Notice: Function _load_textdomain_just_in_time was called incorrectly. Translation loading for the wp-mail-logging domain was triggered too early. This is usually an indicator for some code in the plugin or theme running too early. Translations should be loaded at the init action or later. Please see Debugging in WordPress for more information. (This message was added in version 6.7.0.) in /mnt/serverpilot1_srv/shawnhooper/apps/shawn-hooper/public/wp-includes/functions.php on line 6114
Securing WordPress - Shawn Hooper Skip to content

Securing WordPress

Published October 20, 2015

Tonight I’m presenting to the Ottawa OWASP Meetup about Securing WordPress. Although I expect this group to be more knowledgable about common security vulnerabilities than those at WordPress specific events, I thought it would be a good idea to give a lesson in “The WordPress way” of writing secure code, as well as giving a summary on the common procedures taken to secure a WordPress installation.

The slides from the presentation are here:

Here are a few links relevant to the talk:
  1. Data Validation (WordPress Codex)
  2. Nonces
  3. Hardening WordPress
  4. Clef – Two Factor Authentication Plugin
  5. iThemes Security Plugin
  6. WordFence Security Plugin

Categories:Technology WordPress

Tags:
Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.