WP Security

Why take up storage space on your server with backups, when a WP security plugin can automatically emailed backups to your Gmail online email account?

John wants to know if you are actively trying to catch Spammers, or are you just sitting on the sidelines, waiting for somebody else to do all the work?

You do not have control of your blog security unless you have at least attempted to take control by installing a number of different anti-Bot protection plugins.

Spam blockers work only when a new comment is submitted. Plugins like Bad Behavior are on the job whenever a bot attempts to crawl your blog.

In a secured Wordpress blog information should be given out only on a need to know basis. Certainly your brand new registered users should not have access to your WP Dashboard.

John H. Gohde muses: “When does obsessing over security for your blog do more harm than good?”

Registered users of your blog, and especially new subscribers should not have access to which version of Wordpress your blog is running. Wordpress version update nag reminders tell potential hackers that you are not running the latest version of Wordpress.

While security experts will bore you with their discussion of username enumeration vulnerabilities in Wordpress, there is actually very little that one can do in this area beyond installing some good plugins.

Hackers have bots crawling the Web looking for blogs running specific versions of Wordpress. But apparently, Wordpress is more interested in claiming credit for creating your blog, then they are in protecting bloggers from this well known security issue.

The naked truth is that your fellow SEMs are using advanced Black Hat techniques to make your blogging experience as miserable as possible. Why? Because they view comment spam as being part of their SEM job description.