Four Security Tips to Keep your WordPress Blog from Being Hacked
Four simple security tips for keeping your WordPress blog safe.
Recently online forums have been flooded with tales of WordPress blogs being hacked and then banned by Google for spreading bad ware. To avoid these nightmares, follow the simple WordPress security tips in this article to keep your blog safe.
1.Update to the latest secure version
Every piece of software has its own problems and weaknesses. Be diligent about always updating to the most recent "known secure" version. In this instance, you will want version 2.3.3 of WordPress.
Wordpress gives plugins and themes full access to your blog. Plug-ins need to be kept up-to-date. The latest 2.3 series of WordPress notifies you in the Admin Screen when the plugins that you currently have installed have released newer versions.
2.Any plugins that are not being used, should be removed or disabled
If you're like most bloggers, you've installed and tried out several different themes on your blog. And you very likely have several plugins installed that you don't use.
Each one of these installed themes and plugins, is a potential security hole. Constantly keeping the unused ones up-to-date is a waste of your time. Deactivate all plugins that you don't need or use. And then remove the files for unused plugins and themes from the server.
The final step is among the most significant. Eliminate unnecessary installations. Remember that everything you've installed lands in standard locations. A hacker can simply search your site, and take advantage of known holes. It is irrelevant that you are not using the package.
3.You should only download and install code you trust
For the same reason that you don't open email attachments from unknown sources, you also should not use software with your blog that is not trustworthy. Use the author's site to download programs.
Wordpress, themes, and plugins are released as Open Source. Open Source allows anyone to modify the code, even if they have malicious intent. Any person with malicious intent can put up bad ware for downloading to unsuspecting web surfers.
There is a penalty for being an early adopter! Allow other people to work through the holes and security issues before you attempt to use the package.
4.Watch out for JavaScript includes
A lot of web analytics services and advertising networks have a requirement that you add JavaScript to your blog, which frequently comes in the form of a JavaScript include. This gives the JavaScript authors an almost wholesale permission to change your web page. Essentially, you must trust your Web site's security to the third-party service.
I would be unwilling to have JavaScript put on my web site by an entity I was not familiar with. I would be more receptive to legitimate, well-known ad network and web analytic providers such as Google AdSense and Google Analytics.
Another common problem occurs if you don't have complete control over the type of ads appearing on your site. This is a particular problem with Google. You cannot afford to have your site ignored by Google, but if the ads on your site promote "undesirable" web sites, your site may be declared "undesirable" too.
1.Update to the latest secure version
Every piece of software has its own problems and weaknesses. Be diligent about always updating to the most recent "known secure" version. In this instance, you will want version 2.3.3 of WordPress.
Wordpress gives plugins and themes full access to your blog. Plug-ins need to be kept up-to-date. The latest 2.3 series of WordPress notifies you in the Admin Screen when the plugins that you currently have installed have released newer versions.
2.Any plugins that are not being used, should be removed or disabled
If you're like most bloggers, you've installed and tried out several different themes on your blog. And you very likely have several plugins installed that you don't use.
Each one of these installed themes and plugins, is a potential security hole. Constantly keeping the unused ones up-to-date is a waste of your time. Deactivate all plugins that you don't need or use. And then remove the files for unused plugins and themes from the server.
The final step is among the most significant. Eliminate unnecessary installations. Remember that everything you've installed lands in standard locations. A hacker can simply search your site, and take advantage of known holes. It is irrelevant that you are not using the package.
3.You should only download and install code you trust
For the same reason that you don't open email attachments from unknown sources, you also should not use software with your blog that is not trustworthy. Use the author's site to download programs.
Wordpress, themes, and plugins are released as Open Source. Open Source allows anyone to modify the code, even if they have malicious intent. Any person with malicious intent can put up bad ware for downloading to unsuspecting web surfers.
There is a penalty for being an early adopter! Allow other people to work through the holes and security issues before you attempt to use the package.
4.Watch out for JavaScript includes
A lot of web analytics services and advertising networks have a requirement that you add JavaScript to your blog, which frequently comes in the form of a JavaScript include. This gives the JavaScript authors an almost wholesale permission to change your web page. Essentially, you must trust your Web site's security to the third-party service.
I would be unwilling to have JavaScript put on my web site by an entity I was not familiar with. I would be more receptive to legitimate, well-known ad network and web analytic providers such as Google AdSense and Google Analytics.
Another common problem occurs if you don't have complete control over the type of ads appearing on your site. This is a particular problem with Google. You cannot afford to have your site ignored by Google, but if the ads on your site promote "undesirable" web sites, your site may be declared "undesirable" too.
Use the feedback form below to submit your comments.
Use the form below to email this article to your friends.
- Blogs and Google Bombs: Technology Strikes
- Blogs — Uses and Misuses
- Creating a Crap Blog in Ten Easy Steps
- Drive Traffic To Your Blog For Free
- To Blog, Or Not To Blog?
- The Perfect Blog
- Start Your Own Blog in 3 Easy Steps
- How to Create More Blog Traffic ?
- Increase Blog Traffic with Carnivals
- Make Money, Get traffic from Blogs
- Getting Your Business on the Blogging Bandwagon
- Explode Your Online Traffic With Blog Carnivals
- How to Protect Your Blog Content from Theft
- What is a Blog and What is the Blogosphere?
- Blog Searching Tools Increase Traffic to Blogs
- Convert Blog to Static Site - Benefits of Conversion
- Marketing Blog Aesthetics and Architecture
- Blog hosting. The standards of quality
- Tips For Using Blog Rush
- Why Web Video Is Crucial For Blogs