[Chugalug] d at mn scammers/hackers

Jason Brown lists at masterforge.com
Thu Oct 18 15:45:28 UTC 2012


I run somewhere around 10 WP installations, hard to remember the count. 
People try to get in all the time. Follow basic best practices with file 
permissions and passwords just like any other LAMP install and I have 
never had a breach.

The basics here are good: http://codex.wordpress.org/Hardening_WordPress
I think there are even scripts that do most of it for you.

Joomla was much worse in my opinion.

Then again, I have never seen anything secure "out of the box", Linux, 
Windows, Apache, etc.

--Jason


On 10/18/2012 11:11 AM, Stephen Haywood wrote:
> Wordpress is pretty bad too. The big thing to watch out for is the 
> plugins for Wordpress. I have my blog hosted at wordpress.com 
> <http://wordpress.com> but I would never be comfortable running my own 
> wordpress install.
>
> On Thu, Oct 18, 2012 at 10:44 AM, John Aldrich <jmaldrich at yahoo.com 
> <mailto:jmaldrich at yahoo.com>> wrote:
>
>     Any known issues with WordPress? One of the groups I'm a member of
>     uses WordPress for the CMS. Just thought I'd check.
>
>     _______________________________________________
>     Chugalug mailing list
>     Chugalug at chugalug.org <mailto:Chugalug at chugalug.org>
>     http://chugalug.org/cgi-bin/mailman/listinfo/chugalug
>
>
>
>
> -- 
> Stephen Haywood
> Information Security Consultant
> CISSP, GPEN, OSCP
> T: @averagesecguy
> W: averagesecurityguy.info <http://averagesecurityguy.info>
>
>
>
> _______________________________________________
> Chugalug mailing list
> Chugalug at chugalug.org
> http://chugalug.org/cgi-bin/mailman/listinfo/chugalug

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://chugalug.org/pipermail/chugalug/attachments/20121018/164f44b2/attachment.html>


More information about the Chugalug mailing list