Keep headers/logos under 125 pixels high. It takes up valuable viewing space, especially for laptop users, that is best left for the good stuff to appear"above the fold." Take a cue from the big companies, simple logos done well say it all. This is our #1 pet peeve - screaming logos and headers!
Backing up your blog regularly assists in procuring from fix wordpress malware hackers. You have to keep a copy of your documents hide away in system so that you can be confident of your database. This makes you a protected files that serves you in times of down is the machine. Hackers are not as likely to slip from a bonded back up system.
Don't depend on your Web host - Many men and women rely on their web host to"do all that technical stuff for me", not realizing that sometimes, they don't! Far better to have the responsibility lie instead of out.
Recently, the blog of Reuters was murdered by an unknown hacker and published a news article. Since Reuters is a popular news site, their reputation is already destroyed due to what the hacker did. In the event you do not pay attention on the security of your WordPress 20, Something similar may happen to you.
Whitelists pathological-looking phrases and black based on which field they appear inside. (unknown/numeric parameters vs. known post bodies, comment bodies, etc.).
Those are three very simple things you can do to maintain WordPress secure without plugins. Put a blank Index.html file in your folders, run your web host webpage security scan and backup your entire account.