westi on wordpress

the often forgotten diary of a wordpress developer

Contact
Test

Search for:

Tag Archives: wordpress-2.6

making the default install more secure

June 20, 2008wordpresssecurity, wordpress-2.6Peter Westwood

WordPress 2.6 will be more secure out-of-the box including better support for running the admin over SSL and changes to disable the remote publishing protocols by default.

We have choosen to disable Atom Publishing Protocol and the variety of XML-RPC protocols by default as they expose a potential to be a security risk. So from WordPress 2.6 onwards you will need to go into the Settings->Write page and enable them individually if you want to use them.

About

Hi, I'm Peter Westwood one of the Lead Developers of WordPress.

This is my blog for news about the development of WordPress.

Links

Moblog
My Main Blog
My Wishlist
Patches Welcome

Pages

Contact
Test

app
atom
avatar
ays
beta
bug hunt
canonical plugins
changelog
cleanup
community
core plugins
cron
css
debug-bar
diffstat
digest
extend
graphs
gzip
hashing
health check
i18n
japanese
jQuery
kses
media library
moveable type
mysql
nonce
opml
patches welcome
performance
phpass
phpdoc
plugin
plugin installer
plugins
plugin updater
post by email
refactor
review
sanisation.
security
sql
statistics
stats
stylesheet
subversion
tab index
taxonomy
test
theme
themes
tinymce
translation
wlw
wordcamp
wordcamp-uk
wordcampuk
wordpress-2.3.1
wordpress-2.3.2
wordpress-2.3.3
wordpress-2.4
wordpress-2.5
wordpress-2.6
wordpress-2.6.5
wordpress-2.8.1
wordpress-2.9
wordpress-2.9.1
wordpress-3.0
wordpresz
wp-mail
xml
xmlrpc
xss

WordPress stuff from my other blog.

Proudly Automatic Updates for WordPress
The awesome Siobhan
A decade gone, more to come
Fixing your unit tests
Horsham Coworking
Scaling WordPress @ #wpldn
My ethos for sharing code
Understanding complex RegEx
Always show admin bar
Switching from Manual to Automattic

I’m tweeting this

Tweets by westi

Blog Stats

34,785 hits