Security update release for both the 2.1 and 2.0 branches of WordPress now available for immediate download. This update is highly recommend for all users of both branches.
The list of TOP 30 most used WordPress plugins in blogosphere. Lot’s of tried and tested plugins to pimp your blog.
WordPress 2.1 is out and its a major upgrade to what I believe is the best blogging platform. But your decision to upgrade should be based, in part, on whether you can make good use of the new features. (You can learn more about what’s new on the WordPress.org Web site.) But that’s not all that should be considered when making the upgrade decision.
With an improved editor, image uploader, security features, and more. Nice polish added to already great blogging software.
Today we hit the magic number – over 1 million captured spam comments and trackbacks. That’s over 1 million pieces of bogus content that we didn’t have to read, sort through manually and delete. Akismet is a relatively easy plugin to install if you use WordPress, and there are developer tools available if you want to use it on another blogging pla
From Dr. Dave; (permalink)
If you are running WordPress as your blogging platform and if you have been trusting enough to leave User registration enabled for guests, DISABLE IT IMMEDIATELY (in wp-admin >> options: make sure “Anyone can register” is not checked).
Additionally, delete or disable ANY guest account already created by people you are not sure about.
Leaving it open and letting people sign-up for guest accounts on your WordPress blog could lead to incredibly nasty stuff happening if anybody so desired. And trust me I am not exaggerating this. So don’t wait a second to disable this option and please relay the message.
WordPress dev team has been notified a while back and I dare hope they will soon start acting on it, if only by relaying a similar announcement through the official channel (as well as, of course, release a proper patch).
Sorry for the shrill hysterical tone, but this really is a big deal.
[thanks go to geoff_e for discovering and bringing this insane security exploit to my attention]
