Thanks for the good advice, Mark! Daniel Lieberman Consulting for the New Millennium - I Speak Geek So You Don't Need To 413 489 1818 On Sun, Apr 11, 2010 at 4:46 PM, Mark Firehammer <Mark at techeffective.net>wrote: > Excellent! Happy to hear it! > While were on the topic, Wordpress has known vulnerabilities that can > easily be secured if you know what you're doing. > > *Here is a list of must do items:* > > 1. Have the latest stable version of WordPress installed. ( I recommend > vers.2.8.4. right now.) > 2. Change you DB table prefix to something other than the default of * > wp_*. > 3. Hide Your WordPress version. > 4. Make sure WordPress DB Errors are turned off. > 5. Remove WP ID META tag from WordPress core > 6. Do *not *have a user called "admin". > 7. Make sure.htaccess exists in wp-admin/ > > There are a number of plugins that can help you do these things. I like " > *WP Security Scan*" > > Worpress is popular and so represents a large target for malicious people. > They scan for sites that have the default configurations that are really > meant for development states only. > Avoid the pain, suffering, embarrassment etc. of a hacked site and take the > necessary steps to block their entry. You will get hacked eventually is you > don't secure your site. The attacks are automated, so they find you if > you're live and advertising your defaults! > > I've done this process many times, and it takes about 15 for a brand new > install, longer if your DB has lots of additional tables and lots of data. > > > Happy to help if you need it. > > Mark Firehammer > > . > > <http://techeffective.net/booknow.htm> > *Mark Firehammer* > *413 303 0315* > *SkypeID: *Compatikey > *Website:* http://techeffective.net > *Facebook: *Profile <http://www.facebook.com/home.php#!/firehammer> > *Links:* > Free Support <http://techeffective.net/free_support.htm> > Remote Support <http://techeffective.net/remote_support2.htm> > > > ------------------------------ > *From:* lieberman.daniel52 at gmail.com [mailto:lieberman.daniel52 at gmail.com] > *On Behalf Of *Daniel Lieberman > *Sent:* Saturday, April 10, 2010 11:40 PM > *To:* Mark Firehammer > *Cc:* hidden-discuss at lists.hidden-tech.net > *Subject:* Re: [Hidden-tech] Wordpress Newbie Question > > Thanks, my hosting company's tech support has walked me thru making the > desired change. All is well now! > > Daniel Lieberman > Consulting for the New Millennium - > I Speak Geek So You Don't Need To > > > 413 489 1818 > > > On Fri, Apr 9, 2010 at 5:13 PM, Mark Firehammer <Mark at techeffective.net>wrote: > >> You shouldn't have to start over. >> the "blog." part of the install location represents a subdomain, and >> domain pointers are used to create those. Your server control panel >> probably gives you full control of those. >> The WordPress installation itself, is no doubt installed in a folder, or >> in the root position of your Web server. >> To verify that, look for the following three folders. >> wp-admin >> wp-content >> wp-includes >> These are the first level folders of a wordpress install. >> >> If they are in the root position of your server, meaning not in >> a another folder, that's where your blog is installed. >> If they're inside a folder that's where your blog is installed. >> >> And the subdomain pointer is simply directing traffic to that blog >> installation. Here's an example >> >> The Web Server root position would be: (no sub folders is the web root) >> / >> The WordPress installation folder if it's not in the root position could >> be: >> /Blog/ >> >> The subdomain pointer in your domain control panel accomplishes this: >> >> The content meant to found any traffic addressed here: >> http://blog.yourdomain.com >> Can be found on the server here: >> /blog/ >> >> Email, in most cases, has nothing to do with subdomains. >> >> That's it! >> >> <http://techeffective.net/booknow.htm> >> *Mark Firehammer* >> *413 303 0315* >> *SkypeID: *Compatikey >> *Website:* http://techeffective.net >> *Facebook: *Profile <http://www.facebook.com/home.php#!/firehammer> >> *Links:* >> Free Support <http://techeffective.net/free_support.htm> >> Remote Support <http://techeffective.net/remote_support2.htm> >> >> >> ------------------------------ >> *From:* hidden-discuss-bounces at lists.hidden-tech.net [mailto: >> hidden-discuss-bounces at lists.hidden-tech.net] *On Behalf Of *Daniel >> Lieberman >> *Sent:* Friday, April 09, 2010 4:12 PM >> *To:* hidden-discuss at lists.hidden-tech.net >> *Subject:* [Hidden-tech] Wordpress Newbie Question >> >> We just started a new website. We weren't paying close attention and >> the one-click install put our blog at blog.ourdomain.com instead of >> ourdomain.com as we wanted. >> >> The question is, if we use the one-click remove feature on the hosting >> panel, will we have any issues with our email setup? The email is set up as >> NAME at ourdomain.com, and the mx record points to a comcast server. >> >> We don't want to mess anything up, but since we haven't done anything on >> the website yet, we thought the simplest thing would be to remove the >> existing installation and reinstall it where we want it. >> >> Any help very gratefully accepted. >> >> >> Daniel Lieberman >> Consulting for the New Millennium - >> I Speak Geek So You Don't Need To >> >> >> 413 489 1818 >> > > -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.hidden-tech.net/pipermail/hidden-discuss/attachments/20100412/0ea08d7b/attachment-0001.html -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: image/jpeg Size: 35677 bytes Desc: not available Url : http://lists.hidden-tech.net/pipermail/hidden-discuss/attachments/20100412/0ea08d7b/attachment-0001.jpe