LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for May 23, 2013

An "enum" for Python 3

An unexpected perf feature

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

Attacks against WordPress installations

Attacks against WordPress installations

Posted Sep 10, 2009 13:42 UTC (Thu) by Cato (subscriber, #7643)
Parent article: Attacks against WordPress installations

Part of the problem is that WordPress doesn't distinguish between security updates and new releases - often the only easy fix is to upgrade, or in some cases to take a single file from a new release. WordPress could really do with a more formal security alert process and support model, stating that one or two WP release trains are supported for security updates for a certain amount of time, and providing patches for security only, rather than requiring a full upgrade.

(Log in to post comments)

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds