Archive for the ‘Security’ Category

25
Jul

Secure WordPress by SSL

   Posted by: techiecat Tags:

Using SSL protocol to protect your critical information, such as user name and password, is a good idea. If you may log to your blog via an unprotected wireless network or you make some directory (e.g. uploads/) writable by WordPres, you’d better use SSL (i.e. using https:// type URL) to encrypt the administration traffic.

If your WordPress blog is hosted by a web-hosting provider, the provider likely has SSL solution for you already. In this article, I would like to share my experience on SSL solution on a self-hosted machine, which use a Fedora system and Apache httpd server.

The best solution in WordPress is probably to use the  Admin SSL Plugin. However, it cannot set up everything for you. I will give a complete tutorial on how to make SSL work for you, including how to get a key and certificate, how to set up SSL module under Apache and how to fix a bug of the Admin SSL Plugin.

Read the rest of this entry »

10
Jul

Fun Anti-Phishing Game

   Posted by: techiecat Tags:

Anti-Phishing PHIL is a web game for the purpose of educating web surfers to identify phishing URLs. It is developed by the CMU Usable Privacy and Security Lab. You, PHIL, a young fish in Interweb Bay, learn from your FARTHER how to find food and avoid dangers (phishing URLs) that lurk in the Bay. The game is fun and short (4 rounds, could finish in 10 minutes). Go ahead and play!

Anti-Phishing PHIL Game