Posts Tagged ‘WordPress’

« Older Entries
Newer Entries »

WordPress 3.2 – it’s time to update

Tuesday, July 5th, 2011

Welcome WordPress 3.2

Welcome WordPress 3.2

July 4th, 2011 WordPress official site announced that WordPress version 3.2 is available for downloads and automatic update directly from older WordPress installations. If you hear somewhere “George Gershwin”, it is not only famous composer and pianist name now. It is name of person whom WordPress 3.2 release is devoted :) . What new features can we find in WordPress 3.2? There are a lot of posts on the Net about it already. WordPress 3.2 was available for public preview in betas and release candidates about a month and we have enough time to become familiar with it already. But one deal to test something somewhere and fully another deal to have it working in production. Amazing thing! In short new features of WordPress 3.2 are: performance improvements, distraction-free writing (full screen post editor regime), admin UI refresh, new default Twenty Eleven theme, WordPress said goodbye to old browsers, e.g. IE 6.0, you can find more links in the admin toolbar.
Read the rest of this entry

Tags: WordPress
Posted in WordPress | No Comments »

Security Warning From WordPress Team

Wednesday, June 22nd, 2011

Security Warning From WordPress Team

Security Warning


Hello, dear readers!
Let me to spread the word of WordPress team in case you don’t read the WordPress development blog. June 21th, 2011, Matt Mullenweg published at WordPress development blog post with “Reset Password” title. You can read full copy below or visit its original page.

“Earlier today the WordPress team noticed suspicious commits to several popular plugins (AddThis, WPtouch, and W3 Total Cache) containing cleverly disguised backdoors. We determined the commits were not from the authors, rolled them back, pushed updates to the plugins, and shut down access to the plugin repository while we looked for anything else unsavory.

Read the rest of this entry

Tags: Security, WordPress
Posted in General, Security, WordPress | No Comments »

edit_dashboard WordPress capability

Sunday, June 19th, 2011

Edit Dashboard WordPress capability

Edit Dashboard

Since version 2.5 WordPress has “edit_dashboard” (Edit Dashboard) capability in its capabilities system. What is the purpose of this capability? Does it forbid logged-in user to remove some widget from the dashboard if he decides that such widget is unneeded to him and wish to hide it using the “Screen Options” link at the top of dashboard screen? Definitely “No”.
If user has “edit_dashboard” capability he has access to the configuration parameters of widgets which included to his dashboard. If widget has some parameters to tune its work, such user is able to change them. Let’s see. Go to WordPress dashboard and move your mouse pointer to the right top corner of the widget box. Let’s take for example a “WordPress Development Blog” widget which is accessible to all logged-in users. Do you look a small down headed arrow? As you may know already it serves to collapse/expand widget box. Move your mouse to the left of that arrow. If you have “edit_dashboard” capability you will see that “Configure” link appears there.
Read the rest of this entry

Tags: capability, Security, WordPress
Posted in WordPress Capabilities | No Comments »

Lockdown WP Admin plugin review

Saturday, June 18th, 2011

Lockdown WP Admin plugin review

Lockdown WP Admin


“Lockdown WordPress Admin” or shortly “Lockdown WP Admin” plugin for WordPress is one of plugins concerned WordPress security enhancement. You can locate it at the WordPress repository. Plugin author is Sean Fisher. Last version available for the moment of writing this review is 1.6.
Lets go and see step by step what this plugin offers to the WordPress adminstrator to make WordPress more secure.
1st, “Lockdown WP admin” hides wp-admin directory from the un-logged-in visitor. Such visitor will get 404 page not found HTTP error in its browser if he requests http://yourblogdomain/wp-admin/ URL.
Read the rest of this entry

Tags: plugins, Security, WordPress, wordpress plugin review
Posted in Security, WordPress | 4 Comments »

User Role Editor 3.1 is published

Friday, June 3rd, 2011

User Role Editor

User Role Editor

Version 3.1 of User Role Editor WordPress plugin is published. New features are:
- add new capability box;
- delete unused capability (except core WordPress capabilities) box;
- assign capabilities direct to user additionally to the role assigned to him;
- PHP4 is not supported by this plugin anymore. Update your site to PHP5 in order to use this plugin and near to release WordPress 3.2 :)
- minor bugs and compatibility with other plugins fixes.
To get more information read these articles:
User Role Editor 3.1. Beta, User Role Editor WordPress Plugin

Tags: WordPress, wordpress plugin
Posted in ShinePHP plugins news, WordPress | 5 Comments »

User Role Editor 3.1 Beta

Sunday, May 15th, 2011

User Role Editor

User Role Editor


User Role Editor WordPress plugin version 3.1 is ready for beta testing. You are welcome! What new things are added to plugin functionality:
- add new capability box;
- delete unused capability (except core WordPress capabilities) box;
- assign capabilities direct to user additionally to the role assigned to him;
- minor bugs and compatibility with other plugins fixes.
I plan to publish it at wordpress.org plugins repository in a week or two period of beta testing.
Read the rest of this entry

Tags: Security, WordPress, wordpress plugin
Posted in ShinePHP plugins news, WordPress | 5 Comments »

Is unfiltered_html capability deprecated?

Saturday, February 19th, 2011

Is WordPress unfiltered_html capability deprecated

unfiltered_html

Eberle13 (“User Role Editor” plugin user) asked me a question, why ‘unfiltered_html’ user role capabiltiy does not work under WordPress multi-site? I found the reason and posted answer to the eberle13′s question at wordpress.org.
I curiously played with my test WordPress 3.1 Release Candidate 4 multi-site installation. This problem with using ‘unfiltered_html’ capability still exists in it. I decided to make special post about that as it could be interesting someone else. I tried to insert mordern HTML5 tag ‘<video>’ into post without success – it was removed by WordPress every time I saved the post changes inspite of I made that under account with ‘Editor’ role privileges. ‘Editor’ role has ‘unfiltered_html’ capability turned on by default. What is the reason? Why this capability failed to work?
Read the rest of this entry

Tags: capability, Security, User Role, WordPress
Posted in Security, WordPress | No Comments »

« Older Entries
Newer Entries »