October 29, 2019 — You installed a security plugin, and you don’t get much traffic anyway since your business is small…so you don’t need to worry about getting hacked, right?
While there are several good security plugins that are a useful part of a security plan, securing a WordPress site requires more than a plugin. Plugins are handy tools but can give a false sense of security if the entire security landscape is not considered.
You may not have a lot of money to invest, but you can learn a framework and some basic actions to help you get a better grasp on security for your website – and your business.
June 10, 2019 — For a variety of reasons, we humans tend to be poor assessors of both the probability that something bad will happen, and the damage that is likely to result should such a thing occur. Academics have studied this phenomenon since about the 1960s under the rubric of risk assessment. What does this way of thinking have to teach us about WordPress security? Can we construct a risk matrix to help us choose which aspects of WordPress security are most in need of our limited time and attention?
In this session, I’ll draw on both on my own experience providing technical consulting in the areas of security and scaling to some of the world’s largest and most security-sensitive WordPress sites, and on the wisdom of community members who maintain smaller sites for businesses and individuals. In addition to providing a brief overview of the total security landscape as it applies to WordPress, we will attempt to use some of the tools of risk assessment to help us focus our attention in the right areas, including any we tend to naturally overlook.
This session, though touching on some technical topics, is suitable for anyone who administers, uses or develops WordPress sites.
April 4, 2019 — So we have all been to the scary WordPress security talk where Tim or someone else frightens you to death, but it’s not too dire: in those talks there is a theme beyond despair and that’s every little helps.
So this talk is low on scary tales and high on simple practical tips to improve your site’s security. On their own they might not be the silver bullet, but they all add up.
Tim will guide you through steps that anyone of any ability level can implement to improve their site security.
April 3, 2019 — You can’t just install a couple of security plugins and call it a day when it comes to safeguarding your WordPress website. Plugins are a great start. The door to your website now has a lock on it. But how about adding a dead bolt? A door chain? A peep hole? Titanium reinforcement? A pet dragon hiding inside? Plugins help with the 5th layer of security. Did you know there are 4 more layers that you are most likely not protecting? Huh? Did he say 4 more? Come learn how to safeguard the other 4 layers so that even with the best of plugins, you drastically reduce your (and your client’s) chances of getting hacked. Just as you would add layers of security to protect your home and family, your WordPress security needs a multi layered approach. Come learn how to build a wall, a moat, and some additional lookout towers to keep the bad guys away from your castle. Oh, and dragons? We’ll talk about them too, if we have time.
March 4, 2019 — You have your SSL certificate and the green padlock in the address bar. You’re done. Your website is secure. Right? No? Huh? Whadda I need to do? Let’s take a walk past the Let’s Encrypt cloak of security and see what you really need to do to help secure your website from the dangers of the public interwebs. No programming needed. A little common sense, a plugin or two and you are well on your way to securing your site. It takes is a few straightforward steps to eliminate almost all of the security vulnerabilities in the basic setup of your WordPress website.
February 1, 2019 — The security of your WordPress site goes far beyond it’s code and settings. In 2018 and beyond, your online habits and practices make you far more susceptible to being hacked than bad code.
Let’s talk about how to safeguard your entire online identity, and how doing so will help your WordPress site stay safe from hackers and malware. We’ll also talk about some realistic strategies for securing your WordPress install.
January 24, 2019 — “You can’t just install a couple of security plugins and call it a day when it comes to safeguarding your WordPress website. Plugins are a great start. The door to your website now has a lock on it. But how about adding a dead bolt? A door chain? A peep hole? Titanium reinforcement? A pet dragon hiding inside?
Just as you would add layers of security to protect your home and family, your WordPress security needs a multi layered approach. Come learn how to build a wall, a moat, and some additional lookout towers to keep the bad guys away from your castle. Oh, and dragons? We’ll talk about them too, if we have time.”
August 22, 2018 — The talk is about WordPress security best practices. How to enhance and implement security practices in WordPress. The session is delivered by Shakir Ali who is a system engineer at 10UP.