This is a replay of the live broadcast with Jason Tucker, Bridget Willard, Kevin Hoffman, Verious Smith III, and Adam Thomson
EP36 – Securing your #WordPress website with #SSL – WPblab
In:
Weekly Watercooler Discussions about WordPress and it’s community.
199 responses to “EP36 – Securing your #WordPress website with #SSL – WPblab”
I was gonna jump on but I didn’t bring my uniform 🙁
https://chrome.google.com/webstore/detail/https-everywhere/gcbommkclmclpchllfjekcdonpmejbdp?hl=en
Wasn’t Google planning to force people to use Https ? However they seem to have backed off from this position.
@jonathandenwood https://moz.com/blog/https-tops-30-how-google-is-winning-the-long-war
https://letsencrypt-for-cpanel.com/
It’s included free with wpengine
There’s the stigma out there…
http://www.wpbeginner.com/wp-tutorials/how-to-add-ssl-and-https-in-wordpress/
Cool shirts yo.
@JeffHester SSL? I have a personal account with them and SSL is not included.
http://www.wpbeginner.com/wp-tutorials/how-to-add-free-ssl-in-wordpress-with-lets-encrypt/
Dustin Meza said the best thing about WP security at WCOC. “Its bad (plugin) code thats not secure, Its people who dont update thats not secure, but WordPress core is VERY secure”. I’m going to use that for everyone that asks me about WP security from now on.
@AdamThomson Totally!
@Cape_Dave I have a pro account… maybe only at that level and above?
@JeffHester Yeah, that is probably it.
“The reason this doesn’t work in IE6 is that the server is using SNI to deduce what certificate to return. XP (and thus IE6) doesn’t support SNI in the HTTPS stack. See for details.”
lol
on my palm pilot
http/2
I have a client who sells a lot online, but they leave to Paypal to make the transaction. I use WordFence inc. firewall. Do they need SSL?
Oh sorry
@AdamThomson I believe PayPal has its own.
So it’s not just transactions…
@AdamThomson emails etc
@heyadamsilver yay bye
cya. getting daughter from dance.
Cya Adam
ican help get free ssl for your site dm me on twitter if you dont vant pay for it
SSL has some interesting implications for HTTP/2, specifically how we serve assets on WordPress sites.
Wow there’s def a couple of websites I thought were secure, but I wasn’t thinking about my own access being exploited
if asking for your email is dogey
I was thinking “why would they need VPN they already get US netflix”… haha
alomst every thing is exploitable
frontier
free wifi is ok just got to know how to protect yourself
bigest hakers are google nsa
…Because my upload sucks.
Thanks all, great stuff. East Coast time, fading fast 🙂
SORRY
Oh damn give me like one minute…
HAHA
love me some CLI 😀
Cracking RC4. On paper, TLS supports a variety of strong encryption algorithms. In practice, about half of all TLS traffic is secured with the creaky old RC4 cipher. And this should worry you –
yes^
like tor
Tor
Toe browser
tor
onion protocol is kinda sketchy it doesnt always anonymize you
do you need SSL if paypal is offsite
Likes
Favourites
Bookmarks