Not a member? Sign up

Using WordPress? Checklist helps keep it secure

by: Amy Gahran |

WordPress is a very popular content management system for community news/info sites. But since it's free and open source, it's also a popular target for hackers. Here are some common WordPress security myths, and a checklist for securing your WordPress installation.

WordPress security expert Anders Vinther published a list of 10 common myths about WordPress security, with links to more details:

  1. WordPress is not secure.
  2. Nobody wants to hack my blog.
  3. My WordPress site is 100% secure.
  4. I only use themes and plugins from wordpress.org so they are secure.
  5. Updating WordPress whenever I log in is cool.
  6. Once my WordPress site is setup my job is finished.
  7. I'll just install xyz plugin and that'll take care of security for me.
  8. If I disable a plugin or theme, there is no risk.
  9. If my site is compromised I will quickly find out.
  10. My password is good enough.

Have you caught yourself saying or believing any of these things about your community site? If so (or even if not), you might want to download Vinther's free WordPress security checklist.

Working through the steps in this checklist takes about five hours total -- but that time is well worth the effort if you want to protect your site and make sure it stays protected. The tasks don't all have to be completed in one sitting; you can do them over a few days if you like.

Subscribe to the Newsletter

Amy Gahran

Amy Gahran is a journalist, editor, trainer, entrepreneur, strategist, and media consultant based in Boulder, Colorado. In addition to writing
Read More

Events
Submit an event

Code/Media 2016 meets in California

February 17, 2016 - February 18, 2016

Code/Media will bring together the most influential minds in media and technology for two days of intimate gatherings and game-changing discussions in Laguna, Niguel, CA. Produced by senior editor Peter Kafka, in conjunction with Kara Swisher and Walt Mossberg, this exclusive conference will get you up close and personal with media heavyweights and the tech innovators who want to get into the ring with them.

IRE Computer Assisted Reporting, March 10-13

March 10, 2016 - March 13, 2016

Join IRE and NICAR in Denver for the annual conference devoted to data journalism at the Denver Marriott City Center. 

SXSW Interactive Festival, March 11-15

March 11, 2016 - March 14, 2016

The 23rd annual SXSW Interactive Festival returns to Austin from Friday, March 11 through Tuesday, March 15.

Sunshine Week, March 13-19

March 13, 2016 - March 18, 2016

Join us in the annual nationwide celebration of access to public information and what it means for you and your community. Open government is good government.

The Collaboration Culture Symposium

March 21, 2016 - March 22, 2016

A new “collaboration culture” is emerging and collaboration is becoming the go-to strategy to make things work in the media industries. Join The Collaboration Culture Symposium at the Donald W.

ONA-Poynter present Leadership Academy for Women in Digital Media

Mon, May 2, 2016 8:00 am

The interactive, five-day program for 28 U.S.-based participants will focus on critical leadership skills specific to digital media for the industry’s next generation of women leaders. The tuituion-free program will be held at Poynter’s campus in St. Petersburg, Florida.


Submit an event

Good, bad or even useful data? Help for sorting it all out

By Nancy Yoshihara
2/8/2016 | 11:11 am GMT

Dataproofer is a new, free tool designed to help journalists verify data.  The desktop app was developed by the news...

Amber is here to help you fight link rot and preserve content

By Nancy Yoshihara
1/30/2016 | 10:00 pm GMT

The new free software tool is designed to help bloggers and website owners prevent broken links by taking a snapshot...