Konstantin Obenland has posted some tips for proper validation and sanitization on the Themeshaper blog. For those that recall Otto's definitive post on the subject, this one adds a couple of tips in addition that have been added to core since Otto's post. This is a handy post for theme developers.
A severe Jetpack vulnerability has been disclosed and patched in Jetpack. The bug allows attackers to publish posts, and has existed since 2012. The Jetpack blog post states the following: During an internal security audit, we found a bug that allows an attacker to bypass a site’s access controls and publish posts. This vulnerability could be combined…
Tom McFarlin outlines the tools the 8Bit team uses when developing projects on WordPress. There are a number of good debugging tools and plugins listed here.
Interesting perspective on how to stop juggling many client projects at a time. I know it’s been tiring me out.
WordPress lead generation or conversion plugins are not typically my type of thing. In fact, I’ve hated every instance I’ve ever seen of them. But Syed Balkhi and Thomas Griffin have created OptinMonster, their take on a WordPress conversion plugin that I don’t hate. That’s a strong compliment for this kind of plugin from me….
Thinking about releasing either a free or commercial WordPress plugin? Read this post by Tom McFarlin on wpTuts+ first, along with the discussion in the comments.
Zach Brown has a nice post up on how to set up microcaching with Nginx combined with Batcache to handle big spikes of traffic (or just to maximize efficiency and enable running a site on low resources). Zach explains that while Batcache is a great solution and performs very well, it still requires loading PHP…