######################################
# WORDPRESS SECURITY #
######################################
# Follow symbolic links
Options +FollowSymLinks
# Protect folder content
Options -Indexes
# Hide server information
ServerSignature Off
# Protect wp-config.php
<files wp-config.php>
Order allow,deny
Deny from all
</files>
# Protect .htaccess and .htpasswds
<Files ~ "^.*\.([Hh][Tt][AaPp])">
Order allow,deny
Deny from all
</Files>
# Hide authors pages
<IfModule mod_rewrite.c>
RewriteCond %{QUERY_STRING} ^author=([0-9]*)
RewriteRule .* - [F]
</IfModule>
# Protect xmlrpc.php
<Files xmlrpc.php>
Order allow,deny
Deny from all
</Files>
# Protect info files
<FilesMatch "^(readme.html|readme.txt|README.txt|README.md|changelog.txt|license.txt|LICENCE.txt|LICENCE)">
Order allow,deny
Deny from all
</FilesMatch>