08-25-2019, 08:07 PM
this is why i like to keep system files on its own part and mount tmp and other doable mount points as nodev,noexec,nosuid. With a hope that that mitigates some attacks at least.
Also updating regularly and using themes and plugins under active development is a must nowadays. You will have to remain proactive even after that.
Also i think it is not very fruitful to point at guys at wordpress. I am sure they are doing their best. But code bases and projects have become vast nowadays and vulnerabilities are bound to crop up more before everyone starts using some kind of provably safe code (like they do in many realtime mission critical systems). but then that will hamper creativity and collaboration.
we need to remember that these projects are are run by many people together and at various levels. so we will have to be tolerant.
be proactive. may be use better firewall. if it handles sensitive data then may be you should do it yourself or hire peeps.
no point blaming or ditching them. they have their uses.
Also updating regularly and using themes and plugins under active development is a must nowadays. You will have to remain proactive even after that.
Also i think it is not very fruitful to point at guys at wordpress. I am sure they are doing their best. But code bases and projects have become vast nowadays and vulnerabilities are bound to crop up more before everyone starts using some kind of provably safe code (like they do in many realtime mission critical systems). but then that will hamper creativity and collaboration.
we need to remember that these projects are are run by many people together and at various levels. so we will have to be tolerant.
be proactive. may be use better firewall. if it handles sensitive data then may be you should do it yourself or hire peeps.
no point blaming or ditching them. they have their uses.
Sincere Thanks to VirMach for my VPS9. Also many thanks to Shadow Hosting and cubedata for the experiences I had with their VPSs.