks and .htaccess
Atom Text Editor .htaccess Styling
.htaccess Core Template Walkthrough
Using .htaccess To Protect The Wordpress Uploads Directory
Securely Upload .htaccess Files To Your Web Site
.htaccess Quiz
3 questions
Section 7: Backup & Recovery
Section Introduction
Why Backup Your Website?
What Files Comprise Wordpress?
Backup Plugin Overview
Backup Plugin - Install and Configure
Connecting Backups To Cloud Storage
The "Oh No" Moment - Restore Demo
Backup & Recovery Quiz
3 questions
Section 8: Wordpress Security Best Practices
Close The Backdoors - Important Tips Going Forward
Password Best Practices
Section 9: Course Conclusion
Final Thoughts
Please Can You Help Me?
Section 10: Bonus Resources Section
Wordpress Installation Reference Checklist
2 pages
Wordpress Security Best Practices
1 page
Core .htaccess File Download
wp-content/uploads .htaccess File Download

Students Who Viewed This Course Also Viewed

  • Loading
  • Loading
  • Loading

Instructor Biography

David Wyatt, IT Professional and Wordpress Enthusiast

IT professional, entrepreneur and Wordpress enthuasiast who enjoys sharing knowledge and helping others succeed.

I am an IT professional with over 15 years of experience and have worked across a range of organisations large and small in both the private and government sectors. I am a VMware Certified Professional (VCP550) in datacenter virtualisation and regularly undertake IT training and knowledge transfer sessions as part of my role. I have worked in multiple server infrastructure and security design and implementation projects.

I focus on quality of information rather than quantity allowing my students to put into practice their learnings as soon as possible. I love working with Wordpress and have built and secured Wordpress websites as a side job since version 3.x

Originally from the UK I now live and work in Brisbane, Australia.

Ready to start learning?
Take This Course