How to remove ASP.Net MVC Default HTTP Headers?
Each page in an MVC application I’m working with sets these HTTP headers in responses: X-Powered-By: ASP.NET X-AspNet-Version: 2.0.50727 X-AspNetMvc-Version: 2.0 How do … Read more
security
Which of WordPress’s .php files need to be directly accessible via HTTP?
I’m trying to tighten up security on my WordPress installation, and one of the things that seems like it might be a good … Read more
How to limit WordPress pages during updates?
I will be doing upgrades to the design and content of my WordPress site. During this time I only want the homepage to … Read more
Security – Ajax and Nonce use [closed]
This question is unlikely to help any future visitors; it is only relevant to a small geographic area, a specific moment in time, … Read more
How does Cross Site Scripting (XSS) work exactly? [closed]
Closed. This question is off-topic. It is not currently accepting answers. Questions should be specific to WordPress within defined scope (merely happening in … Read more
SSO with CAS or OAuth?
I wonder if I should use the CAS protocol or OAuth + some authentication provider for single sign-on. Example Scenario: A User tries … Read more
ASP.NET Identity’s default Password Hasher – How does it work and is it secure?
I am wondering wether the Password Hasher that is default implemented in the UserManager that comes with MVC 5 and ASP.NET Identity Framework, … Read more
Securing a multi-user permission structure
I’m currently working on a team that needs two distinct users from the same wpadmin group to be able to modify the wordpress … Read more
hSite has no css on mobile [closed]
Closed. This question is off-topic. It is not currently accepting answers. Questions that are too localized (such as syntax errors, code with restricted … Read more
How to allow internal links using wp_kses filtration
I’m working on front end submission and of course I want to secure data by filtering before inserting to database. The form contains … Read more