

Technical Architect
A Christ-follower, husband, father, and WordPress Developer with Forum One.
Similar Posts

Will This Be The New Dawn of Mastodon?
I have been on #Mastodon since 2018 after exploring #POSSE and the #IndieWeb so I’ll be curious to see what comes of the seemingly mass exodus of #Twitter users coming into the Mastodon realm. #WordPress #SocialMedia

Lifelong Learning As A Developer
“if you’re not enjoying learning new things about your job, what are you doing working that job in the first place?” – Bruno Skvorc
WordCamp US 2019 – Securing WordPress in the age of 0-Day Vulnerabilities – Rahul Nagare
scaledynamix.com/WCUS 0-Day Vulnerabilities Recently discovered No current fix Already being attacked Reference – wpvulndb.com Why My Site? They want to send your traffic somewhere else to boost SEO rank They want to use your site as a “bot” to attack a targeted site. How Do You Protect Your Site? Protection Against Redirects Hardcode your site/home URL Protect your wp-config.php Protect Against Automated Plugin Updates Limit access to wp-admin, white-list admin IPs Protect Against Code Injections Block all POST requests without a valid referrer Set Content-Security-Policy header You still need to follow the standard security best practices

Enterprise API Development…Navigating The Battlefield
Right now at work I’m the lead on a project to establish a new vendor API. Unfortunately there were decisions made on key specifications of how the API was to be developed before it was handed to me. Where I work there is a lot of legacy standards and so it’s challenging to introduce new technologies as a standard. I do see that there is a constant struggle between what APIs are needed internally versus externally, for B2B integrations. I’m always looking to try to balance this out whenever I can.