If you have a WordPress blog or website, WordPress security must be an issue for you. I'm sure you must have heard about hackers attacking blogs and websites of other people. The damage done by them can be enormous, especially when the particular blog was high page ranked, displaying high in search engines and profitable. It is not the only type of websites attacked by hackers. The reasoning behind their acts can't be explained as logical. They will destroy it for fun. I know stories of people who one day, instead of their website saw a short note informing them that their website has been blocked by Google due to the thread it carries to other internet users. It was a result of hacker attack, who made changes to the website.
Backing up your site also helps in securing from rename your login url to secure your wordpress website hackers. You have to keep a copy of your files hide away in system you can be find more certain of your database. This makes you a protected files that serves you in times of down is the system. Hackers are less likely to steal from a bonded back up system.
Safeguard your login credentials - Don't Source keep your login credentials where a hacker might find them. Store them off, as well as offline. Roboform is good for protecting them, also. Food for thought!
Move your wp-config.php file up one directory from the WordPress root. WordPress will search for it if it cannot be found in the root directory. Also, nobody will have the ability to read the document unless they have FTP or SSH access.
You may extend the plugin features with premium plugins like: Amazon S3 plugin, Members only plugin, DropShop etc.. So I think this plugin is a fantastic option and you can use it.
There is another problem you have with WordPress. People always know they also could just visit with your login form and where they can login and try out a different combination of passwords and user accounts. In order to stop this from happening you want to set up Login Lockdown. It is a plugin that lets discover here users try to login with a wrong password three times. After that the IP address will be banned from the server for a certain amount of time.