There has never been a default password, and the username admin
isn't default anymore for a very long time.
The problem with Jetpack are not the active modules, but the terrible code. Keep in mind that even inactive files are accessible per HTTP request.
block anything. It is purely informal
, the web server doesn't even read it. File permissions are set in the operating system
I like that you try to share what you have learned. That's always good. :)
But next time, please verify your facts before you are misguiding your readers accidentally. You missed the most important points, like the ones I mentioned earlier or keeping the software context
for WP up to date, and recommended things that will create a false sense of security. This is probably worse than doing nothing and just staying afraid a little bit.