Technical Architect

A Christ-follower, husband, father, and WordPress Developer with Forum One.

Similar Posts

/

WordCamp US 2019 – Securing WordPress in the age of 0-Day Vulnerabilities – Rahul Nagare

ByTim Nolte Updated on
scaledynamix.com/WCUS 0-Day Vulnerabilities Recently discovered No current fix Already being attacked Reference – wpvulndb.com Why My Site? They want to send your traffic somewhere else to boost SEO rank They want to use your site as a “bot” to attack a targeted site. How Do You Protect Your Site? Protection Against Redirects Hardcode your site/home URL Protect your wp-config.php Protect Against Automated Plugin Updates Limit access to wp-admin, white-list admin IPs Protect Against Code Injections Block all POST requests without a valid referrer Set Content-Security-Policy header You still need to follow the standard security best practices
Enterprise API Development…Navigating The Battlefield
/

Enterprise API Development…Navigating The Battlefield

ByTim Nolte Updated on
Right now at work I’m the lead on a project to establish a new vendor API. Unfortunately there were decisions made on key specifications of how the API was to be developed before it was handed to me. Where I work there is a lot of legacy standards and so it’s challenging to introduce new technologies as a standard. I do see that there is a constant struggle between what APIs are needed internally versus externally, for B2B integrations. I’m always looking to try to balance this out whenever I can.

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.