Best Way to secure WordPress Installation

UPDATE: See bottom of post for a Apache 2.4 upgrade.

As I’ve said before, the key to good security is to be unique and not special. Here’s one particular way to be unique with your wordpress installation.

The management UI
The management UI, thanks to the beauty of php.

Try it out!

If you try to log in to my login page (visit wp-login.php), you’ll be met with a very unhappy looking “Access Denied” message. Basically, my web server is configured to only allow certain IP addresses to connect (and no I won’t tell you what those are…). Continue reading Best Way to secure WordPress Installation

WordPress Thievery: Someone stole an article off my website

Received a comment today (which Akismet handily tagged as spam) asking me to “read more.” It linked to another WordPress site–but I noticed the title was EXACTLY the same as mine.

This is slightly unusual. My titles (in case you haven’t noticed) are characteristically laden with my unique sass and incorrectly appended phrases with the incorrect grammatical use of a colon.

The stolen content
The stolen content

Continue reading WordPress Thievery: Someone stole an article off my website

Avoiding “Google” spam: do what others aren’t

This article was written  when I ran Drupal. I have since switched to WordPress, where Akismet is your friend.

Anybody operating popular CMS or forum software in a publicly accessible venue (like this site, that runs the Drupal CMS) has experienced the effect that Google has had on people’s internet conduct.

Comment-Spam

For those unaware, Google “unbiasedly” ranks websites based upon a patented and entirely secret PageRank algorithm which looks into a number of factors, including the interconnected fabric of internet hyperlinks into their analysis (as opposed to simply looking at the words on the pages). This is what initially separated Google from the pack of search engines back when the internet was first getting started. Continue reading Avoiding “Google” spam: do what others aren’t