Website Security and Auto-Updates

By Tony Perez | November 27, 2014 |
Auto Update Software WordPress

If we could only auto-update our applications when vulnerabilities are identified, then we’d surely be safe… that seems to be today’s mindset. To a certain extent, that’s true, but it’s also false. The idea of auto-updates is not new, it’s been around for a while. It’s all the rave as of late when we talk…

Read More

How Hosts Manage Your Website Security

By Tony Perez | November 7, 2014 |
How Website Hosts Manage Security

Hosts are concerned with the security of their infrastructure, not with your website. This is a distinction that most website owners fail to make, and it’s made more evident to me every day. This same misunderstanding however puts hosts in a precarious situation where clients expect security, and to some extent get it, but on…

Read More

Website Security is about Passwords?

By Tony Perez | October 30, 2014 |
Password Security

Perhaps the thing that annoys me the most when I hear security being shared with end users is when they get the information wrong or overemphasis on things they don’t understand or can’t support. This is the problem in the way we communicate, especially in the WordPress community. This is applicable to all communities though,…

Read More

How We Think About Website Security

By Tony Perez | October 30, 2014 |
How We Think About Website Security

I recently attended WordCamp San Francisco (WCSF) where Matt Mullenweg, founder of the WordPress project and CEO of Automattic, gave his annual State of the Word. WordCamps are informal, community-organized events that are put together by WordPress users like you. Everyone from casual users to core developers participate, share ideas, and get to know each…

Read More

Accounting for Security in Website Projects

By Tony Perez | October 5, 2014 |
Security In Web Projects

Many know very little about me, my past what I used to do, most just know me for my time in security. There was a time though that I spent as Project / Program Manager for a couple different organizations. I even dabbled in a WordPress centric design / development shop called CubicTwo in early…

Read More

The Dilemma that is WordPress Security

By Tony Perez | August 9, 2014 |
WordPress Security

The past few weeks WordPress Security has come to the forefront of the discussion again, as it often does every few months. As is often the case, it’s highly emotional and generates a lot of discussion. Chris Lema shared a post, Our discussions around WordPress security should change, and that sparked some interesting conversations. He’s…

Read More