WordPress recommends certain best practices to secure your websites. MalCare allows users to implement those practises through its Site Hardening feature. There are three types of Site Hardening tools available: Essentials, Advance and Paranoid. Here’s how you can implement those:


Step 1: Log into the BlogVault account and select a website.



Step 2: On the next page, click on the Security And Firewall section. It takes you to the security page.  




In the Security Updates section, select Apply Hardening mentioned on the left hand side of the page.


  • Under the option Essentials, you can:
    • Block PHP Execution in Untrusted Folders

    • Disable File Editors



  • Under the option Advanced, you can:
    • Block Plugin/Theme Installation



  • Under the option Paranoid, you can:
    • Change Security Keys 
    • Reset All Passwords



Step 3: After you select any of these, the next step is to Enter FTP Credentials of your web host. Remember to select FTP in the FTP Type. 



Step 4: To find out your FTP credentials, see the questions and answers in the right side of the screen. 



Step 5: Following that, you will need to Select Folder with WP Installation. And then select Apply Fix.



  • And that’s it. The feature that you have selected will be applied to harden your site.