E-mail Comment Del.icio.us Digg Reddit Technorati Furl

WordPress Hardening Release

Oct 21, 2009 Security News

In preparation for version 2.9, WordPress has back-ported some of their bugfixes and security hardening to the 2.8 branch with the release of 2.8.5.

The headline changes in this release are:

  • A fix for the Trackback Denial-of-Service attack that is currently being seen.
  • Removal of areas within the code where php code in variables was evaluated.
  • Switched the file upload functionality to be whitelisted for all users including Admins.
  • Retiring of the two importers of Tag data from old plugins.

It is advisable for all users to upgrade to 2.8.5 to get the benefit from all of the behind-the-scenes changes to WordPress that should go a long way to making it more secure.  Also mentioned is a handy plugin called the WordPress Exploit Scanner.  This plugin searches files on your website, posts,  and the comments table of your database looking for anything suspicious.

Read all about it here.

This entry was posted on Wednesday, October 21st, 2009 at 10:08 and is filed under Security News. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

Leave a Reply

XHTML: You can use these tags: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>