September 24, 2018 — BarCamp Track

August 22, 2018 — The talk is about WordPress security best practices. How to enhance and implement security practices in WordPress. The session is delivered by Shakir Ali who is a system engineer at 10UP.

Presentation Slides »

August 22, 2018 — WordPress security can be a difficult thing to get right. There are a number of things that go into a secure web site. In this quick talk, I will highlight the things I believe are the most important steps you can take to secure your site. You will learn in just 15 minutes how to ensure that your site is well protected from malicious actors.

Presentation Slides »

August 16, 2018 — As more and more services get digital these days, security has become a major aspect of every application. Especially when it comes to third-party code, it is really difficult to guarantee safety. But in general, XSS and Code Injection are a major problem these days.

Content Security Policy provides another layer of security that helps to detect and protect against different attacks. In this talk, I will introduce this concept and its main features, as well as show good and bad example usages.

Presentation Slides »

August 11, 2018 — I will discuss the tactics the attackers use to exploit code, the most common ways developers introduce insecure code to a site, and what you can do to help avoid these issues. You will learn, from the many security failures I have seen what not to do when adding a new feature to a site’s code.

August 11, 2018 — I will discuss the tactics the attackers use to exploit code, the most common ways developers introduce insecure code to a site, and what you can do to help avoid these issues. You will learn, from the many security failures I have seen what not to do when adding a new feature to a site’s code.

August 8, 2018 — AWSってサービスが多くてよく分からない。個人でEC2立てたけどどうしたらいいか分からない。という方、業務でAWSの第一歩を踏み出してみませんか？

いきなりEC2上でWordPressを作るとかだと二の足踏むかと思うので、VPSやレンサバのままで、非常に費用対効果の高い第一歩を踏み出せる話をします。

主に、AWSのWAFを用いたセキュリティ強化やCloudFrontを用いたパフォーマンス強化、S3を用いたソーリーページの構築などのお話をします。

Presentation Slides »

July 28, 2018 — Přednáška od Michala Špačka na téma Co WP neimplementuje zrovna nejlépe.
Pomůže jim to pochopit některá zákoutí bezpečnosti na webu a snad
i pochopit, proč by se mělo řešit to, co se zas tolik neřeší. Jsem tajemný, co?

July 5, 2018 — Content security policies (CSPs) are a relatively new security element on the web horizon. CSPs use browsers to detect and mitigate certain types of attacks like cross-site scripting (XSS), clickjacking and other code injection attacks resulting from execution of malicious content in the trusted web page context. CSPs can be used for simple purposes like enforcing https on SSL-enabled sites, to more sophisticated uses like authorizing only truly trusted sources and blocking others.

Most sites do not have CSPs installed, but it’s important to be aware of them and how they can be used to add an additional layer of security to your website.

Presentation Slides »

June 11, 2018 — Jim Grant of Simply Creative Media will cover the ins and outs of the importance of WordPress website security, using a SSL (secure sockets layer) certificate and encryption on your website, best practices and WordPress plugins to help you secure your WordPress website.

Presentation Slides »