Disabling the update nag of wordpress

November 30, 2008

WordPress’ core update nag is quite the useful thing, I’ll usually know before it shows that there’s an update, but a lot of people won’t. If you don’t know what I mean with core update nag, it’s this thing: WordPress x.x.x is available! Please update now.  The issue is that this thing doesn’t only show to you, it shows to all users of your blog. A better thing to do is add this code to your themes functions.php: if ( !current_user_can( 'edit_users' ) ) { add_action( 'init',... [Read the full story]

Hardening WordPress with htaccess

November 30, 2008

This article will discuss some security techniques to better harden and secure your WordPress blog; this is especially effective in a hosted environment. Let me start by saying this guide may not be for everyone, and chances are that it may break some third party plugins and templates. It is not all doom and gloom; if you are able to use this guide it will significantly increase the security of your blog. It will prevent many attacks including brute force attacks, plugin enumeration, directory listings, sensitive information... [Read the full story]

Improving WordPress Security In Easy Steps

November 29, 2008

Whilst WordPress is a great publishing tool it does have it’s challenges and one of my greatest concerns is always security. The WordPress team of developers do a good job of releasing regular fixes but as always hackers inevitably find loopholes and exploits in each new version. Left in its default state WordPress can prove particularly vulnerable so here is a list of simply steps you can make to ensure your WordPress blog or website is hacker proof. Delete the WordPress version information that appears in the header... [Read the full story]

Creating Two-Tiered Conditional Navigation in WordPress

November 29, 2008

If you want a common navigational scheme, with parent pages on top and child pages (if they exist) on bottom in wordpress. Then we’ll need code follow to help us: query the page determine if there are child pages properly highlight both the .current_page_parent and .current_page_item links. Here is the PHP: <ul id="nav"> <?php wp_list_pages('title_li=&depth=1'); ?> </ul> <?php if($post->post_parent) $children = wp_list_pages("title_li=&child_of=".$post->post_parent."&echo=0"); else $children... [Read the full story]

How to Hide WordPress version

November 29, 2008

In order to secure your blog, is it a good thing to hide the meta version appearing within the and html tag of your blog. Since WP 2.5, the version is inserted automatically, and can’t be removed as easily at before. Except if you use that hack ! This hack isn’t hard to do at all. Just open the functions.php file from your theme and add the following line of code: remove_action('wp_head', 'wp_generator'); On the above code, We just used the remove_action to remove the wp_generator() function, which prints out WP version.... [Read the full story]