WordPress version: To hide or not to hide?

It is worth to hide the WordPress version? Does it enhance your security? I think the answer is NO.

  • How to detect WordPress version:
  • readme.html
  • meta generator tag
  • RSS feed
  • wp-links-opml.php
  • Advanced Fingerprinting
  • Query strings in install.php/upgrade.php (my own method)

It is very hard to block all these way and it protects you only from some security scans. The real bots don’t try check WP version, they simply try to exploit any vulnerable URL directly.

You can found the details in my article.

Leave a Reply

Fill in your details below or click an icon to log in:

Gravatar
WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Cancel

Connecting to %s