Alex Concha » backup http://alex.buayacorp.com Blog focused on web security, computer science and work experiences Fri, 25 Sep 2009 22:21:03 +0000 http://wordpress.org/?v=2.8.4 en hourly 1 Insecure Way to Upgrade to WordPress 2.3 http://alex.buayacorp.com/insecure-way-to-upgrade-to-wordpress-23.html http://alex.buayacorp.com/insecure-way-to-upgrade-to-wordpress-23.html#comments Tue, 25 Sep 2007 14:28:50 +0000 alex http://alex.buayacorp.com/insecure-way-to-upgrade-to-wordpress-23.html As you may already know, WordPress 2.3 has been released yesterday and many folks around the world are sharing their upgrade experiences. The one that caught my attention was the “5 Step Failsafe upgrade for WordPress” published at BlogSecurity.

Not offense intended but I wonder why a blog dedicated to security recommends an insecure backup plugin that can allow anyone to download database backups or any file from the file system.

If you are planning to upgrade your WordPress blog, just try to do manual steps because many backup plugins are very insecure — if you still want to use some of them, deactivate it when the upgrade process is completed.

]]> http://alex.buayacorp.com/insecure-way-to-upgrade-to-wordpress-23.html/feed 8