Title: more secure install script please? Last modified: August 21, 2016 --- # more secure install script please? * [re8](https://wordpress.org/support/users/re8/) * (@re8) * [13 years ago](https://wordpress.org/support/topic/more-secure-install-script-please/) * WordPress experts; are there any install scripts I can run that will help set WP up more securely please? Eg; easily change the ‘default’ admin folders, database names, etc, with no drama or buggy drawbacks as I add WP plugs & themes later on? * I know one can change the default ‘admin’ username, add 2-tier logins, etc, but these were the recommendations by someone who provides hardened WP hosting. * TIA! Viewing 1 replies (of 1 total) * [catacaustic](https://wordpress.org/support/users/catacaustic/) * (@catacaustic) * [13 years ago](https://wordpress.org/support/topic/more-secure-install-script-please/#post-3817509) * While those suggestions are brougth out from time to time, they don’t really do a whole lot as far as security is concerned. Changing the default admin folder only works if hackers are looking **only** for that folder and nothing else, and most that I’ve seen will try a pretty huge range of URL’s to find whatever they can. Same with the default database prefix. All you need to do is change that in your `wp-config.php` file before you install, but if osmeone can get access to your database then they can scan all of the tables in it so the actual table name doesn’t make that much difference at all. * The real methods of securing wordpress are almost all to do with server settings. Things like sandboxed accounts, correct file permissions and secure SSH logins and SFTP will make a lot more difference then renaming a folder or two on your site. On top of that you should always double (and sometimes triple) check any theme or plugin that you haven’t written yourself to see if you can find any vunerabilities in them. Most of the ones on this site are vetted pretty well, but there’s still no guarantee that they’ll be perfect. * So what this means is… Get the hosting comapny to have their server set up correctly, use a non-‘admin’ username for your administrator, use as few plugins as you need and keep an eye on your sites log files to check the activity on your site. That’s how you keep your site safe. Viewing 1 replies (of 1 total) The topic ‘more secure install script please?’ is closed to new replies. ## Tags * [customized](https://wordpress.org/support/topic-tag/customized/) * [installation](https://wordpress.org/support/topic-tag/installation/) * In: [Everything else WordPress](https://wordpress.org/support/forum/miscellaneous/) * 1 reply * 2 participants * Last reply from: [catacaustic](https://wordpress.org/support/users/catacaustic/) * Last activity: [13 years ago](https://wordpress.org/support/topic/more-secure-install-script-please/#post-3817509) * Status: not resolved ## Topics ### Topics with no replies ### Non-support topics ### Resolved topics ### Unresolved topics ### All topics