Doug Stewart on 10 Nov 2015 10:43:01 -0800


[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

Re: [PLUG] Blogging platform


JP, et al:
Not to stick up for the platform that makes me my bread and butter, but 

a) Many of the WordPress security issues *are* related to third-party plugins and themes
b) Core issues tend to be handled with expediency and delicacy (see, e.g., The Trojan Emoji: https://poststatus.com/the-trojan-emoji/)
c) At > 25% of the Web, WP is obviously the biggest target out there
d) If you're interested in talking about it in person, the inaugural WordCamp US is being held here in Philly, Dec. 4-6. $40 for three days and a complimentary t-shirt (https://2015.us.wordcamp.org/tickets) I'll be there. *grin*

Is WP security perfect? Nope. Can you show me a CMS that has perfect security? Also Nope.

I'd really love to see my open source brothers and sisters in arms help out. Looking down your noses at an open source platform powering a huge swath of the web, including some *very* large sites, is counter-productive IMHO.

On Tue, Nov 10, 2015 at 1:26 PM, JP Vossen <jp@jpsdomain.org> wrote:
I seem to recall a recent question about blogging platforms, but I can't
find it, so it was probably a round-table discussion at a recent meeting.

Anyway, I just ran across this interesting article on a very interesting
blog ("Observations, musings and conjecture about the world of software
and technology" with lots on security and Windows):
http://www.troyhunt.com/2015/10/creating-blog-for-your-non-techie.html

Other neat things from that blog:
https://haveibeenpwned.com/
http://plaintextoffenders.com/
http://www.troyhunt.com/2015/09/troys-ultimate-list-of-security-links.html

Later,
JP
----------------------------|:::======|-------------------------------
JP Vossen, CISSP            |:::======|      http://bashcookbook.com/
My Account, My Opinions     |=========|      http://www.jpsdomain.org/
----------------------------|=========|-------------------------------
"Microsoft Tax" = the additional hardware & yearly fees for the add-on
software required to protect Windows from its own poorly designed and
implemented self, while the overhead incidentally flattens Moore's Law.
___________________________________________________________________________
Philadelphia Linux Users Group         --        http://www.phillylinux.org
Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce
General Discussion  --   http://lists.phillylinux.org/mailman/listinfo/plug



--
-Doug


___________________________________________________________________________
Philadelphia Linux Users Group         --        http://www.phillylinux.org
Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce
General Discussion  --   http://lists.phillylinux.org/mailman/listinfo/plug