Subj : Re: wordpress 6.2
To   : hollowone
From : poindexter FORTRAN
Date : Wed Jul 19 2023 08:22:00

-=> hollowone wrote to Roon <=-

 ho> As I'd not like to recommend WP, still if you need to manage one from
 ho> cybersec perspective you better hire some real-time vulnerability and
 ho> high availability scanners that can help you find flaws quickly (I use
 ho> F-Secure Radar and Site 24x7 simultaneously.

 Wordfence does a pretty good job of managing notification of vulns and
 does some rate limiting on suspicious traffic.

 Since Wordpress is the most well known platform these days, it gets
 used in a lot of places where a full CRM isn't needed. I've seen
 companies with landing pages set up in WP.

 I'm curious to try out some of the static site generators like Hugo.
 All I really need blog software to do is format text or markup
 language.

 ho> Fortunately I can do it as CEO is on my side.. but if you don't have
 ho> such mandate, you better find the way to discipline your marketing
 ho> department and their digital partners by working policies and sole
 ho> responsibility over app level of the CMS infra - contracturarily and
 ho> with big penalties. That's where they sort of calm down and start
 ho> cooperating better and thus creating your mandate of power when you
 ho> manage CyberSec of those sites.

 My company just got rid of a "managed" WP site. Managing, to them,
 meant site changes and processing updates for Wordpress and plugins
 twice a year. I was given admin access and just started pouring through
 updates as soon as they hit the server.





 ho> ... Xerox Alto was the thing. Anything after we use is just a mere
 ho> copy.

 ho> --- Mystic BBS v1.12 A48 (Linux/64)
 ho>  * Origin: 2o fOr beeRS bbs>>>20ForBeers.com:1337 (21:2/150)

.... The most easily forgotten thing is the most important
--- MultiMail/Win v0.52
 * Origin: realitycheckBBS.org -- information is power. (21:4/122)

.