WordPress v1.5 hackable
I am sure most of you have at least WordPress v.2.0. But just in case, if you are still running your blogs on WordPress v1.5, you should really update it to the latest version as soon as you can. Because version 1.5 is apparently hackable.
WordPress Planet suggests that in order to keep your blogs safe, please follow these steps:
Tips to help keep your blog safe:
- Keep all your software updated, not just WordPress. Make sure your plugins are updated.
- Use a strong password. Don’t use words or sequences of characters like “12345″ as your password. Make it a mix of characters and numbers.
- Don’t ever store your database dump online in a place Google will index it. It is very easy to use a Google search to find it.
- If you use public WiFi or a net cafe regularly, use SSL to secure the communication with your blog. Use the secure admin plugin for just this purpose.
- If you use Firefox, install PwdHash. It’s simple to use and works really well.
And you should always backup your blog. And of course the backup copies should NOT be stored in one place. Try to store them on few places at the same time; CDs, gmail, PC, thumb-drive etc. This way you will always have a working copy of your blog if one of your storage devices is compromised.
Upgrading to WP v.2.3.1 is quite easy, please see how I did it here. It might be tricky if you are using your own custom theme though.
Related Posts
- WordPress 2.1.1 had been compromised on WP download server
- wordpress theme tutorial
- Useful WordPress Plugins
- eBook on WordPress and blogging
- wp for iphone
