Impractical security for the insanely paranoid
We are very pleased to welcome back Tim Nash from 34SP, a hosting company and also one of our lovely sponsors, to join us this August to take his teachings on security to the next level.
Tim is the WordPress Platform Lead for 34SP.com, a managed WordPress host. His job is a mix of Dev/Sec/Ops with an unhealthy dose of project management thrown in. He is also one of the co-organisers of WordPress Leeds, as well as a regular speaker and a less frequent writer and video presenter.
The evening will be split into two topics:
Server Side Hardening
In this section, Tim will look at some options for hardening a linux-based server to host a WordPress website, with emphasis on common open source tooling.
– You won’t like Linux very much anymore
– You will gain one level in posix understanding
– You will be smug in learning many things most of which someone else should be doing.
We will then take a short break, and if your brain can handle some more, we’ll move into the second half of the evening:
Code Auditing and Pen Testing
In this section, Tim will talk about how to review and test code, looking for vulnerabilities and introducing the concept of defensive coding.
– You will be able to bluff people into believing that your imaginary testing regime is even more robust
– You will gain a new class “hacker”
– You will be less smug then before, as this section is very much things everyone could do but you won’t because its far to much like hard work so instead will simply feel guilty.
Skill level: Intermediate, Advanced