¿Qué debo hacer si no quiero que mi exempleado me robe el sitio web?

Muy buena la pregunta planteada en Quora: What do I need to do to ensure my ex-developer doesn’t access or steal my website?

• Let the developer finish the site for you, and pay him for the work.
• Praise him and let him know that he’s done an amazing job, and you’re really impressed with the work. Make him feel good about having worked with you. The reason he probably hacked his older company’s site is because they likely didn’t pay him (perhaps because he didn’t finish the job). Regardless, make him feel like he’s a great programmer, and don’t leave on bad terms.
• Once he’s done and he’s transferred the site and server over to you, thank him again, and then make sure you have all of the passwords to everything.
• Back up the site, including all of the files and database. Back it up to a least three places.
• Be paranoid (a little bit):
  • Hire someone else who is technical to change ALL of the passwords and usernames. If this is a WordPress site, for example, make sure that you change the mySQL database username and password. Change all of the email addresses in the admin area, too, so someone can’t use a password reset to re-gain access to the site.
  • I’d recommend getting a new server. One that you pay for and control. Have someone move the code over to that, and look for any unusual files or backdoor access points. Look for directories that have been left open (i.e. 777 permissions). Make sure the site isn’t vulnerable to SQL injection attacks.
  • Make sure you have daily backups installed, and disable all FTP and SSH access to the site, unless it’s done with a whitelisted IP address.
  • Install GIT as a version control system, and run an automated scan of your site 2-3 times per day to see if any files have been changed.