The WordPress Meta “generator” Tag Paranoia

The WordPress Meta “generator” Tag Paranoia …or “WordPress Version Fingerprinting” I have read dozens of “How to secure your WordPress” articles, and one common “tip” among others is getting rid of the “generator” tag in the HTML head, for additional security through obscurity. WordPress uses the meta “generator” tag to “disclose” its version. The paranoia surrounding …

ПодробнееThe WordPress Meta “generator” Tag Paranoia

Another 7 Overlooked WordPress Helper Functions In a previous post we looked at 7 Overlooked WordPress Helper Functions. Today I’ll dig deep and find more helpful undocumented functions that WordPress uses internally that can be of help when developing plugins and themes. Leveraging code that is already available in the core, is maintained and simply works …

Подробнее

ack-grep vs. grep Following Daniel Bachhuber – The Zen of WordPress Development talk, I’ve started to explore this magical ack tool, a replacement for the native grep. ack can be downloaded from the official and quite modest website called BetterThanGrep.com. ack is also available in all sorts of software repositories, and can be named ack-grep instead …

Подробнее

WordPress DoSnet

Pingbacks have been part of the WordPress since the very beginning. One of my previous articles, titled WordPress Pingback Attacks explores two types of denial-of-service attacks that leverage Pingback request processing in WordPress. If you do not know how Pingbacks work, I suggest taking a quick crash-course here.