Upgrade to Pro — share decks privately, control downloads, hide ads and more …

WordCamp for Publishers 2017

emaildano
August 18, 2017
Technology
2
580

WordCamp for Publishers 2017

emaildano

August 18, 2017
Tweet

More Decks by emaildano

See All by emaildano
Shifter オンラインミートアップ ザ・ホワイトベルト!
emaildano
0
750
Lift and Shift WordPress to the Jamstack
emaildano
1
130
Crash Course on
Static WordPress in ~5 minutes (or less)
emaildano
0
67
Developing with WordPress, the JAMstack way
emaildano
2
1.6k
3 things I believe in and why I joined DigitalCube
emaildano
0
3.5k
The Future is SaaS
emaildano
0
82
Let's Build a Better WordPress @ WordCamp NYC 2018
emaildano
0
110
On Demand Dev with Docker + WordPress @ WordCamp Europe 2018
emaildano
0
620
Serverless PHL - March 2018
emaildano
0
380

Other Decks in Technology

See All in Technology
Incident Response Practices: Waroom's Features and Future Challenges
rrreeeyyy
0
160
Why App Signing Matters for Your Android Apps - Android Bangkok Conference 2024
akexorcist
0
120
Amazon CloudWatch Network Monitor のススメ
yuki_ink
1
200
Lambdaと地方とコミュニティ
miu_crescent
2
370
ハイパーパラメータチューニングって何をしているの
toridori_dev
0
140
初心者向けAWS Securityの勉強会mini Security-JAWSを9ヶ月ぐらい実施してきての近況
cmusudakeisuke
0
120
TypeScript、上達の瞬間
sadnessojisan
46
13k
いざ、BSC討伐の旅
nikinusu
2
780
マルチモーダル / AI Agent / LLMOps 3つの技術トレンドで理解するLLMの今後の展望
hirosatogamo
37
12k
OCI Security サービス 概要
oracle4engineer
PRO
0
6.5k
CysharpのOSS群から見るModern C#の現在地
neuecc
2
3.1k
元旅行会社の情シス部員が教えるおすすめなre:Inventへの行き方 / What is the most efficient way to re:Invent
naospon
2
330

Featured

See All Featured
Save Time (by Creating Custom Rails Generators)
garrettdimon
PRO
27
840
Speed Design
sergeychernyshev
24
610
The Art of Programming - Codeland 2020
erikaheidi
52
13k
XXLCSS - How to scale CSS and keep your sanity
sugarenia
246
1.3M
Statistics for Hackers
jakevdp
796
220k
StorybookのUI Testing Handbookを読んだ
zakiyama
27
5.3k
For a Future-Friendly Web
brad_frost
175
9.4k
Reflections from 52 weeks, 52 projects
jeffersonlam
346
20k
What's in a price? How to price your products and services
michaelherold
243
12k
Side Projects
sachag
452
42k
Bootstrapping a Software Product
garrettdimon
PRO
305
110k
Agile that works and the tools we love
rasmusluckow
327
21k

Transcript

  1. Daniel Olson @emaildano

  2. Daniel Olson @emaildano Daniel Olson COO, DigitalCube @emaildano

  3. Daniel Olson @emaildano Daniel Olson I develop WordPress SaaS
 products

    on AWS

  4. Daniel Olson @emaildano Alternative Hacks WordPress Security from
 the Outside

    Looking In

  5. Daniel Olson @emaildano Why Care? About WordPress Security

  6. Daniel Olson @emaildano Client Responsibility Why Care?

  7. Daniel Olson @emaildano User Responsibility Why Care?

  8. Daniel Olson @emaildano Personal Responsibility Why Care?

  9. Daniel Olson @emaildano Sh*t Happens Learn from your mistakes

  10. Daniel Olson @emaildano Old Habits
 Die Hard

  11. Daniel Olson @emaildano Secure Secure

  12. Daniel Olson @emaildano Approach security as a design problem
 and

    less of a technical problem

  13. Daniel Olson @emaildano sourcemaking.com @sourcemaking

  14. Daniel Olson @emaildano Workflow

  15. Daniel Olson @emaildano Workflow Find that weak link and fix

    it

  16. Daniel Olson @emaildano Workflow Lobby for the right fix Not

    the quick fix

  17. Daniel Olson @emaildano Workflow Lobby for the right fix Not

    the quick fix (But compromise)

  18. Daniel Olson @emaildano AntiPattern
 - SourceMaking - “commonly occurring solution

    to a problem that generates decidedly negative consequences”

  19. Daniel Olson @emaildano Design Pattern
 - SourceMaking - “An approach

    to a solution to a commonly occurring problem that’s repeatable and
 is not a finished design”

  20. Daniel Olson @emaildano Workflow ⇣ AntiPattern ⇣ Design Pattern

  21. Daniel Olson @emaildano Workflow Versioning Release Candidates for
 Personal Micro

    Improvements
  22. None

  23. Daniel Olson @emaildano A Few Ideas

  24. Daniel Olson @emaildano Disaster Plans Workflow – AntiPattern – Design

    Pattern

  25. Daniel Olson @emaildano Disaster Plans Discuss them, early and often

  26. Daniel Olson @emaildano Disaster Plans Total Data Loss Client or

    Customer Data Hack Unexpected downtime

  27. Daniel Olson @emaildano Disaster Plans Workflow – AntiPattern – Design

    Pattern

  28. Daniel Olson @emaildano Disaster Plans No Plan Partial Backup File

    only no config No SLA

  29. Daniel Olson @emaildano No Plan?

  30. Daniel Olson @emaildano No Plan? Get one

  31. Daniel Olson @emaildano Partial Backups

  32. Daniel Olson @emaildano Partial Backups Backup efficiently, not aggressively

  33. Daniel Olson @emaildano – Someone “If your data is in

    one place, it’s no place.”

  34. Daniel Olson @emaildano Files only no config

  35. Daniel Olson @emaildano Files only no config 12 factor app

    principles

  36. Daniel Olson @emaildano The Twelve Factor App 12factor.net

  37. Daniel Olson @emaildano – III. Config — The 12 Factor

    App “Apps sometimes store config as constants in the code. This is a violation of twelve-factor, which requires strict separation of config from code. Config varies substantially across deploys, code does not.”

  38. Daniel Olson @emaildano No SLA

  39. Daniel Olson @emaildano No SLA Define who’s responsable for what

    Broad and Narrow

  40. Daniel Olson @emaildano Hosting Workflow – AntiPattern – Design Pattern

  41. Daniel Olson @emaildano Web Hosting Find the right fit

  42. Daniel Olson @emaildano Web Hosting Hammered with bot traffic Secure

    Connections Recovery, Scaling, Automation

  43. Daniel Olson @emaildano Bot Traffic Put your server to work

    and serve static 404s
 with NGINX, Apache, or .htaccess

  44. Daniel Olson @emaildano Secure Connections

  45. Daniel Olson @emaildano Secure Connections Limit IPs and ports Force

    SFTP or SSH over FTP HTTPs Always

  46. Daniel Olson @emaildano Recovery, Scaling, Automation Does your host provide

    this? Again, config as code Go JAMStack or Serverless

  47. Daniel Olson @emaildano –JAMStack
 jamstack.org “Modern web development architecture based

    on client-side JavaScript, reusable APIs, and prebuilt Markup.”

  48. Daniel Olson @emaildano Go Serverless WordPress to Static

  49. Daniel Olson @emaildano Go Serverless WordPress to Static Scale Verically

    and Horizontally
  50. None

  51. Daniel Olson @emaildano WordPress Plugins

  52. Daniel Olson @emaildano WordPress Plugins They are not a cure-all

    Definitely still need them More != Better

  53. Daniel Olson @emaildano WordPress Plugins Learn what they actually do

    Can that apply to config as code?

  54. Daniel Olson @emaildano Tinfoil File Permissions

  55. Daniel Olson @emaildano Tinfoil File Permissions When in doubt, follow

    the docs 777 Stackoverflow guy is
 not your friend

  56. Daniel Olson @emaildano Hashing and MD5

  57. Daniel Olson @emaildano – WordPress.org “MD5 is used by default

    because
 it’s supported on all platforms”

  58. Daniel Olson @emaildano Hashing and MD5 Try bcrypt, scrypt, SHA256

  59. Daniel Olson @emaildano Thank you!

  60. Daniel Olson @emaildano Daniel Olson COO, DigitalCube @emaildano

  61. Daniel Olson @emaildano Alternative Hacks WordPress Security from
 the Outside

    Looking In https://speakerdeck.com/emaildano