*** This bug is a security vulnerability ***
You have been subscribed to a public security bug by Jamie Strandboge
(jdstrand):
Binary package hint: wordpress
This may be just a touch controversial, but I believe it has merit.
The default Wordpress install should be hardened to some extent. The
version number removal, renaming of the admin account, moving wp-admin,
and several other various things that will probably be undone by future
patches are all things that I consider mandatory. The relatively lax,
stock-style Wordpress install available by default in Debian/Ubuntu
needs a great deal of hardening. Leaving this fairly open-ended on
purpose, to keep from being instantly shot down - There is more to
securing this product than just keeping up with security alerts, and
much of it requires some flexibility and/or pre-release tightening of
security settings.
** Affects: wordpress (Ubuntu)
Importance: Undecided
Status: New
--
Hardening Wordpress
https://bugs.launchpad.net/bugs/252579
You received this bug notification because you are a member of Ubuntu Bugs,
which is a direct subscriber.
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
