TimThumb WordPress Security Vulnerability

Zero Day Vulnerability in Many WordPress Themes TimThumb is a popular image resizing utility used on millions of sites worldwide. It is inherently vulnerable because it allows hackers to upload and execute arbitrary PHP code in your timthumb cache directory. To prevent this from happening, it is urgent that you either update your TimThumb script […]

Read More

Finding a Web Host and Installing WordPress

WordPress Varieties WordPress.com — a version of WordPress that is hosted for free at the WordPress.com website. When you sign up for a WordPress.com account, you don’t have to worry about installing WordPress. You just sign up, and you’re given a login to an account that has WordPress already set up for you. You can […]

Read More

WordPress Resources

I’ll be adding to this list, so please let me know if you have any WordPress resources you think should be added here. For those of you who want to understand WordPress PHP better, be sure to check out: http://adambrown.info/b/widgets/easy-php-tutorial-for-wordpress-users/ WordPress Books The CSS Anthology: 101 Essential Tips, Tricks & Hacks, 3rd Edition – While […]

Read More

WordPress Security Essentials Class in Boulder

Please join me for this class on WordPress Security Essentials, Tuesday, July 13, 2010, at the new Boulder Digital Arts studio. Use discount code BDA-Instructor-2010 to receive 10% off the class. WordPress is an easy, powerful way to build and maintain a website.  This flexible, highly customizable content management system (CMS) is ideal for blogs, […]

Read More

BlueHost Servers Down Due to Power Outage in Provo, Utah

Today, from about 2:10 to 3:10 MT (by my calculations) my bluehost.com and hostmonster.com hosted websites were down. Twitter provided some clues as to a power outage, and I searched for Blue Host’s headquarters and found the Salt Lake Tribune’s article about Provo, Utah’s massive power outage. Within 1 hour, the sites were all back […]

Read More

How do I set up RSS Feeds on my WordPress website?

Q. How do I set up RSS Feeds and enable email subscription to feeds on my self-hosted WordPress website? Also, how do I promote that feed elsewhere (like on my LinkedIn account)? By default, WordPress comes with various feeds (http://codex.wordpress.org/WordPress_Feeds). These different feeds are invoked via template tags in the WordPress theme header.php file. You […]

Read More

3 Great Plugins for Embedding Video on WordPress Post or Page

Q: How do I embed video on my website? A: The answer to this question depends on who owns the video and where it is hosted. If it’s a video you’ve created, and you want to host it on your site, then you’ll want to convert the video file (whether it’s an .mov, .avi, or […]

Read More

Do you upgrade all of your clients sites every time a new version of WordPress comes out?

Q: If you develop websites with WordPress for clients, what do you do about upgrading their sites? Do you upgrade all of your clients sites every time a new version of WordPress comes out? Do you only upgrade when there’s a security risk? Do you tell your clients before you start that you will be […]

Read More

7 Things to Keep in Mind When Assessing the Security Risk of Using WordPress as a CMS

The other night, I was part of a panel discussion at Boulder Digital Arts about WordPress. We had three panelists: me, Bethany Siegler of UniqueThink.com, and Doulgas Wray of MacWebGuru.com. In the middle of the presentation, someone asked: A programmer friend of mine suggested that I should use a lesser known CMS because WordPress is […]

Read More

Creating a Custom Single.php template

All posts on your WordPress site will be formatted using the single.php template. The single.php file is used when you click on the post title on the home page of the blog, and you see just the single post. This is efficient, but what if you have a Category of your website where you want […]

Read More