Spam in the site feed - sorry…..
Thanks to nonprofitgirl for turning me on to a troubling security issue - apparently a bunch of Spam links got into the end of my last post. I went back to the post editor and sure enough, there in the HTML is huge list of Spam links. IN THE CODE. I have no idea how they got there, if they show up at the end of this one, then my Wordpress is compromised, which would be unfortunate. I’ll have to look into this issue a little.
April 24th, 2008 at 1:41 pm
Not sure how to say this politely - but you are running an ancient version of WordPress with a couple of known security issues. Yes, it’s a pain to keep updating, but you really want to get to something more recent. How about WordPress 2.5?
And given that you are skipping a couple of versions, make a quick data base backup and remember to first turn off and then update your plugins as well…
April 24th, 2008 at 1:58 pm
Yeah, thanks. Given that I haven’t had a chance to post much lately, upgrading WP hasn’t been at the top of my list, but it is now. Plus, I’ve been waiting for 2.5 to go to full release. Now I have no excuse. And yes, since it will require a backup of the DB as well as an audit pass through the (not very many) plugins that I use - it’s a task that’s best done over a weekend. Updating’s actually pretty easy since Dreamhost has a one-click thing for updates, that is, unless something breaks.
April 25th, 2008 at 1:37 pm
And - perfect timing - 2.5.1 was just released that fixes yet another security issue - but one that you are unlikely to hit as it only affects blogs with open account signup. But it also fixes a bunch of unrelated bugs - I’m sure Dreamhost will allow you to update to that right away.
There are some very good plugin compatibility lists out there, the official one is http://codex.wordpress.org/Plugins/Plugin_Compatibility/2.5 - most likely all you need to do is upgrade the plugins (I’d do that first, before you upgrade WP).
Let me know if you need / want help… :-)