WordPress Salts, Unique Keys & Database Prefix - WP Hack Prevention & Security | WP Learning Lab

🔥Name Your Own Price🔥 for the 11-Point WP Security Checklist Smart PDF: https://wplearninglab.com/go/wpsecurity027 In this tutorial I show you how to add WordPress unique keys and salts to your WP-Config.php file and how to change the WordPress database prefix. Both of these are important for WordPress data security and WordPress database security. To start off you'll need to login into the File Manager of your hosting account or log into your website root via FTP. Then open the WP-Config.php file for editing. Once open scroll down about half way and you will see a section called Authentication Unique Keys and Salts. These unique keys and salts are used by WordPress to better encrypt user passwords and other sensitive data. In the paragraph just below the Authentication Unique Keys and Salts title you will see a URL: https://api.wordpress.org/secret-key/1.1/salt/ Go to that URL and refresh the page a few times to get your unique data. Copy and paste that data into your WP-Config.php and overwrite the default values: define('AUTH_KEY', 'put your unique phrase here'); define('SECURE_AUTH_KEY', 'put your unique phrase here'); define('LOGGED_IN_KEY', 'put your unique phrase here'); define('NONCE_KEY', 'put your unique phrase here'); define('AUTH_SALT', 'put your unique phrase here'); define('SECURE_AUTH_SALT', 'put your unique phrase here'); define('LOGGED_IN_SALT', 'put your unique phrase here'); define('NONCE_SALT', 'put your unique phrase here'); That's it's for adding the WordPress salt keys. Next is the changing the WordPress database prefix which you can do right below the salt keys in the section titled: WordPress Database Table prefix. The method outlined below only works during the installation process. If you already have your site running then you'll need to use a free plugin called Change DB Prefix to make the change. If you are just now installing WordPress follow the instructions below. The database prefix will go before all WordPress tables in the database. The default MySQL database prefix "wp_" and all the standard WordPress table names are known by hackers and dataminers. Knowing this information they will have an easier time getting into your database. For good WordPress hack prevention change the "wp_" prefix to random alphanumeric characters (I usually end the prefix with an underscore "_" to keep things clean). That way, even if a hacker can access your WordPress database remotely they probably won't be able to guess your database prefix, which means your data is safer. And that's all there is to these two important WordPress security tweaks. I hope this information helps you! If you have any questions leave a comment below or ping me @WPLearningLab on Twitter. -------------- If you want more excellent WordPress information check out our website where we post WordPress tutorials daily. http://wplearninglab.com/ Connect with us: WP Learning Lab Channel: http://www.youtube.com/subscription_center?add_user=wplearninglab Facebook: https://www.facebook.com/wplearninglab Twitter: https://twitter.com/WPLearningLab Google Plus: http://google.com/+Wplearninglab Pinterest: http://www.pinterest.com/wplearninglab/