[Hidden-tech] Wordpress Newbie Question

[Daniel Lieberman]

Thanks for the good advice, Mark!

Daniel Lieberman
Consulting for the New Millennium -
I Speak Geek So You Don't Need To


413 489 1818


On Sun, Apr 11, 2010 at 4:46 PM, Mark Firehammer <Mark at techeffective.net>wrote:

>  Excellent! Happy to hear it!
> While were on the topic, Wordpress has known vulnerabilities that can
> easily be secured if you know what you're doing.
>
> *Here is a list of must do items:*
>
>    1. Have the latest stable version of WordPress installed. ( I recommend
>    vers.2.8.4. right now.)
>    2. Change you DB table prefix to something other than the default of *
>    wp_*.
>    3. Hide Your WordPress version.
>    4. Make sure WordPress DB Errors are turned off.
>    5. Remove WP ID META tag from WordPress core
>    6. Do *not *have a user called "admin".
>    7. Make sure.htaccess exists in wp-admin/
>
> There are a number of plugins that can help you do these things.  I like "
> *WP Security Scan*"
>
> Worpress is popular and so represents a large target for malicious people.
> They scan for sites that have the default configurations that are really
> meant for development states only.
> Avoid the pain, suffering, embarrassment etc. of a hacked site and take the
> necessary steps to block their entry.  You will get hacked eventually is you
> don't secure your site. The attacks are automated, so they find you if
> you're live and advertising your defaults!
>
> I've done this process many times, and it takes about 15 for a brand new
> install, longer if your DB has lots of additional tables and lots of data.
>
>
> Happy to help if you need it.
>
> Mark Firehammer
>
> .
>
>   <http://techeffective.net/booknow.htm>
> *Mark Firehammer*
> *413 303 0315*
> *SkypeID:  *Compatikey
> *Website:* http://techeffective.net
> *Facebook: *Profile <http://www.facebook.com/home.php#!/firehammer>
> *Links:*
> Free Support <http://techeffective.net/free_support.htm>
> Remote Support <http://techeffective.net/remote_support2.htm>
>
>
>  ------------------------------
> *From:* lieberman.daniel52 at gmail.com [mailto:lieberman.daniel52 at gmail.com]
> *On Behalf Of *Daniel Lieberman
> *Sent:* Saturday, April 10, 2010 11:40 PM
> *To:* Mark Firehammer
> *Cc:* hidden-discuss at lists.hidden-tech.net
> *Subject:* Re: [Hidden-tech] Wordpress Newbie Question
>
> Thanks, my hosting company's tech support has walked me thru making the
> desired change. All is well now!
>
> Daniel Lieberman
> Consulting for the New Millennium -
> I Speak Geek So You Don't Need To
>
>
> 413 489 1818
>
>
> On Fri, Apr 9, 2010 at 5:13 PM, Mark Firehammer <Mark at techeffective.net>wrote:
>
>>  You shouldn't have to start over.
>> the "blog." part of the install location represents a subdomain, and
>> domain pointers are used to create those. Your server control panel
>> probably gives you full control of those.
>> The WordPress installation itself, is no doubt installed in a folder, or
>> in the root position of your Web server.
>> To verify that, look for the following three folders.
>> wp-admin
>> wp-content
>> wp-includes
>> These are the first level folders of a wordpress install.
>>
>> If they are in the root position of your server, meaning not in
>> a another folder,  that's where your blog is installed.
>> If they're inside a folder that's where your blog is installed.
>>
>> And the subdomain pointer is simply directing traffic to that blog
>> installation. Here's an example
>>
>> The Web Server root position would be:  (no sub folders is the web root)
>> /
>> The WordPress installation folder if it's not in the root position could
>> be:
>> /Blog/
>>
>> The subdomain pointer in your domain control panel accomplishes this:
>>
>> The content meant to found any traffic addressed here:
>> http://blog.yourdomain.com
>> Can be found on the server here:
>> /blog/
>>
>> Email, in most cases, has nothing to do with subdomains.
>>
>> That's it!
>>
>>   <http://techeffective.net/booknow.htm>
>> *Mark Firehammer*
>> *413 303 0315*
>> *SkypeID:  *Compatikey
>> *Website:* http://techeffective.net
>> *Facebook: *Profile <http://www.facebook.com/home.php#!/firehammer>
>> *Links:*
>> Free Support <http://techeffective.net/free_support.htm>
>> Remote Support <http://techeffective.net/remote_support2.htm>
>>
>>
>>  ------------------------------
>> *From:* hidden-discuss-bounces at lists.hidden-tech.net [mailto:
>> hidden-discuss-bounces at lists.hidden-tech.net] *On Behalf Of *Daniel
>> Lieberman
>> *Sent:* Friday, April 09, 2010 4:12 PM
>> *To:* hidden-discuss at lists.hidden-tech.net
>> *Subject:* [Hidden-tech] Wordpress Newbie Question
>>
>>   We just started a new website. We weren't paying close attention and
>> the one-click install put our blog at blog.ourdomain.com instead of
>> ourdomain.com as we wanted.
>>
>> The question is, if we use the one-click remove feature on the hosting
>> panel, will we have any issues with our email setup? The email is set up as
>> NAME at ourdomain.com, and the mx record points to a comcast server.
>>
>> We don't want to mess anything up, but since we haven't done anything on
>> the website yet, we thought the simplest thing would be to remove the
>> existing installation and reinstall it where we want it.
>>
>> Any help very gratefully accepted.
>>
>>
>> Daniel Lieberman
>> Consulting for the New Millennium -
>> I Speak Geek So You Don't Need To
>>
>>
>> 413 489 1818
>>
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.hidden-tech.net/pipermail/hidden-discuss/attachments/20100412/0ea08d7b/attachment-0001.html 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: image/jpeg
Size: 35677 bytes
Desc: not available
Url : http://lists.hidden-tech.net/pipermail/hidden-discuss/attachments/20100412/0ea08d7b/attachment-0001.jpe