There are millions of blogs all around the Internet. Some people are earning money through it and some do not. Most of the bloggers use WordPress at the moment. Regardless of what sort of person you are, you will need to be certain that your blog is protected.
The fix wordpress malware scanner Codex has an outline of what permissions are okay. Directory and file permissions can be changed either through an FTP client or within the page from your hosting company.
There are many ways to pull off this, and many of them involve copying and FTPing files, exporting and re-establishing databases and more. Some of these are very complicated, so it's imperative that you select the one that is best. Then you may want to check into using a plugin for WordPress backups if you are not of the persuasion.
Exclude pages - basics This plugin adds a checkbox,"include this page in menus", which can be checked by default. If you uncheck it, the page will not appear in any listings of webpages (which contains, and is usually restricted to, your webpage navigation menus).
Another step to take to make WordPress more secure is to always upgrade WordPress to the latest version. The main reason for this is that there also come fixes for old security holes making it essential to upgrade.
Those are three very simple things you can do to keep WordPress safe without plugins. Set a blank Index.html file in your folders, run your web host security scan and backup your whole account.