besides new features and faster code, you might want to patch security holes.
Peter
Thread Starter
jowiii
(@jowiii)
But i heard WordPress is one of the safest blogsystems.
The difference between 2.7.1 and the new versions cant be that big?
Isnt it hard to hack a wordpress 2.7.1 blog?
Thanks for replying.
jowiii
Isnt it hard to hack a wordpress 2.7.1 blog?
this version had an xss vulnerability – so…no, not that hard to hack
any php software is susceptible to attack – that is why updates are important
you should always update to the latest software, as most updates are security fixes, code fixes.
The only time you shouldn’t upgrade is if a plugin isn’t compatible. You should then contact the plugin owner and ask politely about an updated version.
If the plugin isn’t a key resource for your blogm and you could live without it then do upgrade.
All code can be hacked / vulnerable. It just takes a while for someone to find the vulnerability.
WordPress upgrades hardly ever cause problems with plugins, and never with themes
Thread Starter
jowiii
(@jowiii)
Ok. Thanks for good answers!
Is the safety of wordpress 2.7.1 worse than normal cms-systems?
A lot of firms use their own CMS-systems. Is the safety better in such systems?
Roy
(@gangleri)
These companies have to take care of security too. One thing to keep in mind: as soon as a vulnerability is found in any system, including WP (or especially, since it’s so popular), the internet is full of it. Every “script kid” can go to a hacker’s forum and copy a script to hack a blog running that version. Such information excists of all old versions. What is worse, people built crawlers (like Google) to locate websites running old versions and then apply a script using a known vulnerability. It is save to say that when you use an old WP, it is only a matter of time before you get hacked.
Thread Starter
jowiii
(@jowiii)
Thanks a lot, i understand.
Thread Starter
jowiii
(@jowiii)
Hi. One more question:
Can you do anything to reduce the hackerattack?
For example if you dont make posts, comments etc.
Is the system more safe if you dont have any comments?
Maybe you got a website with good advices to prevent hackers?
Jowiii
Keeping the software up to date reduces the hacker attack, I would say.
And not only wordpress, but also Apache, PHP, MySQL, the OS this software runs on, gd, whatever is needed.
Peter
Roy
(@gangleri)
