Archive for August, 2007

WordPress 2.2.2

Posted by DK

August 5, 2007

WordPress 2.2.2 is now available for download.

The release was mainly to address the recent problems posted by beNi.
A full list of closed bugs can be reviewed here.
A full list of files changed can be reviewed here.

The big BlogSecurity move had a few glitches, but seems to have gone okay. For those of you who don’t know, we moved from a hosted solution to a dedicated server so that we have greater control of our applications.

Like many carefully prepared plans, it didn’t all go according to plan.

We are still recovering [...]

BlogSec News Launched

Posted by DK

August 3, 2007

BlogSec Channel is a new BlogSecurity service, that allows you to stay updated with blog news from a variety of sources. While going through our daily feeds, we will flag up those we feel may be interesting and that relate to the BlogSecurity mission.

the BlogSec Channel also has its own RSS feed, so if you [...]

First Weblog Worm targets WordPress

Posted by DK

August 1, 2007

beNi released 7 zero-day vulnerabilities for WordPress today as well as a the first weblog worm, which topic has interested me for some time now…

I have shared a few comments with beNi over various WordPress vulnerabilities in the past. He seemed to drop of the face of the planet, but has just launched the first [...]

Role Management Security

Posted by DK

August 1, 2007

If you are like many other WordPress users and use the default admin user account to login and manage your blog, then you are doing something wrong. With power comes grave responsibility.

I remember when I first got into Linux. I heard loads of people shout across the net, "Dont use the root account (superuser account) [...]