WordPress 2.8.5: Hardening Release

Internet, Open Source, Security, WordPress 1 Minute

WordPress 2.8.5 has been released. This is another security release, just like the 2.8.4 release. As with the last release, the SANS Internet Storm Center has another post about the latest WordPress.
[ad]
The WordPress team decided to call 2.8.5 a hardening release because it includes some security features that were back-ported to 2.8.x from the upcoming 2.9 series. Below are some details about 2.8.5 from the WordPress development blog:

As you know over the past couple of months we have been working on the new features for WordPress 2.9. We have also been working on trying to make WordPress as secure as possible and during this process we have identified a number of security hardening changes that we thought were worth back-porting to the 2.8 branch so as to get these improvements out there and make all your sites as secure as possible.

The headline changes in this release are:

  • A fix for the Trackback Denial-of-Service attack that is currently being seen.
  • Removal of areas within the code where php code in variables was evaluated.
  • Switched the file upload functionality to be whitelisted for all users including Admins.
  • Retiring of the two importers of Tag data from old plugins.

You can download WordPress 2.8.5 here.

0

Well, now what?

Work with Me

I'm available for hire and always taking new clients, big and small. Got a project or an idea you'd like to discuss? Startup plan but no developer to make it happen? Just get in touch, I'd love to see if I can help you out!

Leave some Feedback

Got a question or some updated information releavant to this post? Please, leave a comment! The comments are a great way to get help, I read them all and reply to nearly every comment. Let's talk. 😀

Longren.io is proudly hosted by DigitalOcean

DigitalOcean

Published by Tyler Longren

Hi! I'm Tyler Longren, a freelance web developer. I'm a father to two beautiful daughters and a car stereo enthusiast. I like PHP, JavaScript, WordPress, Git, HTML5 & CSS3, and other neat things. I really love the open source community, too. You can find me on twitter or Google+, and Github. This is my personal blog and that's it!

Published

2 thoughts on “WordPress 2.8.5: Hardening Release

  1. Saw this update Yesterday and the first thing which I did
    was Backup my Db and updated the wordpress. Though wordpress are releasing very quick update.. 😐

    0
    Reply

  2. This is a nice release from WordPress. DDOS attack via trackback relief is nice.I
    am eagerly waiting for the new version WordPress 2.9. It will be interesting to see
    what will come out from the WordPress box to its users.

    0
    Reply

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.