Does moving wp-content, plugins and uploads directories improve security?

  • I’m looking into best practices for securing a wordpress installation.

    This topic is discussed widely and there are a number of aspects to making an installation (more) secure. One apsect I’ve seen is moving and renaming the standard installation file structure. For example I can easily transform

    site-root
    –>wordpress
    —->wp-admin
    —->wp-content
    ——>plugins
    ——>themes
    ——>uploads
    —->wp-includes

    to ….

    site-root
    –>my_core
    —->wp-admin
    —->wp-includes
    –>my_content
    —->themes
    –>my_plugins
    –>my_uploads

    by configring the wp-config.php file and through admin.

    I could even replace the ‘my_’ directory names above with completely random strings so they couldn’t be guessed.

    My point is that does this actually make the wordpress installation more secure against attack?

    I can’t answer this question myself as I don’t fully understand the various ways wordpress sites are attacked by hackers. I’m not saying would this prevent all types of attack, just can it prevent a certain type of attack or help slow down a hacker to the extent they would give up.

    Any comments welcome! Thanks

Viewing 1 replies (of 1 total)
  • Moderator Ipstenu (Mika Epstein)

    (@ipstenu)

    ?????? Advisor and Activist

    Does moving wp-content, plugins and uploads directories improve security?

    No.

    Why? Because if I view the source of your code, I can still see where they are, can’t I?

Viewing 1 replies (of 1 total)
  • The topic ‘Does moving wp-content, plugins and uploads directories improve security?’ is closed to new replies.