Yesterday, I hardened my security. File ownership and permissions tweaked in all my WordPress installs. Prior to this, my site might have been hackable. Not that it was hacked, because I’ve also installed some security plug-ins for WordPress that confirm that all WordPress files are identical to the original download.
This plug-in also firewalls known hacker attempts somehow. I don’t quite get how it does since a hacker need only change their IP through a VPN. I wonder if the hacks are coming from bots so the bot builder doesn’t bother hiding the IP behind a VPN. But it has been a fascinating insight in to what goes on as soon as a domain is registered and a website is active on it. The hackers descend.