26. botnets are the attackersā response
to our better defenses
as wordpress becomes a better target
the incentives for breaking it rise
@brennenbyrne
32. the old way of doing this meant:
!
1. typing your password
2. getting a text with a bunch of numbers
3. typing in the bunch of numbers
!
(google authenticator)
@brennenbyrne
35. if you want to learn more
about this, go see jesseās
crypto-101 at 3
@brennenbyrne
36. @brennenbyrne
for most of us, ssl
might as well stand
for secure symbol lock
it actually stands for āsecure socket layerā
37. without ssl, everything is public
@brennenbyrne
only do stuļ¬ you wouldnāt
mind standing on a table
and yelling about in a
coļ¬ee shop
i.e. no passwords or credit cards
46. use two factor for admin
@brennenbyrne
otherwise
install bruteprotect and cloak
read wordpress security checklist
getclef.com/wordpress-security-checklist