Codigo para proteger nuetro wp en archivo htaccess

Bloqueamos acceso al directorio includes

<IfModule mod_rewrite.c>

RewriteEngine On

RewriteBase /

RewriteRule ^wp-admin/includes/ - [F,L]

RewriteRule !^wp-includes/ - [S=3]

RewriteRule ^wp-includes/[^/]+\.php$ - [F,L]

RewriteRule ^wp-includes/js/tinymce/langs/.+\.php - [F,L]

RewriteRule ^wp-includes/theme-compat/ - [F,L]

</IfModule>

# Bloqueamos acceso a WP-CONFIG

<Files wp-config.php>

Order Allow,Deny

Deny from all

</Files>

# Slo nuestra IP en el login

<Files wp-login.php>

Order Allow,Deny

Deny from all

Allow from 127.0.0.1

</Files>
# Protegemos nuestros HTACCESS

<Files ~ ^.*\.([Hh][Tt][Aa])>

Order allow,deny

Deny from all

Satisfy all

</Files>

# Cerramos acceso a directorios de themes y plugins

RewriteCond %{REQUEST_URI} !^/wp-content/plugins/file/to/exclude\.php

RewriteCond %{REQUEST_URI} !^/wp-content/plugins/directory/to/exclude/

RewriteRule wp-content/plugins/(.*\.php)$ - [R=404,L]

RewriteCond %{REQUEST_URI} !^/wp-content/themes/file/to/exclude\.php

RewriteCond %{REQUEST_URI} !^/wp-content/themes/directory/to/exclude/

RewriteRule wp-content/themes/(.*\.php)$ - [R=404,L]

# No permitir ver los directorios

Options -Indexes

#esta instrucion hay q ponerla dentro de la carpeta wp_admin/htaccess

AuthUserFile /dev/null

AuthGroupFile /dev/null

AuthName "Access Control"

AuthType Basic

order deny,allow

Deny from all

allow from 127.0.0.1

donde pone 127.0.0.1 hay q cambiarlo por nuestra ip

ssjfjjdjjd67757383899(/&%$yhhrthh)

pon aqu tu frase aleatoria