cookies

WordPress.com Security Vulnerability Stirs Debate Over Responsible Disclosure

Jeff Chandler May 28, 2014 44

Late last week, Yan Zhu, a Staff Technologist for the Electronic Frontier Foundation publicly disclosed a security vulnerability she discovered with WordPress.com and how it handles cookies. More specifically, she discovered the “wordpress_logged_in” cookie being sent in the clear to a WordPress authentication endpoint. She was able to use the (more…)

WordPress Plugin Authors: Be Up Front and Honest With Users About Tracking

Jeff Chandler December 17, 2013 9

Plugins collecting information and phoning home to a third-party without the user’s consent is a serious issue in the WordPress community. The WordPress plugin repository guidelines are clear on this matter specifically, point number seven and its sub points. Pooria Asteraky has published a post that explains why there needs (more…)

Kristian: A static website is seperate from your WordPress w »
flanky: Good luck with it. Use it for a while and you will »
Nathan Rice: This has always been the most reasonable approach, »
Peter: There is no mention at all of CSS. Will the JAMs »
Kevin N. Murphy: Forms are quite easy on Netlify: https://www.netli »
Ian: Like Kevin pointed out, SnipCart is an option to u »
Kevin N. Murphy: Also Woocommerce? There’s https://snipcart.com/ »
David McCan: I think this is a good idea. Standardizing the pla »
flanky: One can simply just use static cache plugin withou »
Phil Ingram: I think it’s in poor taste to force something like »