• Home
• About
• Contact
• Portfolio
• RSS

• Recently Written

  • Just one more reason to love Campaign Monitor
  • Quick Update: Big News
  • George Walkley reports from 2008 Tools of Change, New York
  • New client website goes live: www.Iain-Banks.net
  • Client website re-vamp: JaneJohnsonBooks.com
  • ‘Reaching Readers Online’ seminar, January 31st, London
  • Tips on securing your Wordpress blog installation
  • Readburner adds Digg-like aggregation to Shared Google Reader items
  • Manchester Wordpress Users’ Group, January 16th, MDDA
  • CIDS Focal Point Networking, January 14th, Manchester

• Categories

  Website Development
  Client News
  Marketing
  Out and About
  Miscellania
  Publishing
  Announcements

• Archives

  • April 2008
  • March 2008
  • February 2008
  • January 2008
  • December 2007
  • October 2007
  • September 2007
  • August 2007
  • July 2007
  • May 2007
  • April 2007
  • February 2007

• Admin

  • Login
  • WordPress

Tips on securing your Wordpress blog installation

Posted on January 22nd, 2008 at 14:16

Via the highly-useful Weblog Tools Collection, here's an article by a chap called Matt Cutts entitled Three tips to protect your WordPress installation, which happens to provide specific instructions on dealing with three of the security issues that Alan raised at the MWPUG session last week.

Matt suggests:

1. Protecting your admin suite by restricting access to I.P. addresses specified in the .htaccess file.
2. Including an empty index.html file in your /plugins/ directory to prevent anyone from browsing the otherwise wide-open directory (although attempting to access the plugins directory here seems to generate a 404 error instead...)
3. Removing the WP version information metadata from your header.php file to avoid giving easy clues to potential hackers.

Needless to say, I'll be acting on all three of those across my client sites (as applicable, it could be difficult perhaps to get accurate I.P. address information from all my clients) in my next WP-admin session.

comments

• Site Search

• Coming Soon...

  As of April 7th 2008 I'll be working exclusively as the (online) Marketing Exec for Orbit Books on a wide range of projects across their complete sf / fantasy and horror list.

• • (Former) Client List

    • Adam Roberts
    • Barclay Talks Sport
    • Brian Ruckley
    • Deborah J Miller
    • Edward Miller
    • Iain [M] Banks
    • Invest in Manchester (MIDAS)
    • James Barclay
    • James Lovegrove
    • Jane Johnson
    • Jay Amory
    • Joe Abercrombie
    • John Jarrold
    • Jude Fisher
    • Les Edwards
    • Manchester Enterprises
    • Mark Chadbourn
    • Mark Chadbourn - Jack of Ravens
    • Mark Morris
    • Michael Marshall Smith
    • Mulberry Events
    • North Star Delicatessen
    • Ormskirk RUFC
    • Paul Kearney
    • Pendragon Press
    • Philip Palmer
    • PS Publishing News Room
    • PS Publishing Webstore
    • Richard Morgan
    • Sarah Ash
    • Sarah Pinborough
    • The Works of Tim Powers
    • Tim Lebbon
    • Tom Arden

  • Creative Thinkers

    • Change This
    • David Parrish - T-Shirts and Suits
    • George Walkley
    • Hugh MacLeod
    • Reveries
    • Seth Godin
    • Times Emit (Apt)

  • Web design &c.

    • Email Standards Project
    • Redswish
    • Weblog Tools Collection