Posts Tagged ‘WordPress security’
Most bloggers and webmasters who use WordPress understand that you need to keep their core files up to date and also update any plugins that they may have. Fortunately, WordPress makes the process of doing so very easy and painless, usually just a click away, and most users seem to do it without thinking about it.
To drive this point home, prominent WordPress core developer Mark Jaquith said in a recent talk at WordCamp Phoenix 2011 that “The themes of today are pretty much like plugins in terms of what they can do.”
In short, the functionality of themes and plugins overlap greatly as even “basic” themes include additional elements that manipulate WordPress by adding new options and settings.
However, while all of this new functionality is a great thing for bloggers, especially those who want to easily design a great site, it’s bad news for security. WordPress themes are a potential security risk, just as with any plugin, and they require maintenance and testing to make sure they are still safe.
Unfortunately, few people give their themes such weighty consideration, possibly leading to major problems down the road.
Despite rumors proclaiming the contrary, WordPress is actually a very secure CMS platform utilized by millions of users around the world.
Unfortunately its immense popularity makes the software a prime target for hackers, similar to how Facebook and Twitter are prime targets since “everyone” is using them.
While there are more advanced measures that users should take when securing your WordPress site, here are the 3 most common habits I see practiced by some WordPress users that may set ones blog up to be hacked. Read More
A Premium Security Plugin for VaultPress users.
Security on your WordPress page is going to be pretty high – hopefully you’ll have a passion for blogging, or maybe even use a wide range of WordPress sites as client sites if you’re a designer or developer, so if you’re offering a service to someone, why not offer the best you can get for Security on the page.
Once included on your page, an initial scan sets a baseline for the files, and any changes to the 750+ core files are notified on the Security Tab of VaultPress. From here, you can then notify the VaultPress team, and they’ll give you help and assistance in locating and correcting the problem
More information about VaultPress new security plugin here or read Darnel’s review on The Blog Herald.
Keeping your WordPress installation secure is usually not something a lot of people spend a great deal of time on. However, I believe WordPress security, tightening up the place should be your first priority every single time you install WordPress. No exceptions.
With the recent Pharma hack, more info about it plus a solution on Chris Pearson’s blog, going round I thought it was time to focus on WordPress security today. There are a lot of things you can do build extra layers of security for your WordPress installation.
There are a few different layers involved to secure your WordPress installation. I shall list them grouped together as much as possible. Read More