security

security

A New WordPress Security Plugin: Don’t Believe The Hype – You Can’t Buy Security.

This article gets technical. But I had to write to so I didn’t have to continually repeat the same points during internet discussions of a new WordPress Security Plugin. First, the background: The New WordPress Security Plugin Recently a slick marketing campaign has effectively promoted a new WordPress security plugin. A video promoting the plugin …

A New WordPress Security Plugin: Don’t Believe The Hype – You Can’t Buy Security. Read More »

Wordpress Security

WordPress and PHP Security

In my recent post on OWASP Day 2015 I remarked that WordPress.org itself takes security seriously. I mentioned the recently-released WordPress Security White Paper and pointed to the documents on hardening WordPress. Of course WordPress.org doesn’t exist in a vacuum and has a tight feedback loop with its wider community. This in itself may be one …

WordPress and PHP Security Read More »