I don't know about you, but I researched to find out what others were doing to keep their blog secure, and when I secured my WordPress blog, I found so much information that I was completely confused. And some of the information was actually on superstitious or the top. People told me to rename this file, rename this folder and install these ten plugins. It seemed to be quite a bit of energy and work.
Cloning your website is just another level in rename your login url to secure your wordpress website which may be very useful. Cloning simply means that you have backed up your site to a totally different place, (offline, as in a folder, in order to not have SEO problems) where you can access it at a moment's notice if necessary.
Backup plug-ins is also important. You need to backup database and all the files so in case of a sudden attack, you can easily bring back your own site like nothing happened.
Yes, you want to do regular backups of your website. I recommend at least a weekly database backup and a monthly from this source "full" backup. More. Definitely, if you make regular additions and changes to your site. If you have a community of people which are in there try this web-site all the time, or make changes multiple times every day, a daily backup should be a minimum.
WordPress is one of the platforms for self-hosted blogs and websites. While WordPress is pretty secure from the box, there are always going to be individuals who want to create trouble by finding a way to crack into sites or accounts to cause harm or inject hidden spammy links. That's why it's essential to make sure that your WordPress installation is as safe as possible.
However, I advise that you install the Login LockDown plugin rather than any.htaccess controls. Login requests will be ceased by that from being allowed from a for an hour or so after three unsuccessful login attempts. It is still possible to access your admin mobile while and yet you still have good protection against hackers if you accomplish this.