Last night I was reading WordPress > Support > Security issues, multiple sites, and made a mental note to check all of my domains to be sure that I don’t have the /uploads and /themes directory set to be writable.
Today, Lisa sent me a massage about the apparent demise of her website. Now, I don’t know if her /uploads and /themes directories were writable, but what I do know is this: several of the files in the /wp-admin directory had been compromised. Worse, the bug had spread itself to her non-public /awstats folder. Worst of all, it made its way into her MySQL file, which was corrupted beyond repair. 
Moral of the story? Don’t get hacked! While doing the following won’t ensure 100% protection against hackers, it will greatly increase your chances of not being picked off by them:
- DON’T set your /uploads and /themes directories to be writable. I know it’s a pain, but manage themes and upload photos and other files the old fashioned way — via FTP!
- DO use different passwords for your SQL database user, cPanel/hosting account management login, FTP login and WordPress administration login.
- DO change passwords monthly, or even weekly.
- DO use hard-to-guess passwords. sweetiecakes22 is not difficult. g00d342!7gh! is difficult.
- Update WordPress as new releases roll out. While these releases often contain new features and minor bug fixes, they almost always contain security fixes!
- Report any security issues and hacking to your host, but also give a head’s up at the WordPress forums. This not only alerts other users of WordPress, but it may shed light on a potential security flaw or exploit.
Now back to your regularly scheduled Jenn… who has great pictures of Alyssa from yesterday’s jaunt at a playground!
Today Dan is taking her bowling (lucky girl). Ryan and I are hanging out here until I get some work done, and then we’re going out to another park that has a large pond with loads of ducks and geese, and a few swans, too.
P.S. What the heck is Coupon Money?
Thanks for the heads up. I am going to go and change and make sure that my hostees do not have their folders set to writable.
aww your daughter is so cute
After reading this post you better believe I dug through my files, changed permissions and upgraded to 2.5. I’ve been meaning to upgrade, but just didn’t have the chance. You better believe I just made time, lmao. Last thing I need are my blogs crashing after delivery. I absolutely LOVE the picture of Alyssa laying in the grass! Oh I noticed you changed your settings on flickr, what are those settings if you don’t mind me asking? I think I want to do the same.
You forgot “DO make backups”
Thanks for the tips. That is really scary to get hacked into.
Love the photos of the little one! So cute!
Thanks for the anti-hacking tips, I don’t know much about that kind of thing so I really appreciate it.
Awesome photos of Alyssa, as usual.
Btw, I see that on your Twitter updates you’re reading a book called Escape. Is it about a woman who left the FLDS group? If it is, what do you think of it so far, would you recommend it?
I backup once a week automatically and have it emailed to me and I just checked my directories, :-p
Those pictures are absolutely adorable!
Good advice. I should check myself, especially since I only edit themes via FTP. doing it online confuses me. haha
Did Lisa give you a nice MASSAGE then ;)
Alyssa is pretty much the cutest thing ever. : )
Thanks for the tips. I don’t even change my passwords but I think I’m going to start doing that so I won’t get hacked. :biggrin:
gosh so if I use the password raneerlona it’s not going to be secure? Good to know! I wish we could go out to the playground and have that much fun, still a bit wet here. It seems we’re saturated with rain, which means mud pies!
Alyssa looks so adorable! I love her little pigtails!
That totally sucks Lisa got hacked.
However I did read on her blog that she’s looking at it as a new start. But still, a lot of people wouldn’t be so optimistic about it (like me) lol.
Thanks for the tips, sometimes it’s difficult to remember to take all the necessary precautions, and just how easy it can be for someone to gain access to your shit.
Scary.
The photos are adorable, I love Alyssa’s face in the second one.
*poke* You’ve also been tagged.