How Secure is the Internet of Things?
·
How secure are you? Really?
security
-
-
Data Leakage – Part 2
·
When you click a link on a page, your browser takes that page’s URL and sends it along with you as the “Referer” header. The site you end up on can then track exactly which sites are sending traffic. If your site is private (i.e. an internal company blog) and you link to an external…
-
WordPress Core Proposal: SUDO
·
Logging in to your WordPress site as an administrator when your plan is just to write is a bad idea. The admin user should be for administration and you should use an editor-level user for writing. But this dual-login workflow can be needlessly complicated on many sites. Instead, I propose we introduce a SUDO mode…
-
Securing XML-RPC for WordPress
·
If you use WordPress, you’ve probably used one of the mobile apps for it. If you’ve used one of these mobile apps, then you’ve used XML-RPC. If you’ve used XML-RPC, then you’ve sent your username and password – in plain text – across the Internet. This is hugely unsafe, and I want to work to…
-
WordPress is One Of the Best Decisions You Can Make
·
Some would say the decision to use WordPress in an enterprise or mission-critical environment is a mistake. I disagree. Strongly. Using WordPress is the best decision I’ve ever made.
-
1Password: Better and Worse for Personal Data Security
·
Ever since I was a victim of digital identity theft in college, I’ve kept a keen eye on data security. I use long passwords that mix case, numbers, and punctuation. I impose ridiculous must-change-passwords-every-6-months rules on myself. And I never, ever write my passwords down for others to see. But still, I feel like things
-
The Anatomy of an Exploit
·
I’m a huge fan of security. I spend many a weekend experimenting with new encryption techniques, hash algorithms, and security protocols. As a result, I also come across several different server exploits in the wild. PHP hacks, [cci].htaccess[/cci] hacks, JavaScript injection, etc. I once even saw a server hacked through a corrupt PNG image that
-
Security Vulnerabilities
·
Out of the blue today, a user of one of my plugins contacted me to ask why I was so slow in patching a security vulnerability in my system. The question came as a complete surprise. Apparently, back in January, someone discovered a potential security hole in one of my plugins, WP Publication Archive. The
-
One Time Password Security
·
My day job has primarily consisted of migrating an old-school ASP.Net WebForms website to a new ASP.Net MVC application. This has involved a massive layout/structure redesign, database overhaul, and a lot of custom coding. I’m mostly happy with how I structured the MVC-based content management system. It’s very similar to WordPress … only written in
-
Consider the Source
·
Open source is fantastic because you can build upon the code of others. It’s also horrible because you can build upon the code of others. This means someone can take a well-developed plug-in, make one or two minor changes, and redistribute an almost identical system to yours while taking all of the credit. So, as