Your SlideShare is downloading. ×
PodCamp Ohio 2009
Upcoming SlideShare
Loading in...5
×

Thanks for flagging this SlideShare!

Oops! An error has occurred.

×
Saving this for later? Get the SlideShare app to save on your phone or tablet. Read anywhere, anytime – even offline.
Text the download link to your phone
Standard text messaging rates apply

PodCamp Ohio 2009

667

Published on

Internet Security for Bloggers and Podcasters

Internet Security for Bloggers and Podcasters

Published in: Technology, Business, Sports
0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total Views
667
On Slideshare
0
From Embeds
0
Number of Embeds
0
Actions
Shares
0
Downloads
2
Comments
0
Likes
0
Embeds 0
No embeds

Report content
Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
No notes for slide

Transcript

  • 1. Internet Security for Bloggers and Podcasters
    Brian Lockrey
    http://AssistSocial.com
    @AssistSocial
  • 2. Overview
  • Blog Security: WordPress
    • WordPress Security: Google 11,800,000
    • 9. Very Popular Platform
    • 10. Prime Target for Hackers
    • 11. SEO: Search Engine Optimization
    • 12. Traffic Redirection
    • 13. Links to Pharmacy / Adult sites
    • 14. Graphics Replacement
    • 15. Ad / Affiliate Redirection
    • 16. Many others…
  • Blog Security: WordPress
    • You are on their hit list!
    • 17. Game… Like you play Guitar Hero…
    • 18. Always run the latest versions
    • 19. Backdoor entry points
    • 20. Passwords for users are downloaded
    • 21. Open Source Software
    • 22. Backups are essential
    • 23. Frequent updates are essential
    • 24. Many others…
  • Blog Security: WordPress
    • Monitor log files
    • 25. Block probers if you can
    • 26. “Powered by WordPress”
    • 27. Private site or hosted?
    • 28. WordPress.com
    • 29. What is your Time worth?
    • 30. What is your Blog worth?
    • 31. Delete meta tag that displays WP version
  • Blog Security: WordPress
    • Turn off Open Registration
    • 32. WP 2.5+ has better password encryption
    • 33. Use a Strong admin password!
    • 34. Limit Search on your server
    • 35. Protect Directories from public browsing
    • 36. Drop the version string in Meta Tags
  • Blog Security: WordPress
    • Limit wp-admin access by IP address
    • 37. Protect using .htaccess
    • 38. Protect your MySQL database
    • 39. Use SSH/Shell access, not FTP
    • 40. Use SFTP uploads if you can
    • 41. Use VPN if you can
    • 42. Never use Telnet!
  • Hosting Platform?
    • Use Linux / Apache if you can
    • 43. Do NOT use Microsoft Windows
    • 44. AutomatticPollDaddy migration
    • 45. PollDaddy .NET / SQL to PHP/MySQL
    • 46. Automattic has 1,200 servers in use
    • 47. Per Matt’s Blog - Stable and Scalable
  • WordPress: Internals
  • WordPress: Internals
    • PHP – Must be kept updated
    • 54. MySQL – Must be kept updated
    • 55. OpenSource Software more secure
    • 56. Security Through Transparency
    • 57. Millions of people looking at it
    • 58. Often fixed quickly
  • WordPress: Look For?
    • The Obvious
    • 59. PlugIns that you did not install
    • 60. header.php changes
    • 61. Search Engine redirection (hard to detect)
    • 62. Spammers may hide text
    • 63. View HTML Source Code
    • 64. Google records your “bad” content
  • WordPress: Look For More?
    • New Directories
    • 65. Your RSS feeds
    • 66. Search Engines
    • 67. Google = link:twittgroups.com
    • 68. Digg, StumbleUpon
    • 69. Many others…
  • If You Get Hacked?
    • Just a matter of time
    • 70. All systems suspect
    • 71. Change ALL passwords
    • 72. Backup databases
    • 73. Update software quickly
    • 74. Shut down site. Maybe.
    • 75. Email to security@wordpress.com
  • WordPress: Plugins / Widgets
    • Only use what you can trust
    • 76. Watch for suspicious activity
    • 77. WP Security Scan
    • 78. File Permissions
    • 79. Database Security
    • 80. XSS vulnerabilities
    • 81. Many others…
  • Comment Boxes / Widgets
  • Advertising On Your Blog
    • Google AdWords / AdSense
    • 88. Others ???
    • 89. Affiliate Programs
    • 90. Be Careful…
    • 91. WordPress Plugins
    • 92. $5000 per Week? Slim Chance
    • 93. Should you $$$ to Advertise?
  • Podcasts
    • Reliable Hosting Service
    • 94. Your XML feeds
    • 95. Search Engines
    • 96. Password Protect the Content Folders
    • 97. Will keep out the Google Spiders
  • Best Practices
    • Software Up To Date!
    • 98. Backup Databases
    • 99. Directory Protection
    • 100. File Protection Codes
    • 101. Remove Install Files
    • 102. Remove Version #
    • 103. Layered Software
    • 104. Keep Your Client Clean!
    • 105. Don’t use Microsoft Windows Server!
  • Summary
  • Questions?@AssistSocial

×