Finally, secure your wordpress website will inform you that there is no htaccess within the directory. You can place a.htaccess record into this directory if you would like, and you can use it to manage usage of the wp-admin directory by Ip Address address or address range. Details of how you can do that are plentiful around the net.
It all will start with the basics. Try using complex passwords. Use special characters, numbers, letters, and spaces and combine them to create a password. You can use usernames that are not obvious.
Should you ever want to migrate your website elsewhere, such as a new web host, you'd have the ability to pull this off without a hitch, and also without having to disturb your old site until the new one was in place and ready to roll.
It's time to register for a Facebook accounts and use identity to present as your friend and this person's name. After I get it all set up, I'll be telling you posing as your friend and asking you to be friends with me on Facebook (or Twitter, or whichever societal site).
Those are three simple things you can do to maintain WordPress safe without plugins. Put a blank Index.html file in your folders, run your web host security scan and her latest blog backup your entire account.