Menu Home

WordPress Is About Responsibility

Your WordPress site (or any web site you put on the Internet) has value. Take care of it, it is your front yard and what the neighbors see. It’s your front office where you invite people to talk or do business with. Own it and take responsibility for it. Recently […]

Get your red hot WordPress 2.8.6

WordPress 2.8.6 is out and it’s a security release so update now. I’m expecting the usual complaints on the support forum but so far it’s been pretty sedate. I’ve been using WordPress since version 1.5.2 and I’ve never had a bad upgrade. Of course, I have a good idea what […]

DNS excitement! Panic at the office!

Well not really panic, just your usual vulnerability patching day at the office. When I saw Dan Kaminsky demonstrate voice over DNS, I was convinced that he dreams in BIND source code.  It was a neat demonstration. Now he has uncovered another vulnerability in BIND regarding UDP source port prediction. […]

WordPress file monitoring

Over a week ago I complained about WordPress users crying security wolf and not being able to recover their blog when the “Bad Thing(tm)” happens. Since then a real brawl developed on the support forum that could be summed up like so: One or more users is insisting that there […]

Sigh, WordPress users and hacking

If you are not running the latest version of WordPress and you get hacked, don’t go to the WordPress forum and tell the world.  Odds are you invited the disaster yourself. When WordPress 2.5 came out I was disappointed to find that the old version 2.3.x was basically abandoned.  There […]