Not a member? Sign up

Using WordPress? Checklist helps keep it secure

by: Amy Gahran |

WordPress is a very popular content management system for community news/info sites. But since it's free and open source, it's also a popular target for hackers. Here are some common WordPress security myths, and a checklist for securing your WordPress installation.

WordPress security expert Anders Vinther published a list of 10 common myths about WordPress security, with links to more details:

  1. WordPress is not secure.
  2. Nobody wants to hack my blog.
  3. My WordPress site is 100% secure.
  4. I only use themes and plugins from wordpress.org so they are secure.
  5. Updating WordPress whenever I log in is cool.
  6. Once my WordPress site is setup my job is finished.
  7. I'll just install xyz plugin and that'll take care of security for me.
  8. If I disable a plugin or theme, there is no risk.
  9. If my site is compromised I will quickly find out.
  10. My password is good enough.

Have you caught yourself saying or believing any of these things about your community site? If so (or even if not), you might want to download Vinther's free WordPress security checklist.

Working through the steps in this checklist takes about five hours total -- but that time is well worth the effort if you want to protect your site and make sure it stays protected. The tasks don't all have to be completed in one sitting; you can do them over a few days if you like.

Subscribe to the Newsletter

Amy Gahran

Amy Gahran is a journalist, editor, trainer, entrepreneur, strategist, and media consultant based in Boulder, Colorado. In addition to writing
Read More

Events
Submit an event

Free online class: "Math for Journalists Made Easy" you decide the schedule

Mon, June 1, 2015 12:00 am - Sun, June 28, 2015 12:00 am

If you have any qualms doing the math for your stories, this class is for you.  Math for Journalists Made Easy: Understanding and Using Numbers and Statistics is a four-week Massive Open Online Course with instructors Brant Houston, Jennifer LaFleur and Gregory Ferenstein.

IRE 2015 Annual Conference, June 4-7

June 4, 2015

The Investigative Reporters & Editors annual conference in Philadelphia attracts the best in the business and offers more than 150 panels, hands-on classes and special presentations about covering business, public safety, government, health care, education, the military, the environment and other key beats.

2015 Ippies Journalism Awards Ceremony

Thu, June 11, 2015 12:00 am

The Ippies is a journalism awards ceremony to honor reporting in English and languages other than English by the ethnic and community press.

Allied Media 2015 Annual Conference, June 18-21

June 18, 2015

Save the date for the 17th annual Allied Media Conference, June 18-21, 2015 in Detroit.

New Civics Practitioners Conference

Wed, June 24, 2015 12:00 am - Thu, June 25, 2015 12:00 am

New Civics Practitioners Conference to Help Educators Support the Next Generation of Civically Active Youth

Submit an event

Yottio and FOLD: Two new tools for storytelling

By Nancy Yoshihara
5/25/2015 | 10:00 pm GMT

Yottio, a video streaming start up, is hardware-based and charges a monthly fee. FOLD is an open source reading, authoring...

Mobile development and data analytics higher priorities for media companies

By Nancy Yoshihara
5/19/2015 | 9:53 am GMT

News publishers see top four priorities for the year ahead: Digital growth, mobile development, data analytics management, and mobile revenue,...