Don't ask me. I just make this up as I go.

a.k.a. Jed's fridge door notes and ideas of boredom.

Do not let your WordPress blog be a launchpad for malware. —

According to this article, you shouldn’t install the new WordPress ToolsPack Plugin.

It just installs a small php code that will allow your site to be backdoored and used as a redirect to an attack site.

Best practices for a WordPress blog – do not install plugins that you do not need, period. Other than being a security risk, even if you have legitimate WP plugins, having several of them which only offers minimal functionality will add up to your blog’s load time thereby slowing it down.

Maybe the WordPress guys can use security certificates to prevent the proliferation of useless/trojaned plugins.


Categorised as: Computer/IT | Tech


One Comment

  1. TechAmy says:

    also enrich the security by changing Admin as user name, removing script that displays the wordpress version and change the secret keys

Leave a Reply

Your email address will not be published. Required fields are marked *

Connect with Facebook

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>