Wordpress Security Alert
Last night the Wordpress team announced a critical security issue that came about in Wordpress 2.1.1 after a hacker gained access to the servers and edited a couple files allowing a possible remote php execution. Supposedly, the code was only found in 2.1.1 downloads from the past few days, but Wordpress recommended that everyone upgrades to 2.1.2. If you haven’t done so already, I highly recommend it. While we’re on the subject of hackers, I suggest you have a look at this post on using the htaccess to hide your wordpress admin folder if you’re worried about potential security issues.
Want an avatar? Get a gravatar! • You can link to this comment
Whaa, when is it going to get easier to upgrade wordpress sites!! It’s becoming a weekly ritual lately. Going in control panel, backing up db. Backing up files. Checking backups. Deleting files. Uploading files. Upgrading. Hoping everything went ok. And that for 6 sites! It’s really getting annoying.
Want an avatar? Get a gravatar! • You can link to this comment
WP has one of the most easiest upgrade processes IMO. Just don’t upload the themes folder if your using customizing themes, and you’re usually all set. I never backup before upgrades.
Want an avatar? Get a gravatar! • You can link to this comment
Generally, I won’t backup before I upgrade because I know exactly what I’m doing. However, (because sometimes I’ll get paranoid) I will always backup client websites before upgrading - but I’m getting paid for this