Paul Gilzow (wpDirAuth, Presentation) Locking down recon to reduce ability to detect (fingerprint) what’s running. https://builtwith.com/ualr.edu https://wpscan.org/ Counter measures Use apache mod_authz File protection protect wp-content (no reason for php files to be able to be directly executed in wp-content, implicitly deny everything and whitelist things that are allowed—things that need to be downloaded as …
Continue reading “Access Denied: Keeping yourself off an attacker’s radar”
Avoid security risks when using the WordPress REST API plugin (soon to be in core).
Learn how to test, track, and increase the speed of your website.
Taking responsive design beyond CSS gives you control over your display in a content-specific way.
Slow pages have poor SEO ratings. There are plugins that can improve site performance, and your choice of hosting provider can have the greatest impact on the speed of your site.
Customizer is WordPress’s Theme Customization API and is becoming part of core soon.
Moonshots are seemingly impossible and yet impossibly-important ideas that through science and technology can be brought to reality. Google[x] is a moonshot factory full of optimists who are focused on changing the world by seeking out massive unsolved problems that — when solved — will profoundly and positively alter the way we live. You may …
“How do you know this design is better?” This question stumbles even the most seasoned designers. Businesses are recognizing the importance of design and the competitive advantage that taking a design-led approach offers. Designers are moving up the corporate ranks and we’re now beginning to see titles like “Design Strategist,” “Design Director” and “Chief Design …
Continue reading “Why Designers Should Care About Measuring Success”
The dreaded résumé. How can one love something meant to condense and cram a person’s life and career into a handful of pages? We as job hunters hate them because they never seem to sufficiently convey what we do or how we do it, and it’s usually the first impression any potential employer gets of …
OAuth 2 is the latest version of the OAuth standard– unlocking authorized access to user data from dozens of different APIs like YouTube, Google Apps and Facebook in a way that’s easier than ever for developers. OAuth 2 can now be used via OpenID Connect to allow users to easily login and sign up with …
