When you manage a WordPress site, you see the worst that the internet can bring on you.

When it’s not blatant comment spam, it’s some brute forcing to try to get admin access to your WordPress.

I posted about this in my fail2ban guide with CloudFlare with a good method to block those unwanted access to your admin page.

You learn how to protect yourself only after you get burn. I tried on this blog to describe the common problems I encountered and how I resolved them.

But let’s be honest, having a guide of best practices would really help and that where Alex of BestVPN comes. He contacted me with a full guide containing a lot of good practice when starting a WordPress blog, going from which plug-in to install to secure your blog to how to create a secure password.

You can find his guide here: The blogger guide to WordPress security.