Not a member? Sign up

Using WordPress? Checklist helps keep it secure

by: Amy Gahran |

WordPress is a very popular content management system for community news/info sites. But since it's free and open source, it's also a popular target for hackers. Here are some common WordPress security myths, and a checklist for securing your WordPress installation.

WordPress security expert Anders Vinther published a list of 10 common myths about WordPress security, with links to more details:

  1. WordPress is not secure.
  2. Nobody wants to hack my blog.
  3. My WordPress site is 100% secure.
  4. I only use themes and plugins from so they are secure.
  5. Updating WordPress whenever I log in is cool.
  6. Once my WordPress site is setup my job is finished.
  7. I'll just install xyz plugin and that'll take care of security for me.
  8. If I disable a plugin or theme, there is no risk.
  9. If my site is compromised I will quickly find out.
  10. My password is good enough.

Have you caught yourself saying or believing any of these things about your community site? If so (or even if not), you might want to download Vinther's free WordPress security checklist.

Working through the steps in this checklist takes about five hours total -- but that time is well worth the effort if you want to protect your site and make sure it stays protected. The tasks don't all have to be completed in one sitting; you can do them over a few days if you like.

Subscribe to the Newsletter

Amy Gahran

Amy Gahran is a journalist, editor, trainer, entrepreneur, strategist, and media consultant based in Boulder, Colorado. In addition to writing
Read More

Submit an event

Periscope Community Summit

January 14, 2016 - January 17, 2016

Scopers from all over the world will gather at the San Francisco summit to celebrate and share knowledge about community, social and live streaming.

IRE Computer Assisted Reporting, March 10-13

March 10, 2016 - March 13, 2016

Join IRE and NICAR in Denver for the annual conference devoted to data journalism at the Denver Marriott City Center. 

SXSW Interactive Festival, March 11-15

March 11, 2016 - March 14, 2016

The 23rd annual SXSW Interactive Festival returns to Austin from Friday, March 11 through Tuesday, March 15.

Sunshine Week, March 13-19

March 13, 2016 - March 18, 2016

Join us in the annual nationwide celebration of access to public information and what it means for you and your community. Open government is good government.

Submit an event

Is that user submitted photo authentic? Try a new verification tool

By Nancy Yoshihara
11/16/2015 | 10:00 pm GMT

If you’ve received a user-generated photo that looks almost too good to be real, the Verified Pixel Project can help...

The law beyond the First Amendment for media startups

By Nancy Yoshihara
11/9/2015 | 10:00 pm GMT

Any media entrepreneur—for-profit or nonprofit –will find “Law and Media Startups” a useful guide about legal issues involved in operating...