Not a member? Sign up

Using WordPress? Checklist helps keep it secure

by: Amy Gahran |

WordPress is a very popular content management system for community news/info sites. But since it's free and open source, it's also a popular target for hackers. Here are some common WordPress security myths, and a checklist for securing your WordPress installation.

WordPress security expert Anders Vinther published a list of 10 common myths about WordPress security, with links to more details:

  1. WordPress is not secure.
  2. Nobody wants to hack my blog.
  3. My WordPress site is 100% secure.
  4. I only use themes and plugins from wordpress.org so they are secure.
  5. Updating WordPress whenever I log in is cool.
  6. Once my WordPress site is setup my job is finished.
  7. I'll just install xyz plugin and that'll take care of security for me.
  8. If I disable a plugin or theme, there is no risk.
  9. If my site is compromised I will quickly find out.
  10. My password is good enough.

Have you caught yourself saying or believing any of these things about your community site? If so (or even if not), you might want to download Vinther's free WordPress security checklist.

Working through the steps in this checklist takes about five hours total -- but that time is well worth the effort if you want to protect your site and make sure it stays protected. The tasks don't all have to be completed in one sitting; you can do them over a few days if you like.

Subscribe to the Newsletter

Amy Gahran

Amy Gahran is a journalist, editor, trainer, entrepreneur, strategist, and media consultant based in Boulder, Colorado. In addition to writing
Read More

Events
Submit an event

Philanthropy Southwest Annual Conference November 6-8

November 6, 2014 - November 8, 2014

Philanthropy Southwest’s Annual Conference, this year in Phoenix, Ariz.,  consistently draws several hundred trustees and staff attendees from grantmaking organizations of all types and sizes. https://www.philanthropysouthwest.org/annual-conference-0

American Library Association Midwinter Meeting

January 30, 2015 - February 3, 2015

Registration is now open for the ALA meeting, which will be held in Chicago.

Nonprofit Technology Conference

March 4, 2015 - March 6, 2015

The NTC is the nonprofit industry's signature technology event, bringing together more than 2,000 nonprofit staff, vendors, and consultants. 

Sunshine Week: Your Right to Know

March 15, 2015 - March 21, 2015

Launched in 2005, Sunshine Week has grown into an enduring annual initiative to promote open government and push back against excessive official secrecy.  

Summer 2015 Journalism Ethnics Fellowship

May 24, 2015

The May 24-June 7, 2015 program is sponsored by Fellowships at Auschwitz for the Study of Professional Ethics in collaboration with The Museum of Jewish Heritage—A Living Memorial to the Holocaust. Applications are being accepting for a fellowship, which uses the conduct of journalists during the Holocaust and in Nazi Germany as a launching point for an intensive two-week summer program on contemporary journalism ethics.

Submit an event

A breakdown of the Publishers' Toolbox from Knight Lab

By Melissa Kaplan
10/7/2014 | 9:25 pm GMT

Knight Project Lab's Publishers' Toolbox offers five different, swift assets for telling multimedia stories. A site editor can access the...

Comment platforms: How to choose one for your news site

By Melissa Kaplan
9/23/2014 | 4:49 pm GMT

Audience engagement is vital to keeping any community news site alive and well, and comments on stories are an immediate...