Many of the advanced web hosting users will be rejoicing by the announcement made by the WordPress team about their back-porting security hardening changes for the 2.8 branch. The main motive of the WordPress team behind this development is to help the users so that they can make their sites as safe as possible. The decision was made during the features development process for WordPress 2.9.
The most important change worth mentioning is a fix for the Trackback Denial-of-Service attack that has recently been seen along with the removal of areas within the code where php code in variables was analyzed.
The file upload functionality has been included for all users including administrators and is “white listed” whereas the two importers of Tag data from old plugins have been retired.
Peter Westwood from the WordPress team said, “We would recommend that all sites are upgraded to this new version of WordPress to ensure that you have the best available protection.” He wrote this on a company blog. During the last month, the organization revealed that a worm was making rounds on an old, – version of WordPress – a news which might interest those users who are using web hosting packages.
