Blog Help
  Home arrow Blog Help arrow WordPress Security Tips
Affiliate Promotion  
Blog Help  
Domain Name Tips  
How To  
Newsletter Marketing  
Online Business Help  
Search Engine Tricks  
Web Development  
Web Hosting  
Website Advertising  
Website Content  
Website Marketing  
 Webmaster Tools
 
Base64 Encoding 
Browser Settings 
CSS Coder 
CSS Navigation Menu 
Datetime Converter 
DHTML Tooltip 
Dig Utility 
DNS Utility 
Dropdown Menu 
Fetch Content 
Fetch Header 
Floating Layer 
htaccess Generator 
HTML to PHP 
HTML Encoder 
HTML Entities 
IP Convert 
Meta Tags 
Password Encryption
 
Password Strength
 
Pattern Extractor 
Ping Utility 
Pop-Up Window 
Regex Extractor 
Regex Match 
Scrollbar Color 
Source Viewer 
Syntax Highlighting 
URL Encoding 
Web Safe Colors 
Whois
 
Forums Sitemap 
Mobile Linux 
APP Generation ROI 
IBM® developerWorks 
Weekly Newsletter
 
Developer Updates  
Free Website Content 
 RSS  Articles
 RSS  Forums
 RSS  All Feeds
Write For Us Get Paid 
Request Media Kit
Contact Us 
Site Map 
Privacy Policy 
Support 
 USERNAME
 
 PASSWORD
 
 
  >>> SIGN UP!  
  Lost Password? 
BLOG HELP

WordPress Security Tips
By: Codex-M
  • Search For More Articles!
  • Disclaimer
  • Author Terms
    		•
    Rating: 5 stars5 stars5 stars5 stars5 stars / 2
    2009-06-19

    Table of Contents:
  • WordPress Security Tips
  • WordPress Versions
  • Robots.txt and WordPress
  • Unsecured WordPress Login Page
  • Unsecured Forms and Plug-ins
    		•

    Rate this Article: Poor Best 
      ADD THIS ARTICLE TO:
      Del.ici.ous Digg
      Blink Simpy
      Google Spurl
      Y! MyWeb Furl
    Email Me Similar Content When Posted
    Add Developer Shed Article Feed To Your Site
    Email Article To Friend
    Print Version Of Article
    PDF Version Of Article
    		 
     
    ADVERTISEMENT

    WordPress Security Tips
    (Page 1 of 5 )

    WordPress, an open source blog publishing platform, is not actually safe by default. Failure to update the basic security measures of WordPress, or at most, failing to attend to these security issues, increases the chance of your blog being hacked and malicious people receiving unauthorized access to your private files. Keep reading for some ways to prevent hackers from becoming a threat.

    Common Security Pitfalls

    In case you're not familiar with this particular security threat, the results of getting hacked include the following:

    1. Someone will get unauthorized access to your website and steal your information, property and at worst, your bank account information (with everything that implies).

    2. Hackers will install malware on your site. This is a very common problem for blogs, especially WordPress blogs.

    3. When the site gets infected with malware, you will lose search engine rankings. Losing search engine rankings results in loss of traffic, which in turn affects your site's or blog's income.

    Below are the common security pitfalls of the default WordPress blog:

    1. There are some WordPress blogs that are not updated to the software's most recent version. And some of those very important updates include fixes of security loopholes. This means that failure to update to the latest WordPress blog version means exposing those security issues to any hacker that will exploit those weaknesses.

    2. By default, the WordPress admin files are crawlable by search engines. This results in indexing, and it is relatively easy to find your WordPress admin files in the search engine results. Again, exposing your admin files in public makes it very easy for hackers to exploit your files and find entry points into your blog.

    3. The WordPress log in is often unsecured. The admin panel log in is very easy to brute force by hackers to match your password.

    4. There are also some WordPress versions with unsecured forms or plug-ins. Remember that this type of entry point is the most vulnerable part of any WordPress blog.

    5. Some WordPress blogs are set up so that it is easy to find out what version of WordPress is being used. This may seem strange and new to you, but a lot of hackers will look at your WordPress version to help them find security loopholes.

    6. In old WordPress versions, the WordPress plug-in directory (/wp-content/plug-ins/) is visible, thus exposing your plug-ins to the public. Hackers can easily use this information to find security loop holes.

    Let's tackle these issues one by one.

    Next: WordPress Versions >>
     

    More Blog Help Articles
    More By Codex-M


     
    >>> Be the FIRST to comment on this article!

       

    BLOG HELP ARTICLES

    - Create a Vlog
    - Creating a Personal Blog People Actually Wan...
    - Offline Blog Managers
    - Get More from WordPress
    - Improving Blogspot Traffic with Free Google ...
    - LiveJournal: Blogs for All
    - WordPress Security Tips
    - Blogging with Yahoo
    - Sell Songs Online Safely Through Your Blog
    - Are E-Zines Still Relevant?
    - Rewriting URLs and Doing WordPress Redirects...
    - Build a Better Blog
    - Setting a Static Front or Main Page in Blogg...
    - Maximize Crawlability of WordPress Blogs and...
    - Create a Blogging Site
    Find More Blog Help Articles
     
    Create the Optimal Architecture for your Critical Applications
    Warburton's the largest independently owned bakery in the UK faced a number of d....
     
    Five Best Practices for Deploying a Successful Service-Oriented Architecture
    This white paper describes the benefits you can expect with SOA, and how IBM can....
     
    Gartner Magic Quadrant for Application Delivery Controllers
    Gartner summarizes its view on Application Delivery Controllers, evaluates stren....
     
    Knowledge is Power
    What you don't know can hurt you, and is likely costing you money and increasing....
     
    Rationalizing the Multi-Tool Environment
    The rationalized multi-tool approach is flexible, scalable and cost effective. I....
     




    © 2003-2009 by Developer Shed. All rights reserved. DS Cluster 4 Hosted by Hostway
    For more Enterprise Application Development news, visit eWeek