Quick jump menu:

DSA Media News and Information

WordPress 3.0.2 – Security Update

On November 30, Automatic released the latest version of their WordPress CMS software which they described as “a mandatory security update for all previous versions”. Along with a number of bug fixes and general security enhancements, this release fixes a security issue that would allow a malicious author-level user to gain greater control of the web site. Their advice is that all users should update their installations even if they do not have untrusted users and, as per our terms, we require all WordPress users hosted by us to update to this version as soon as possible.

PHP and MySQL Support in WordPress

Support for PHP 4 and MySQL 4 is to be dropped after the release of WordPress 3.1, due October 2010. Users without at least PHP 5.2 and MySQL 5.0.15 will then be able to upgrade to newer versions from WordPress 3.2 onwards.

Our hosting clients can rest assured that we already meet these minimum requirements and that their WordPress sites will continue to work with the expected future updates. If you’re not sure whether your web hosting meets the stated minimum requirements you can install the Health Check plugin available from the WordPress Plugins Repository.

On a related note – it’s expected that both Drupal and Joomla will also be adopting these same minimum standards with their new releases expected later this year.

WordPress 3

On June 17 Automattic proudly announced the release of WordPress 3, with 1,217 bug fixes and feature upgrades that have been worked on by a team of over 200 developers. Some of the key points to note are:

  • WordPress and WordPress MU have been merge to bringe multi-site functionality to the general release version;
  • A new custom menu management feature, allows creation of custom menus combining posts, pages, categories, tags, and links for use in theme menus or widgets;
  • New custom header and background APIs;
  • The ability to set your own admin username and password during the installation process;
  • A bulk update feature for themes and plugins;
  • Updates to developer tools such as JQuery, Json, Scriptaculous and SWFobject.

As with all new releases containing security updates we strongly recommend that WordPress users on our servers upgrade to the latest version as soon as possible. And we make this a strict requirement where upgrading patches any security issue that could place other user accounts, or the entire server, at risk of attack. This requirement is also placed on any other off-the-shelf software, such as Joomla, CMSimple or Moveable Type.