Online Marketing Services & Business Website Design » security http://om4.com.au Find customers. Convert online. Thu, 22 Jul 2010 01:09:25 +0000 en hourly 1 Keeping WordPress Secure http://om4.com.au/keeping-wordpress-secure/ http://om4.com.au/keeping-wordpress-secure/#comments Wed, 09 Sep 2009 17:14:20 +0000 Glenn http://om4.com.au/?p=1159

Keeping WordPress Secure

]]> Recently Matt Mullenweg wrote a blog post explaining why a strategy of keeping up to date with WordPress upgrades and patches is a good idea: How To Keep WordPress Secure

All our OM4 websites run on WordPress. Each time a WordPress upgrade or patch is released, we assess it and apply it.

When security patches are released, we apply them promptly.

With larger upgrades, it might take us a bit longer to make sure any required changes are integrated to enable new functionality. Some upgrades introduce a lot of new functionality that require changes to theme files. Sometimes plugins aren’t compatible with updates and we have to co-ordinate the update with plugin updates to keep everything working together.

We’ve been doing this ever since launching our first WordPress site, and plan to keep doing it. As Matt says, there are no guarantees, but it is a good strategy for keeping your WordPress website secure.



Keeping WordPress Secure

]]> http://om4.com.au/keeping-wordpress-secure/feed/ 0 Mac Leopard: ssh, RSA key pairs, passphrases and the annoying password window http://om4.com.au/ssh-rsa-key-pairs-passphrases-leopard/ http://om4.com.au/ssh-rsa-key-pairs-passphrases-leopard/#comments Wed, 07 Jan 2009 00:48:22 +0000 Glenn http://om4.com.au/?p=731

Mac Leopard: ssh, RSA key pairs, passphrases and the annoying password window

]]>
If you are getting stuck at this prompt, read this post

If you are getting stuck at this prompt, read this post

As I was monitoring our servers for a period over the holidays, I had a chance to get back to grips with ssh. Here is a quick public service announcement for any Mac users out there who are using ssh and RSA keypairs who are encountering a window asking you to:
Enter your password for the SSH key “id_rsa”

In short, if you use ssh to connect to a remote server, you can setup an RSA public/private key pair to allow you to connect to your server without a password. In Leopard 10.5 this doesn’t seem to always work as it used to, and I couldn’t find an article that gave a solution.

So, here is a way to get your passphrase loaded in to your keychain to avoid the annoying password window (that won’t let you enter your ‘password’).

1. Clear the contents of your ~/.ssh directory and set the directory permissions to 600
$ rm ~/.ssh/*
$ chmod 600 ~/.ssh

2. Generate your rsa key pair (there are variations for this, but this is the version I used):
$ ssh-keygen -t rsa

3. Set the permissions for all files in ~/.ssh to 600
$ chmod 600 ~/.ssh

4. Copy your id_rsa.pub key to your server’s .ssh/authorized_keys file

5. Add your passphrase to your keychain using this command:
$ ssh-add -K
(you will see Enter passphrase for [your system]/.ssh/id_rsa: )

6. You are all set to login using ssh without a password

This is a solution to the passphrase problem – here is more general information if you want to learn more about setting up ssh with an RSA key pair.



Mac Leopard: ssh, RSA key pairs, passphrases and the annoying password window

]]> http://om4.com.au/ssh-rsa-key-pairs-passphrases-leopard/feed/ 4