i’ve been reading all about the hacks that are common on wordpress and OSC software recently and getting paranoid again. a while ago – after i was hacked the first time – i did some basic things to help me deter hackers: i renamed the OSC administration folder to something less obvious, and i wholesale deleted my file manager (which i never used anyway), but that did little to asuage my raving paranoia, so, along with more standard and practical approaches, like .htaccess, i have also installed a number of things to dissuade unfettered poking around my server, including (but not limited to) exploit scanner, NoSpamNX, and Simple Trackback Validation on my wordpress installation, and IPTrap, OSCSec, SiteMonitor and SecurityPro on my OSC installation.

i’m particularly proud of the “Banned” page, which you can find if you go poking around my server looking for links that you probably shouldn’t have… 👿

but despite all of this experience-based prophylactic action, i’m still paranoid, and it doesn’t help that my more sophisticated clients are expressing their paranoia as well.