- Humans.txt Template
Years ago, I thought the whole humans.txt thing was just silly, and even explained how to block humans.txt requests. But the concept actually has grown on me to the point where I now include a customized humans.txt file for most of my projects. It just seems like some useful information […]
- Some Q & A
Gonna start posting or deleting all of my old drafts just to clean things up back here in the Admin Area. For example, here is a post that I wanted to flesh out with specific examples and all sorts of references, but it’s just been sitting and waiting for too […]
- They’re Scanning for Your Backup Files
Just a reminder to keep your backup files offline. Do not store them in any publicly accessible space. It’s just not worth the risk man. And if you’re working online, you should know this already. If not, then continue reading to learn why it’s absolutely mission critical.
- Brute-Force Login Drip Attack
I’ve been noticing a new strategy for brute-force login attacks: the slow, incremental “drip” attack. Instead of slamming a login page with hundreds or thousands of brute-force login attempts all within a few minutes, some attackers have been taking a more low-key approach by slowing down the rate of login […]
- How to Block Baidu Bot
A user of my 6G Firewall recently asked how to block the “baidu” bot from accessing their site. This post explains why Baidu is not blocked in 6G and provides a quick .htaccess technique to deny it (or anything claiming to be it) access to your site.
- Analyzing Weird 404 Search Engine Requests
Lately I’ve been getting a significant number of really weird 404 requests for one of my sites. At first I ignored them. Then upon closer inspection, I realized that the requests were reporting user agents like Googlebot, Bingbot, and other top search engines. So there was cause for concern. You […]
- Block D-Bag Database Exploits
Some douchebag has been scanning my sites for a variety of potential database exploits. My sites are secure, so there is no real security threat, but the scans are extremely annoying and waste my server resources. Resources like bandwidth and memory that I would rather use for legitimate visitors. So […]
- 6G Firewall 2017
After three years of development, testing, and feedback, I’m pleased to announce the official launch version of the 6G Firewall (aka the 6G Blacklist). This version of the nG Firewall is greatly refined, heavily tested, and better than ever. Fine-tuned to minimize false positives, the 6G Firewall protects your site […]
- What to do when your site gets hacked
Over the years, my sites have been hacked numerous times. Each hacking event was somewhat of a miserable experience at first, but ultimately educational and even enlightening. I’m not going to say that getting hacked was the best thing that ever happened to me, but it certainly wasn’t the end […]
- s2Member vs. Easy Digital Downloads
s2Member (s2) and Easy Digital Downloads (EDD) are two of the top eCommerce plugins for WordPress. I’ve been using both plugins for quite awhile now and would like to explain some of their main differences. Both plugins are awesome in their own right, but there are some clear distinctions that […]
- s2member notes
I use s2member (free version) and s2member Pro on a few of my sites. Have been for several years now. Over the course of time, I have amassed a healthy collection of notes, code snippets and techniques for customizing default functionality, adding features, and so forth. Gonna post the collection […]
- Back Into It
This year has been full of change, hard work, and lots of planning. First it was general clean-up, reorganization, and streamlining of online assets (e.g., axing unused domains, consolidating email addresses, closing old social media accounts, etc.). That may not sound like a lot of work, but after 15+ years […]
- Block revslider Scans
One of the most annoying, persistent scans I’ve seen in a long time are those hunting for the revslider vulnerability. In the five or so months since the exploit was discovered, many sites have been compromised. And based on what I’ve been seeing in my traffic logs, the risk is […]
- Updates Galore
Just a quick post to let people know about the updates now available for my various books and plugins. Basically the entire month of May was spent on plugin and book updates, so here is a quick summary of what’s new.
- Book Winners!
Today I am pleased to announce the winners of the 2014 Book Giveaway, wherein 9 contestants win free copies of my books — The Tao of WordPress, WordPress Themes In Depth, and .htaccess made easy — including all bonus material and updates.
- Giving Away More Books!
A few days ago, I launched a Thanksgiving-themed book giveaway for Digging Into WordPress. The post has received some great comments that reminded me of how absolutely awesome people can be. So to chase the feeling and keep the momentum going, I’m giving away more books to 9 lucky winners.
FALL2017Shop Books »