Security is a big deal these days. Because WordPress allows interaction with authorized users in a browser, it can also attract those pesky un-authorized spammers brute-force attacks and other nefarious bots. At this meeting I’d like to discuss a WordPress security plugin that offers a comprehensive defense system, and analyze some of it’s settings. It will give us a good example of what can be done, and we’ll go further to see what it writes to the .htaccess file – and how these defense techniques can be implemented even if you don’t use WordPress.