Peter Westwood » Security

May 2008
M	T	W	T	F	S	S
« Mar
	1	2	3	4
5	6	7	8	9	10	11
12	13	14	15	16	17	18
19	20	21	22	23	24	25
26	27	28	29	30	31

WordPress 2.3.2 has hit the streets as a late christmas early new years present for you all it include a security fix. You can read a more detailed look at the changes over on my other blog. (0) (Security, xss)
WordPress 2.3.1 has hit the streets including one security fix. You can read a more detailed look at the changes over on my other blog. (0) (Security, xss)
This just made me laugh out loud. (2) (lol, xkcd)

{{in the early morning}} October 6th, 2007 › Improving the WordPress Generator

For WordPress v2.4 I have introduced some changes to the way in which all of the generator tags present in the output from WordPress are generated.

The generator tags/comments were previously hard coded in the following items: Theme’s header.php, all of the feed generation files, the export generation process. I have now centralised the generation process into three functions in wp-includes/general-template.php: get_the_generator, the_generator and wp_generator. The new functions provide an array of filters to enable you to modify the generator output or remove it completely if you so wish. The standard WordPress xhtml generator tag is now generated on the wp_head hook rather than needing to be hard coded into the themes files - this does mean that themes with a generator tag in them will now have two but it does reduce the number of things a theme author need to remember to include in the theme files.

For example, if you are creating a HTML theme rather than an XHTML theme then you will want to add the following to your themes functions.php file which will ensure that the default generator tag output by WordPress on the wp_head hook is the HTML one:


function i_want_html_generator()
{
return 'html';
}
add_filter('wp_generator_type','i_want_html_generator');

Another use of the newly available filters is, for example, to enable you to hide the fact that your site is running WordPress or to mask the version of WordPress that you are running. In order to do this the new functions have a variety of filters available. As we have already seen there is a filter to enable you to determine the type of generator output in your theme, the other filters available are: the_generator, get_the_generator_$type where $type is the name of the specific generator type you want to filter/hide. You can hide all of the generators on your blog with one simple plugin containing the following code:


function i_want_no_generators()
{
return '';
}
add_filter('the_generator','i_want_no_generators');

If you want to read more about the reasons behind these changes then please see the related trac tickets, #4803 and #5085, or read the code itself in the changeset [6195].

Read 9 Comments

Well it looks like I have some new responsibilities! I’ll try not to break anything too soon. (0)
As seen on wp-hackers:
If you are running 2.1.1, or knows someone who is, I would recommend upgrading to 2.1.2 as soon as possible. It is now available at http://wordpress.org/download/ The md5 of the tar.gz is b1ae0c152e60300cba8c40c030baafd4.
(1)
WordPress v2.0.6 has been released and includes a number of bug fixes along with a couple of security updates. Please take the 5 minutes it takes to upgrade! (0)

{{just before lunchtime}} October 28th, 2006 › WordPress 2.0.5-Ronan Released.

The latest update to the stable branch of WordPress has been released. This update includes a large number of bug fixes and some security fixes. Those of you interested in a sumary of the updates can read through Mark’s blog post which details the bigger fixes. Those of you interested in a simple upgrade using a set of changed files or a diff file can head over to another of Mark’s blog posts which provides these.

Hopefully this will be the last release on the 2.0 stable branch before WordPress 2.1 is released later this year.

Comment on this post

28 queries. 0.870 seconds. Powered by WordPress. This blog is protected by Spam Karma 2: 208537 Spams eaten and counting...