WordPress 2.8.5 – A new upgrade to harden your blog
Amazing what always happens when I am busy – a new WordPress release. Course I have been busy playing plumber and getting ready for tonight’s call.
Just got a chance to upgrade and test the new release. Here is what WordPress says about the release.
The headline changes in this release are:
* A fix for the Trackback Denial-of-Service attack that is currently being seen.
* Removal of areas within the code where php code in variables was evaluated.
* Switched the file upload functionality to be whitelisted for all users including Admins.
* Retiring of the two importers of Tag data from old plugins.
Glad to see them do this new hardening rather than wait for it to be incorporated in 2.9. There have been a few malicious items running around that this should help you to avoid.
That post also announced a plugin that I am testing called WordPress Exploit Scanner. It checks your data base and plugins for strange files but only notifies you it does not correct things which is good. Mine came out clean but will be checking regularly.
Added the auto upgrade video below. Make sure you grab your data base first just in case.
It was originally done for 2.7 upgrades but nothing has changed so no need for a new video.
Hope to talk to you tonight on the blog monetization call.
About the author
|
Mike Paetzold got started blogging in 2003 and has become an expert on using WordPress. He has become known as The WordPress Guy. After being an under ground niche marketer using his blogs he has surfaced to share some of the ways he uses blogs to enter various niches profitably. Get the details at Profitable Blog Steps |
Related posts
Like this post? Subscribe to my RSS feed and get loads more!
Disclaimer: Some of the links mentioned within this post or posts it may lead to are my affiliate links and in such case I will get compensated for recommending those products. However, I will never recommend something that I don’t personally believe in and I welcome your questions and feedback.
9 comments
Jon Hansen on October 21, 2009 at 2:42 pm
I am running Windows 2000 (Service Pack 4) on a Dell Computer.
Are there any special instructions or risks in terms of making this latest upgrade.
I must admit that I am a bit uncomfortable doing the upgrade as I do not want to lose posts and settings and have to reload from my weekly saved files.
Best Regards and thanks.
Jon
Jon Hansen´s last blog ..Coupa’s e-procurement Sam: Spending Smarter and Saving More!
[Reply]
Mike Reply:
October 21st, 2009 at 3:05 pm
Your computer and operating system will not effect your upgrade in any way. If you are uncomfortable doing the upgrade I do offer a service to do that at http://wptutorial.com/order/upgrade.html
[Reply]
Earl Netwal
Twitter: EarlNetwal
on October 21, 2009 at 3:51 pm
Thanks for offering the videos again. I upgraded one of my blogs yesterday, but my others hadn’t gotten the upgrade notice yet. I take it it takes a while for such to work their way through the system.
Earl Netwal´s last blog ..Mental Manure Worth Jumping In!
[Reply]
Andre Arnett on October 21, 2009 at 5:55 pm
Thanks for keeping us up to date with the upgrade info. I guess we should be happy that WordPress is keeping itself up to dat but boy as always, they do it a lot. Something to say about progress.
Andre Arnett´s last blog ..Secrets Of Marketing Your Products In Forums
[Reply]
Joel Osborne
Twitter: JoelOsborne
on October 21, 2009 at 9:26 pm
Yes, it’s great to see more security aspects being protected. You never can be too protected.
Joel Osborne´s last blog ..Free Content: The Winner Is…
[Reply]
Lonnie Minton on October 21, 2009 at 10:39 pm
Thanks for the upgrade info Mike. Will work on the upgrade soon. This one sounds like a good one. Would be nice if hardening wasn’t necessary. But we don’t live in a perfect world.
Lonnie Minton´s last blog ..Is Free Good For Internet Marketing
[Reply]
Harsh Agrawal on October 22, 2009 at 6:20 am
Saw this update Yesterday and the first thing which I did
was Backup my Db and updated the wordpress. Though wordpress are releasing very quick update..
Harsh Agrawal´s last blog ..Difference Between Free WordPress and Self Hosted WordPress Blog
[Reply]
Ron Barrett on October 22, 2009 at 9:55 am
Wow. Thanks for the info on the update. I didn’t realize one had come out again.
You’re always on top of these things and for that I thank you.
Ron
Ron Barrett´s last blog ..Webhosting For Newbies – What to Look for in a Web Host – Part II
[Reply]
Luca Di Nicola
Twitter: rsonline
on October 23, 2009 at 8:16 am
Mike, thanks for the heads up. It’s been awhile since the last round of updates – maybe a momth oe so? Anyway, we should’nt complain as they are keeping us safe with these updates. I love it that you reposted the video showing us how to backup the DB – it’s always usefull
Luca Di Nicola´s last blog ..Bloggers React To New FTC Compensation Disclosure Rules
[Reply]