Some related posts from Technorati and Google.

[AbleReach] WordPress 2.5.1 Adds Security and Bug Fixes: If you use a customized version of WordPress Default or Classic, consider naming your version and moving it into a folder of its own. No matter how careful we all are, there will come a day when something important gets copied over.

 [Swank Web Style Blog] WordPress 2.5.1: Also, as of 2.5 they’ve added an extra security measure to WordPress. This involves adding a “secret key” to your wp-config.php file.

[dryang medblog : Stress your weaknesses, not strengths!] » Cookie Security in WordPress 2.5 boren.nu: To make cookies secure against attacks where someone has managed to get into your database through an SQL injection exploit or other means, WordPress 2.5 introduced a user-definable constant called SECRET_KEY. If you look at the sample wp-config.php shipped with 2.5, you’ll see these lines.

 [Blog Tipz] WordPress 2.5.1 Released; 2.6 Potential Features Announced: It is great to see new features, and while WordPress is built around its wide array of plugins available, it would be even better to see some more features/plugins that are built into the system.  WordPress 2.5/2.6 look to improve this with tag integration and stats shown in the Dashboard, as well as Post Word Count in version 2.6.

 [Simple Informations] Wordpress 2.5.1 update released: This release of Wordpress also adds a new security key feature to the wp-config.php file that will let you randomize cookie encryption. You can visit this link we set up to get a unique secret key for your config file.

[blivet 2.0] links for 2008-04-25: “WordPress 2.5 introduced a user-definable constant called SECRET_KEY. If you upgraded from a previous version of WordPress you probably won’t have these lines in your wp-config.php.” .

 [gHacks technology news] Wordpress 2.5.1 released: The security fixes affect the files wp-includes/pluggable.php, wp-admin/includes/media.php, and wp-admin/media.php which can be downloaded separately if the full Wordpress update is not desired yet. Webmasters who ran into problems with the new way of uploading media files will be reluctant to note that this issue has been fixed in Wordpress 2.5.1.

 [K-Squared Ramblings] Links: Freedom and Security: Cookie Security in WordPress 2.5. The latest version of the blogging software has a feature that can make it harder for attackers to grab your login sessions.

[bugtraq Security Focus] WordPress 2.5 - Salt cracking vulnerability: report a WordPress security vulnerability and helped me to test the severity of the issue. Attachments =========== --- begins wpsatl.c ---.

 [www.HWDOT.com] Wordpress 2.5 is Better?: We have added a few new indicies and made a few default fields more flexible based on some bottlenecks we found on WordPress.com, which now hosts 2.7 million WordPress blogs. It should be invisible to the application, just a bit faster on the database side.

Reflected tags on Technorati: Blog, PHp: Blogs, Photos, Videos And More On Technorati, PHp: Blogs, Photos, Videos And More On Technorati, Global Security Watch