How to Perform a WordPress Security Audit

When I worked at HP I was a JAVA security developer for one of their enterprise network management tools. I used to run a cross divisional weekly security meeting where we discussed things like cryptography, SSO, MD5 Hashes, SAML, and other technical topics, none of which you need to understand to audit your WordPress site. … Continue reading “How to Perform a WordPress Security Audit”

Why did my developer recommend _ _ _ _ _ _ _ _ _ CMS?

Why did my developer recommend this particular CMS? That’s a question we get a lot, usually when we’re taking over maintenance on a site that has become a headache for the owner. Of course, we can’t read minds so we never really KNOW the answer, but based on years of experience I have some ideas. … Continue reading “Why did my developer recommend _ _ _ _ _ _ _ _ _ CMS?”