Category Archives: Security

Should the Website Owner be a site administrator?

Posted on 8th March 2019 by Paul Hooper • 0 Comments

I was recently asked, at a networking meeting, whether I thought my clients should have administrator access to their CMS based website. I immediately replied “No”. This is because giving an inexperienced website owner admin rights is just inviting trouble. It is just too easy for them to break the site that I have spent hours, days, or weeks carefully constructing. They don’t mean to, it just happens. Even if they don’t break the site outright, they may unintentionally spoil the carefully thought out design of the site and, in the blink of an eye, change it from a think of beauty that is a pleasure to use, to an ugly nightmare that is no better than the millions of amateur home made sites that spoil the browsing experience every day.

Sucuri / WordPress security disclosure

Posted on 2nd February 2017 by Paul Hooper • 0 Comments

I received an email yesterday, from one of my website security partners ‘Sucuri‘, and I felt I should pass the information on. Sucuri announced that they had discovered a severe content injection (privilege escalation) vulnerability affecting the REST API. This vulnerability allows an unauthenticated user to modify the content of any post or page within… Continue Reading

Mind your PC security

Posted on 25th January 2017 by Paul Hooper • 0 Comments

Happy New Year to you. I hope that you had an excellent Christmas and are now rested and prepared for the challenges and opportunities of the coming year. I don’t know about you, but I spent the first couple of weeks after the holidays concentrating on some background tasks in order to start the New… Continue Reading

Simple contact form

Name
First Last
Phone
Email
Nature of contact
Message
Captcha
Privacy*
- By using this form you agree with the storage and handling of your data by this website.