Featured Articles

4.380 PHPDug, Pligg and Scuttle Websites List – Free

Get a list of 4.380 Pligg, Scuttle and PHPDug Social Bookmarking websites for free!

How To: Setup myVideoPoster with eVid WordPress Theme

This how to will explain how you set up the myVideoPoster WordPress Plugin with the eVid WordPress T[...]

Security Tip: Remove WordPress Version Information

by Lars Koudal on 17/06/2009

42 views so far.

Share

PhotobloggerA well-known tip in the blogosphere regarding WordPress is to remove the WordPress version from your meta-tags that are automatically generated by your WordPress blog.

This information can be used by potential hackers to pinpoint which version of WordPress you are using, and can help them find an exploit to start hacking your website.

Since version 2.5, it is not that easy to remove that information anymore, except via a trick in your theme’s function.php file or via a WordPress Plugin.

To manually remove it from your blog, open up your Theme Editor, and find the functions.php.

Add the following code to the file:
[note]add_filter( ‘the_generator’, create_function(‘$a’, “return null;”) );[/note]
by Frank from WPengineer in the comments found on wprecipes.com

Or, if you prefer, install a plugin such as Secure WordPress, which Frank also mentions in his comment.

I have also researched alternative solutions, and found a few, such as the bs-wp-noversion (not tested) plugin as well as a plugin by Angsuman Chakraborty, named Angsuman’s WordPress Header Info Remover Plugin (also not tested).

[note]You should be aware, that this tip does not SECURE your WordPress blog, it simply removes some information which can aid people trying to hack your blog.[/note]

Tagged as: admin, Blog, WordPress, Wordpress Blog, wordpress plugin, Wp

Popular Searches
wordpress version info, delete wordpress blogroll, wordpress version information, wordpress 3 version info remove, manually delete wordpress blog, wordpress remove version security, how to remove wordpress version from admin footer, remove wordpress version from admin footer, security removing wordpress, angsumans header remover, angsuman info remover, add_filter("the_generator", create_function, wordpress version automatically generated, /?wp-ver-info security, add_filter( 'the_generator', Plug ins are not tested for Wordpress version 3, how to find my version of wordpress, how to delete wordpress development blog footer links, wordpress add_filter(‘the_generator’, create_function(”, ‘return “”;’));, remove generated by wordpress version, delete wordpress version information, remove generated wordpress version, remove wordpress version number from admin footer; wordpress, version information of wordpress, wordpress version remove,

Article by Lars Koudal

Lars Koudal blogs about WordPress development, WordPress news, WordPress Plugins and SEO news in general. Lars also is also the owner and lead developer of Premium WordPress Plugins available at CleverPlugins.com

{ 3 comments… read them below or add one }

doktertomi June 23, 2009 at 13:36

Hai… I am thinking about “not remover” but “changer”. So I will get my wordpress version changed to fake version.

Reply

myWordPress June 24, 2009 at 03:10

Hi doktertomi

Good idea, perhaps change it to something else. Perhaps “Joomla v. 3.112″ or something like that :-) Then you would REALLY confuse any potential hacker :-)

Reply

Nazar September 17, 2009 at 08:58

Great post. Thank you for useful information.

Reply

Leave a Comment

PRIVACY POLICY: Your privacy is important to us. We will never sell or rent your email address and you can unsubscribe at any time.

Previous post:

Next post: