<html>
  <head>
    <meta content="text/html; charset=ISO-8859-1"
      http-equiv="Content-Type">
  </head>
  <body bgcolor="#FFFFFF" text="#000000">
    <div class="moz-cite-prefix">I run somewhere around 10 WP
      installations, hard to remember the count. People try to get in
      all the time. Follow basic best practices with file permissions
      and passwords just like any other LAMP install and I have never
      had a breach.<br>
      <br>
      The basics here are good:
      <meta http-equiv="content-type" content="text/html;
        charset=ISO-8859-1">
      <a href="http://codex.wordpress.org/Hardening_WordPress">http://codex.wordpress.org/Hardening_WordPress</a><br>
      I think there are even scripts that do most of it for you.<br>
      <br>
      Joomla was much worse in my opinion.<br>
      <br>
      Then again, I have never seen anything secure "out of the box",
      Linux, Windows, Apache, etc.<br>
      <br>
      --Jason<br>
      <br>
      <br>
      On 10/18/2012 11:11 AM, Stephen Haywood wrote:<br>
    </div>
    <blockquote
cite="mid:CAOG_E9XPK7DuA-X8tOnuV-rxgbXfBtiqypXzsNOsXW92CNuOhg@mail.gmail.com"
      type="cite">Wordpress is pretty bad too. The big thing to watch
      out for is the plugins for Wordpress. I have my blog hosted at <a
        moz-do-not-send="true" href="http://wordpress.com">wordpress.com</a>
      but I would never be comfortable running my own wordpress install.<br>
      <br>
      <div class="gmail_quote">On Thu, Oct 18, 2012 at 10:44 AM, John
        Aldrich <span dir="ltr"><<a moz-do-not-send="true"
            href="mailto:jmaldrich@yahoo.com" target="_blank">jmaldrich@yahoo.com</a>></span>
        wrote:<br>
        <blockquote class="gmail_quote" style="margin:0 0 0
          .8ex;border-left:1px #ccc solid;padding-left:1ex">
          Any known issues with WordPress? One of the groups I'm a
          member of uses WordPress for the CMS. Just thought I'd check.
          <div class="HOEnZb">
            <div class="h5"><br>
              _______________________________________________<br>
              Chugalug mailing list<br>
              <a moz-do-not-send="true"
                href="mailto:Chugalug@chugalug.org" target="_blank">Chugalug@chugalug.org</a><br>
              <a moz-do-not-send="true"
                href="http://chugalug.org/cgi-bin/mailman/listinfo/chugalug"
                target="_blank">http://chugalug.org/cgi-bin/mailman/listinfo/chugalug</a><br>
            </div>
          </div>
        </blockquote>
      </div>
      <br>
      <br clear="all">
      <br>
      -- <br>
      Stephen Haywood<br>
      Information Security Consultant<br>
      CISSP, GPEN, OSCP<br>
      T: @averagesecguy<br>
      W: <a moz-do-not-send="true"
        href="http://averagesecurityguy.info" target="_blank">averagesecurityguy.info</a><br>
      <br>
      <br>
      <fieldset class="mimeAttachmentHeader"></fieldset>
      <br>
      <pre wrap="">_______________________________________________
Chugalug mailing list
<a class="moz-txt-link-abbreviated" href="mailto:Chugalug@chugalug.org">Chugalug@chugalug.org</a>
<a class="moz-txt-link-freetext" href="http://chugalug.org/cgi-bin/mailman/listinfo/chugalug">http://chugalug.org/cgi-bin/mailman/listinfo/chugalug</a>
</pre>
    </blockquote>
    <br>
  </body>
</html>