WordPress 3.0 “Thelonious” came out this week and like usual, everyone is encouraged to upgrade. Down below I’ll show you a video on how to manually install WordPress 3.0, but before we get to that, I just want to address a question I’ve been asked a few times already in regards to WordPress 3.0 security.
An online buddy of mine, Keith Davis, asked me a great question in regards to WordPress 3.0 security. He asked:
I notice that WordPress 3.0 has now been released and we are all urged to upgrade.
I would have to make changes to my theme to make it compatible with WP 3.0 and since I’m not looking for additional functionality, the only reason I would upgrade is for added security.
The only reference I can find to increased security in version 3 is the ability to change the default username from admin – but most of us will have done that anyway as per your advice.
Would you say that an upgrade to version 3 is essential on security grounds?
Great question… and here’s my response.
It seems the security enhancements in WordPress 3.0 really only apply to those end-users who are installing WordPress for the first time (manual install).
For better WordPress security and help keep malicious hackers locked out, it’s a good idea to do the following three things:
- Choose a different username than the default “admin”
- Change the default database table prefix to something other than wp_
- Add WordPress security keys
As Keith mentioned, I’ve shown him (and others) how to do those things in my ebook, WordPress Defender. WordPress 3.0 just makes it easier for you to do those things all during the setup process; in fact, the security keys are created automatically for you (see the video below).
So Keith, to answer your question about upgrading, no it’s not necessary in my opinion to upgrade right away; however, realize that although WordPress says they aren’t planning on a 3.1 right away, you never know. Tomorrow we might all discover one major security hole and every one must upgrade immediately.
If I were you or someone else in your position, I’d start planning how I’m going to upgrade real soon. You might contact your theme’s author and see what their plans are.
How To Install WordPress 3.0 Manually
Don’t forget, before you do a WordPress upgrade, it’s important to first fully back up your blog.