{"id":1899,"date":"2006-03-10T18:53:35","date_gmt":"2006-03-10T16:53:35","guid":{"rendered":"https:\/\/www.fullo.net\/blog\/archives\/2006\/03\/10\/wordpress-201-security-tips\/"},"modified":"2006-03-10T23:08:35","modified_gmt":"2006-03-10T21:08:35","slug":"wordpress-201-security-tips","status":"publish","type":"post","link":"https:\/\/www.fullo.net\/blog\/2006\/03\/10\/wordpress-201-security-tips\/","title":{"rendered":"WordPress 2.0.1 security tips"},"content":{"rendered":"

Un piccolo suggerimento di sicurezza se state usando la versione 2.0.1 di WordPress. <\/p>\n

DISABILITATE LA REGISTRAZIONE DEGLI UTENTI DIRETTAMENTE DAL BLOG<\/strong><\/p>\n

in settimana arriver\u00e0<\/del> scaricate la 2.0.2<\/a>…<\/p>\n

ciauz<\/p>\n","protected":false},"excerpt":{"rendered":"

Un piccolo suggerimento di sicurezza se state usando la versione 2.0.1 di WordPress. DISABILITATE LA REGISTRAZIONE DEGLI UTENTI DIRETTAMENTE DAL BLOG in settimana arriver\u00e0 scaricate la 2.0.2… ciauz<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":false,"jetpack_social_options":{"image_generator_settings":{"template":"highway","default_image_id":0,"font":"","enabled":false},"version":2},"jetpack_post_was_ever_published":false},"categories":[9,15],"tags":[107,2248,217,93],"class_list":["post-1899","post","type-post","status-publish","format-standard","hentry","category-php","category-amministrazione-di-sistema","tag-bug","tag-php","tag-security","tag-wordpress"],"yoast_head":"\nWordpress 2.0.1 security tips - Fullo<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.fullo.net\/blog\/2006\/03\/10\/wordpress-201-security-tips\/\" \/>\n<meta property=\"og:locale\" content=\"it_IT\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Wordpress 2.0.1 security tips - Fullo\" \/>\n<meta property=\"og:description\" content=\"Un piccolo suggerimento di sicurezza se state usando la versione 2.0.1 di WordPress. DISABILITATE LA REGISTRAZIONE DEGLI UTENTI DIRETTAMENTE DAL BLOG in settimana arriver\u00e0 scaricate la 2.0.2… ciauz\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.fullo.net\/blog\/2006\/03\/10\/wordpress-201-security-tips\/\" \/>\n<meta property=\"og:site_name\" content=\"Fullo\" \/>\n<meta property=\"article:published_time\" content=\"2006-03-10T16:53:35+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2006-03-10T21:08:35+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/i0.wp.com\/www.fullo.net\/blog\/wp-content\/uploads\/2021\/05\/FB_IMG_1515748807284.jpg?fit=1453%2C1453&ssl=1\" \/>\n\t<meta property=\"og:image:width\" content=\"1453\" \/>\n\t<meta property=\"og:image:height\" content=\"1453\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Francesco Fullone\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@fullo\" \/>\n<meta name=\"twitter:site\" content=\"@fullo\" \/>\n<meta name=\"twitter:label1\" content=\"Scritto da\" \/>\n\t<meta name=\"twitter:data1\" content=\"Francesco Fullone\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/2006\\\/03\\\/10\\\/wordpress-201-security-tips\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/2006\\\/03\\\/10\\\/wordpress-201-security-tips\\\/\"},\"author\":{\"name\":\"Francesco Fullone\",\"@id\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/#\\\/schema\\\/person\\\/24e91bc6caea6c411a8668df5639428c\"},\"headline\":\"WordPress 2.0.1 security tips\",\"datePublished\":\"2006-03-10T16:53:35+00:00\",\"dateModified\":\"2006-03-10T21:08:35+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/2006\\\/03\\\/10\\\/wordpress-201-security-tips\\\/\"},\"wordCount\":29,\"commentCount\":7,\"publisher\":{\"@id\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/#\\\/schema\\\/person\\\/24e91bc6caea6c411a8668df5639428c\"},\"keywords\":[\"bug\",\"php\",\"security\",\"wordpress\"],\"articleSection\":[\"php\",\"sysadmin\"],\"inLanguage\":\"it-IT\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/www.fullo.net\\\/blog\\\/2006\\\/03\\\/10\\\/wordpress-201-security-tips\\\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/2006\\\/03\\\/10\\\/wordpress-201-security-tips\\\/\",\"url\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/2006\\\/03\\\/10\\\/wordpress-201-security-tips\\\/\",\"name\":\"Wordpress 2.0.1 security tips - Fullo\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/#website\"},\"datePublished\":\"2006-03-10T16:53:35+00:00\",\"dateModified\":\"2006-03-10T21:08:35+00:00\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/2006\\\/03\\\/10\\\/wordpress-201-security-tips\\\/#breadcrumb\"},\"inLanguage\":\"it-IT\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.fullo.net\\\/blog\\\/2006\\\/03\\\/10\\\/wordpress-201-security-tips\\\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/2006\\\/03\\\/10\\\/wordpress-201-security-tips\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"WordPress 2.0.1 security tips\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/\",\"name\":\"Fullo\",\"description\":\"nulla e' impossibile per chi non lo deve fare!\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/#\\\/schema\\\/person\\\/24e91bc6caea6c411a8668df5639428c\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"it-IT\"},{\"@type\":[\"Person\",\"Organization\"],\"@id\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/#\\\/schema\\\/person\\\/24e91bc6caea6c411a8668df5639428c\",\"name\":\"Francesco Fullone\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"it-IT\",\"@id\":\"https:\\\/\\\/i0.wp.com\\\/www.fullo.net\\\/blog\\\/wp-content\\\/uploads\\\/2024\\\/10\\\/hawiaina-gold-circled-white.png?fit=622%2C622&ssl=1\",\"url\":\"https:\\\/\\\/i0.wp.com\\\/www.fullo.net\\\/blog\\\/wp-content\\\/uploads\\\/2024\\\/10\\\/hawiaina-gold-circled-white.png?fit=622%2C622&ssl=1\",\"contentUrl\":\"https:\\\/\\\/i0.wp.com\\\/www.fullo.net\\\/blog\\\/wp-content\\\/uploads\\\/2024\\\/10\\\/hawiaina-gold-circled-white.png?fit=622%2C622&ssl=1\",\"width\":622,\"height\":622,\"caption\":\"Francesco Fullone\"},\"logo\":{\"@id\":\"https:\\\/\\\/i0.wp.com\\\/www.fullo.net\\\/blog\\\/wp-content\\\/uploads\\\/2024\\\/10\\\/hawiaina-gold-circled-white.png?fit=622%2C622&ssl=1\"},\"sameAs\":[\"http:\\\/\\\/www.fullo.net\",\"https:\\\/\\\/www.linkedin.com\\\/in\\\/fullo\",\"https:\\\/\\\/x.com\\\/fullo\"],\"url\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/author\\\/fullo\\\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Wordpress 2.0.1 security tips - Fullo","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.fullo.net\/blog\/2006\/03\/10\/wordpress-201-security-tips\/","og_locale":"it_IT","og_type":"article","og_title":"Wordpress 2.0.1 security tips - Fullo","og_description":"Un piccolo suggerimento di sicurezza se state usando la versione 2.0.1 di WordPress. DISABILITATE LA REGISTRAZIONE DEGLI UTENTI DIRETTAMENTE DAL BLOG in settimana arriver\u00e0 scaricate la 2.0.2… ciauz","og_url":"https:\/\/www.fullo.net\/blog\/2006\/03\/10\/wordpress-201-security-tips\/","og_site_name":"Fullo","article_published_time":"2006-03-10T16:53:35+00:00","article_modified_time":"2006-03-10T21:08:35+00:00","og_image":[{"width":1453,"height":1453,"url":"https:\/\/i0.wp.com\/www.fullo.net\/blog\/wp-content\/uploads\/2021\/05\/FB_IMG_1515748807284.jpg?fit=1453%2C1453&ssl=1","type":"image\/jpeg"}],"author":"Francesco Fullone","twitter_card":"summary_large_image","twitter_creator":"@fullo","twitter_site":"@fullo","twitter_misc":{"Scritto da":"Francesco Fullone"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.fullo.net\/blog\/2006\/03\/10\/wordpress-201-security-tips\/#article","isPartOf":{"@id":"https:\/\/www.fullo.net\/blog\/2006\/03\/10\/wordpress-201-security-tips\/"},"author":{"name":"Francesco Fullone","@id":"https:\/\/www.fullo.net\/blog\/#\/schema\/person\/24e91bc6caea6c411a8668df5639428c"},"headline":"WordPress 2.0.1 security tips","datePublished":"2006-03-10T16:53:35+00:00","dateModified":"2006-03-10T21:08:35+00:00","mainEntityOfPage":{"@id":"https:\/\/www.fullo.net\/blog\/2006\/03\/10\/wordpress-201-security-tips\/"},"wordCount":29,"commentCount":7,"publisher":{"@id":"https:\/\/www.fullo.net\/blog\/#\/schema\/person\/24e91bc6caea6c411a8668df5639428c"},"keywords":["bug","php","security","wordpress"],"articleSection":["php","sysadmin"],"inLanguage":"it-IT","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/www.fullo.net\/blog\/2006\/03\/10\/wordpress-201-security-tips\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/www.fullo.net\/blog\/2006\/03\/10\/wordpress-201-security-tips\/","url":"https:\/\/www.fullo.net\/blog\/2006\/03\/10\/wordpress-201-security-tips\/","name":"Wordpress 2.0.1 security tips - Fullo","isPartOf":{"@id":"https:\/\/www.fullo.net\/blog\/#website"},"datePublished":"2006-03-10T16:53:35+00:00","dateModified":"2006-03-10T21:08:35+00:00","breadcrumb":{"@id":"https:\/\/www.fullo.net\/blog\/2006\/03\/10\/wordpress-201-security-tips\/#breadcrumb"},"inLanguage":"it-IT","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.fullo.net\/blog\/2006\/03\/10\/wordpress-201-security-tips\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/www.fullo.net\/blog\/2006\/03\/10\/wordpress-201-security-tips\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.fullo.net\/blog\/"},{"@type":"ListItem","position":2,"name":"WordPress 2.0.1 security tips"}]},{"@type":"WebSite","@id":"https:\/\/www.fullo.net\/blog\/#website","url":"https:\/\/www.fullo.net\/blog\/","name":"Fullo","description":"nulla e' impossibile per chi non lo deve fare!","publisher":{"@id":"https:\/\/www.fullo.net\/blog\/#\/schema\/person\/24e91bc6caea6c411a8668df5639428c"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.fullo.net\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"it-IT"},{"@type":["Person","Organization"],"@id":"https:\/\/www.fullo.net\/blog\/#\/schema\/person\/24e91bc6caea6c411a8668df5639428c","name":"Francesco Fullone","image":{"@type":"ImageObject","inLanguage":"it-IT","@id":"https:\/\/i0.wp.com\/www.fullo.net\/blog\/wp-content\/uploads\/2024\/10\/hawiaina-gold-circled-white.png?fit=622%2C622&ssl=1","url":"https:\/\/i0.wp.com\/www.fullo.net\/blog\/wp-content\/uploads\/2024\/10\/hawiaina-gold-circled-white.png?fit=622%2C622&ssl=1","contentUrl":"https:\/\/i0.wp.com\/www.fullo.net\/blog\/wp-content\/uploads\/2024\/10\/hawiaina-gold-circled-white.png?fit=622%2C622&ssl=1","width":622,"height":622,"caption":"Francesco Fullone"},"logo":{"@id":"https:\/\/i0.wp.com\/www.fullo.net\/blog\/wp-content\/uploads\/2024\/10\/hawiaina-gold-circled-white.png?fit=622%2C622&ssl=1"},"sameAs":["http:\/\/www.fullo.net","https:\/\/www.linkedin.com\/in\/fullo","https:\/\/x.com\/fullo"],"url":"https:\/\/www.fullo.net\/blog\/author\/fullo\/"}]}},"jetpack_publicize_connections":[],"jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"jetpack_shortlink":"https:\/\/wp.me\/p3OSc1-uD","jetpack_likes_enabled":true,"jetpack-related-posts":[{"id":2088,"url":"https:\/\/www.fullo.net\/blog\/2006\/10\/19\/serendipity-security-release\/","url_meta":{"origin":1899,"position":0},"title":"Serendipity security release","author":"Francesco Fullone","date":"19\/10\/2006","format":false,"excerpt":"E' stata rilasciata una security release per Serendipity. E' stato trovato un baco XSS per l'area di amministrazione del cms che permetterebbe di mettere in ginocchio un sito basato sul cms opensource. Ovviamente il sito di Serendipity \u00e8 stato il primo ad essere stato attaccato :( ... ciuaz","rel":"","context":"In "php"","block_context":{"text":"php","link":"https:\/\/www.fullo.net\/blog\/category\/tecnologia\/php\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":1586,"url":"https:\/\/www.fullo.net\/blog\/2005\/08\/12\/php-news-unicode-sicurezza-ed-ajax\/","url_meta":{"origin":1899,"position":1},"title":"PHP news: Unicode, Sicurezza ed Ajax","author":"Francesco Fullone","date":"12\/08\/2005","format":false,"excerpt":"Tempo di liste di links... Finalmente \u00e8 stato inserito nel tree ufficiale di php il supporto ad Unicode, inoltre tale supporto sar\u00e0 completo nella versione 6 del codice. Un piccolo intervento sulla sicurezza di php ed una presentazione in flash sullo stesso argomento. php Security Scanner un comodo tool per\u2026","rel":"","context":"In "ajax"","block_context":{"text":"ajax","link":"https:\/\/www.fullo.net\/blog\/category\/tecnologia\/ajax\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":1511,"url":"https:\/\/www.fullo.net\/blog\/2005\/07\/11\/php-news-2\/","url_meta":{"origin":1899,"position":2},"title":"php news…","author":"Francesco Fullone","date":"11\/07\/2005","format":false,"excerpt":"notizie a caso raccolte nel weekend trust no one, Zeev Suraski spiega perch\u00e8 non bisogna fidarsi delle variabili HTTP* all'interno della global _SERVER La comunit\u00e0 di Drupal si ritrova senza server, chiede 3000 Dollari per acquistarne uno nuovo ed ora sta valutando di far partire una fondazione per spendere i\u2026","rel":"","context":"In "php"","block_context":{"text":"php","link":"https:\/\/www.fullo.net\/blog\/category\/tecnologia\/php\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":2108,"url":"https:\/\/www.fullo.net\/blog\/2006\/11\/04\/aggiornate-php-e-fatelo-in-fretta\/","url_meta":{"origin":1899,"position":3},"title":"Aggiornate PHP, e fatelo in fretta…","author":"Francesco Fullone","date":"04\/11\/2006","format":false,"excerpt":"E' stata rilevato un bug abbastanza grave che permette di usare htmlentities() e htmlspecialchars() per eseguire codice remoto su un server (maggiori info su hardened-php). Siccome quelle due funzioni sono alla base di tutti i metodi di parsing e protezione contro XSS sono normalmente usate ovunque. Su PHP.net trovate le\u2026","rel":"","context":"In "php"","block_context":{"text":"php","link":"https:\/\/www.fullo.net\/blog\/category\/tecnologia\/php\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":1712,"url":"https:\/\/www.fullo.net\/blog\/2005\/10\/26\/php-sicurezza-e-quantaltro\/","url_meta":{"origin":1899,"position":4},"title":"php, sicurezza e quantaltro…","author":"Francesco Fullone","date":"26\/10\/2005","format":false,"excerpt":"Continuano gli sproloqui e le wishlist sul futuro framework di Zend, per ora ne parlano: Wez Furlong (il quale per\u00f2 da anche le prime spiegazioni di come sar\u00e0 veramente) John Lim Chris Shifflet con una whishlist sulla sicurezza Ancora qualche links (forse qualcuno vecchio) sulla sicurezza delle applicazioni web: su\u2026","rel":"","context":"In "php"","block_context":{"text":"php","link":"https:\/\/www.fullo.net\/blog\/category\/tecnologia\/php\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":2208,"url":"https:\/\/www.fullo.net\/blog\/2007\/02\/09\/php-521-e-month-of-bugs\/","url_meta":{"origin":1899,"position":5},"title":"PHP 5.2.1 e Month of Bugs","author":"Francesco Fullone","date":"09\/02\/2007","format":false,"excerpt":"E' stata rilasciata ieri la versione 5.2.1 di PHP, la versione corregge molti bug di sicurezza ed \u00e8 decisamente importante aggiornarla. A breve arriver\u00e0 anche la release 4.4.5 che corregger\u00e0 gli stessi (ed altri) problemi. Sempre riguardo la correzione di bachi di sicurezza Stefan Esser far\u00e0 partire dal primo di\u2026","rel":"","context":"In "php"","block_context":{"text":"php","link":"https:\/\/www.fullo.net\/blog\/category\/tecnologia\/php\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]}],"_links":{"self":[{"href":"https:\/\/www.fullo.net\/blog\/wp-json\/wp\/v2\/posts\/1899","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.fullo.net\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.fullo.net\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.fullo.net\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.fullo.net\/blog\/wp-json\/wp\/v2\/comments?post=1899"}],"version-history":[{"count":0,"href":"https:\/\/www.fullo.net\/blog\/wp-json\/wp\/v2\/posts\/1899\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.fullo.net\/blog\/wp-json\/wp\/v2\/media?parent=1899"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.fullo.net\/blog\/wp-json\/wp\/v2\/categories?post=1899"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.fullo.net\/blog\/wp-json\/wp\/v2\/tags?post=1899"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}