February 6th, 2008 at 11:40pm |
There are many things you can do to secure your wordpress blog - a lot of them are pretty technical are require programming and/or sysadmin knowledge. Here’s a list of easy things that YOU can do to secure your wordpress blog:
Remove unused themes (by removing the whole directory)
Disable and remove unused plugins.
Keep your wordpress version [...]
Read the rest of 7 easy steps to a more secure Wordpress blog
February 1st, 2008 at 12:29pm |
Danial Cuthbert has written and excellent paper about securing Wordpress using mod_security for Apache.
Read it on BlogSecurity.
Read the rest of Securing Wordpress
October 26th, 2007 at 11:57am |
This is impressive. It’s a user’s story submitted to the Worse Than Failure blog. The story was submitted by Noah - one of his relatives had a problem with an expired application that they wanted to use and they wondered if he could help:
http://worsethanfailure.com/Articles/Classic-WTF-Lock-In-Key-Security.aspx
He quickly gained some l33t hax0r skills and managed to get the [...]
Read the rest of The best software security ever seen
September 9th, 2007 at 9:06am |
There’s a great article at Coding Horror that makes an interesting proposal for strengthening passwords: using pass-phrases rather than pass-words.
The idea is to use a phrase rather than a single word. For example, a worst-case scenario would be:
old password: password
new password: this is my password
Whilst I agree that a passphrase may be marginally stronger than [...]
Read the rest of Stronger passwords?