Not a member? Sign up

Using WordPress? Checklist helps keep it secure

by: Amy Gahran |

WordPress is a very popular content management system for community news/info sites. But since it's free and open source, it's also a popular target for hackers. Here are some common WordPress security myths, and a checklist for securing your WordPress installation.

WordPress security expert Anders Vinther published a list of 10 common myths about WordPress security, with links to more details:

  1. WordPress is not secure.
  2. Nobody wants to hack my blog.
  3. My WordPress site is 100% secure.
  4. I only use themes and plugins from wordpress.org so they are secure.
  5. Updating WordPress whenever I log in is cool.
  6. Once my WordPress site is setup my job is finished.
  7. I'll just install xyz plugin and that'll take care of security for me.
  8. If I disable a plugin or theme, there is no risk.
  9. If my site is compromised I will quickly find out.
  10. My password is good enough.

Have you caught yourself saying or believing any of these things about your community site? If so (or even if not), you might want to download Vinther's free WordPress security checklist.

Working through the steps in this checklist takes about five hours total -- but that time is well worth the effort if you want to protect your site and make sure it stays protected. The tasks don't all have to be completed in one sitting; you can do them over a few days if you like.

Subscribe to the Newsletter

Amy Gahran

Amy Gahran is a journalist, editor, trainer, entrepreneur, strategist, and media consultant based in Boulder, Colorado. In addition to writing
Read More

Events
Submit an event

Summer 2015 Journalism Ethnics Fellowship

May 24, 2015

The May 24-June 7, 2015 program is sponsored by Fellowships at Auschwitz for the Study of Professional Ethics in collaboration with The Museum of Jewish Heritage—A Living Memorial to the Holocaust. Applications are being accepting for a fellowship, which uses the conduct of journalists during the Holocaust and in Nazi Germany as a launching point for an intensive two-week summer program on contemporary journalism ethics.

IRE 2015 Annual Conference, June 4-7

June 4, 2015

The Investigative Reporters & Editors annual conference in Philadelphia attracts the best in the business and offers more than 150 panels, hands-on classes and special presentations about covering business, public safety, government, health care, education, the military, the environment and other key beats.

2015 Ippies Journalism Awards Ceremony

Thu, June 11, 2015 12:00 am

The Ippies is a journalism awards ceremony to honor reporting in English and languages other than English by the ethnic and community press.

Allied Media 2015 Annual Conference, June 18-21

June 18, 2015

Save the date for the 17th annual Allied Media Conference, June 18-21, 2015 in Detroit.

New Civics Practitioners Conference

Wed, June 24, 2015 12:00 am - Thu, June 25, 2015 12:00 am

New Civics Practitioners Conference to Help Educators Support the Next Generation of Civically Active Youth

Philanthropy Southwest 2015 Annual conference

October 22, 2015

Save the Date! Philanthropy Southwest's 67th Annual Conference will be held in Santa Fe, New Mexico.

Submit an event

Verification handbook: Uncovering in-depth reporting techniques

By Nancy Yoshihara
4/19/2015 | 10:00 pm GMT

Examples of using user-generated content and open source information for in-depth reporting can be found in the new Verification Handbook for...

24% of teens go online "almost constantly" on their smartphones

By Nancy Yoshihara
4/13/2015 | 10:07 pm GMT

Mobile devices have become a primary driver of teen Internet use with 24% of teenagers reporting going online “almost constantly”...