821 posts tagged wordpress security

Martin McKeay has pointed out two new-to-me Wordpress security plug-ins. The first is an installation scanner that helps identify risky settings. The second is an automatic upgrade plug-in. Wordpress doesn't have the greatest security record in the world.

Even though referer spam isn’t something new to black hat SEOs, WordPress blogs seem to get hit pretty hard with referrer spam these days. Every time somebody clicks a link on a website, the browser sends the originating URL (the URL of the web page that hosts the link) to the target web server.

MySpace just won a $230 million judgment against Spamford Wallace and his partner Walter Rines for violations of CAN-SPAM and California anti-phishing laws, plus attorney fees. Ole Spamford was proud to be the Spam King and I’m sure he’ll find a way to show off now that he holds the record for the

I was on holidays when new release of WordPress 2.5.1 came out. And I wanted to upgrade immediately from 2.5.0. to new version. But I haven’t got computer with me and had just mobile phone (Nokia N95) with its browser. Anyhow, I decided to try automatic upgrade from mobile. I took the huge risk (I thought).

I released Unwakeable 1.5 last night. This means Unwakeable is 100% compatible with WordPress 2.5! The previous version of Unwakeable, 1.2.1, didn’t play so nicely with WordPress 2.5. Unwakeable 1.5 was built from the ground up using K2 r687 as a starting point.

Your blog could be vulnerable, and the files in your directory could be exposed, and you probably don’t even know it. Believe it or not this is a mistake a lot of people unknowingly commit. This “mistake” also exposes your blog to hackers, and people trying to steal content.

I had a great call with Rebecca Madigan - formerly with Commission Junction, now with AffiliateClassroom - earlier today. We talked about an industry group dedicated to promoting affiliate marketing. Over the years there has been a lot of talk and many ill-fated attempts to create such a group - like

Posted by Lorenzo Colitti, Network Engineer, and Erik Kline, IPv6 Evangelist We care a lot about the health of the Internet. Recently, we’ve become increasingly concerned that IPv4 addresses — the numbers that computers use to connect to the Internet — are running out.

In theory, this is a marketing blog, focusing on search engine optimization, web analytics and other web marketing topics. So what does Wordpress security have to do with Google and SEO? Well one downside of the extended web ecosystem is that the same idiots who jump the queue in the supermarket...

By announcing to the world the version of Wordpress you are running, you greatly simplify the work of a hacker. Peter Westwood’s post documents how to suppress output of the Wordpress version number in feeds and blog posts. I’ve packaged his code in a very rudimentary Wordpress plugin...