Don't give away the keys to your store! Never post your WordPress log-in details!
This morning I was catching up on emails and received a very alarming notice. Now, I'm not going to call anyone out, but this email impelled me to write this blog post right away.
I'm a frequent user of the WordPress.org forums, which is an excellent resource to get help with self-hosted WordPress sites. However, posting pertinent information on the forums, just like any public site, is a no-no!
One of the users (a web designer) of the forum was seeking help for an error message on his client's website and posted the log-in details on the forums. YIKES!!
I'm not sure if the designer needed a good dose of caffeine, a brain scan, or was in such a panic that he/she felt it necessary to post the administrator username and password on the forum to get help faster.
Your username and password for your WordPress blog or ANY other place you log-in is PRIVATE!! It should never be shared with ANYONE! If you have someone work on your site, give them their own unique log-in details and when they're done, remove them.
Think before you post! If you hire someone, make them sign a non-disclosure agreement (maybe it will put a spark under their butt to remind them that your pertinent information is sacred) . And monitor your webmasters to make sure they are using common sense, protecting your data, and know what they're doing.
Leave Your Feedback
Do you have your webmaster sign a non-disclosure agreement? What would you do if your web designer posted your log-in details on the web? How do you monitor your WordPress admins? Leave your comment below.