Posted by Johan Cyprich on 12 Aug 2009 | Tagged as: Applications, Security
An update for WordPress was released today after a minor security issue was discovered yesterday. A bug in the code allowed a blog user to reset the administrator’s password and cause a new password to be e-mailed to the admin. The attacker would not get access to the account, but the administrator would be inconvenienced [...]
Posted by Johan Cyprich on 14 Aug 2008 | Tagged as: Security
It never ceases to amaze me how little knowledge people have outside their area of expertise. While I do think that its important to stay focused on your core abilities in your career, it wouldn’t hurt to learn a few things outside your comfort zone. One area that people should be somewhat familiar with that [...]
Posted by Johan Cyprich on 06 May 2008 | Tagged as: Applications, Security
In today’s world, attacks on web sites by hackers are common. We need to take precautions to prevent the security in our web sites from being compromised. There isn’t any built-in utility for WordPress to test security, but there is a plugin by Michael Torbert that can be installed for this purpose.
WP Security Scan examines [...]
Posted by Johan Cyprich on 31 Mar 2008 | Tagged as: Security
Hack into a computer, and you get to keep it. This was the challenge at CanSecWest Vancouver 2008 last March 26-28. There were three computers that were presented for this contest:
Sony VAIO VGN-TZ37CN running Ubuntu 7.10
Fujitsu U810 running Vista Ultimate SP1
MacBook Air running OSX 10.5.2
The purpose of this contest was to reveal possible vulnerabilities in [...]
Posted by Johan Cyprich on 12 Mar 2007 | Tagged as: How To, Security
Managing users is essential when running a forum. In spite of phpBB’s many strengths, it is lacking in this area. Deleting a user in the administration panel is quite an involved task and I normally do this through the backend by directly modifying the phpbb_users table in the MySQL database.
While this is not the [...]