WordPress – Harden Security by Limited Database Permissions

wordpress-security-database-permission
We generally grant all database permissions to wordpress database user. This is not a good security practice. We should grant only those database permissions which are actually required by WordPress for proper functioning.

Minimum Database Permission Required By WordPress

For normal functioning of WordPress, it requires only following database permissions. You can safely disable / deny rest database permissions.

  • SELECT
  • INSERT
  • UPDATE
  • DELETE

Permission required for WordPress, Plugin, Theme installation

With above four database permissions, you also need to grant one more permission for WordPress installation, Plugin installation and theme installation. So, before installing wordpress or any plugin or any theme, make sure you enable this database permission also.

1
CREATE

How To restrict Database Permissions on cPanel

Most hosting providers give cPanel as hosting control panel. Changing database permissions on cPanel is very easy.

Step 1

Login in cPanel and navigate to:
cPanel -> Databases -> MySQL Databases
wordpress-cpanel-database

Step 2

Click the database user of your WordPress database.
wordpress-cpanel-database-user

Step 3

On the next page check the permissions which you want to grant for this database user to your wordpress database. Click Make changes button to save new permissions.
wordpress-cpanel-database-permissions


Done!!
I hope this article was helpful to you.

Related Posts

Leave a Reply

Your email address will not be published. Required fields are marked *