WordPress as a business PHP 4 Example

WordPress has just been named as a good Example for backwards oriented coding practices when “updating legacy code to PHP5 may be difficult or offer no business benefits”[1]. As it’s always to choose the best tool for the job this might let you learn a lot about privately owned wordpress.com of which it is to be said, it uses the WordPress codebase. Continue reading →

PHP Turns 15!

Congrats. 15 Years of PHP. On 8th of June 1995 the whole “mess” started as “Personal Home Page Tools (PHP Tools)” and turned the internet into a crowd of developers 😀 – Pretty promising! Continue reading →

New WordPress Answers Site

As a programmer you might already know of the great Stackexchange Q&A Software that is powering the popular Stackoverflow (SO) Page but also the Webdesign Q&A Page doctype (DT) for example.

If you’re doing WordPress Support, Administration or even Programming and you feel yourself of having some expertise, you should checkout WordPress Answers in Stackexchange’s Area 51. It’s a proposal for a WordPress related Q&A site:

Proposed Q&A site for wordpress developers and administraters. If you write plugins or themes, or administer your own WordPress site then this is the site for you.

See you and meet some regulars over there.

Read On: Splintering the Community by Dougal Campbell

The Lyceum Project

Even though it’s officially shutting down (these days) I find it noteworthy. This was a wordpress fork that was not that well known to me and since now the MU fork went back into the main project, the differences between those two might reveal some interesting stuff – if not the story on it’s own as well.

Read On: The Lyceum Project Homepage

Meet Symphony

Symphony is a web-based content management system (CMS) that enables users to create and manage websites and web applications of all shapes and sizes—from the simplest of blogs to bustling news sites and feature-packed social networks. Continue reading →

ByeBye Facebook, hellösi Gink

Social Networks are popping out of the ground like mushrooms when the sun comes out after a hard rain these days, but clearly there is one worth to spread the word: Continue reading →

wordpress File Headers

Yesterday I’ve spend some of my brains electrons on file headers which, next to a new ticket (#13699), led to some documentation in codex.

Prevent XSS on your wordpress Blog with CSP

CSP – short for Content Security Policy – is a Mozilla driven specification to reduce or eliminate a site’s XSS attack surface.

In Ticket #10237 Denis De Bernardy suggested to implement the new Mozilla feature to prevent XSS. That was about 11 month ago. The ticket got my attention as well those days but I could not give it the thoughtfulness it desired. My first-approach-patch was rated as too restrictive (hey I like it strict 🙂 ).

Just yesterday I had the ticket on follow-up. And what should I say? Two weeks ago, a CSP implementation as a wordpress plugin has been finished by web security engineer Brandon Sterne (bsterne) and it’s released for a first test. Continue reading →

PHP 4 end of life announcement

There were some rumors spreading around that there would be no official PHP 4 End Of Life announcement. I have no clue for what such a saying should be good for Continue reading →

What happened to the “Thank a plugin developer day”?

In January 2009 Matt Mullenweg was somehow overwhelmed because the 4 000th plugin was in the wordpress plugin repository. He was in such a good mood that he announced January 28 to be the official “Thank a Plugin Developer Day”. Continue reading →

Zendpress

Zendpress is WordPress built with Zend Framework – If I understood that right, the basic Idea is to have a core blogging application running on top of the Zend Framework (so you’ve got MVC, Models, Controllers, Views, a supercool Form Manager – I would love to see that backend!) while it should be compatible with WordPress Themes and hopefully plugins. For the later I think this won’t work out that well in the end.

It’s that new that you even can not find any code in there.

ZendPress Homepage; Zendpress Project on Google Code.

Number of the Day: 1 187

I was able to upload 1 187 images at once via the WordPress flash uploader w/o hitting the resource limit.

You do not have sufficient permissions to access this page.

Hint: WordPress Login Problems? If you see the message “You do not have sufficient permissions to access this page” while you’re totally sure Username and Password were correct, check your browsers settings wether or not “Referer” are activated. Continue reading →

Mass Deletion Problems with WordPress

I had a sort of hardcore testing running over the weekend, there was a bogus bugreport that made me uploading more than 80 thousand images to my blog in #13443. Now my Blog has way too many useless images, some thousand of them even unattached. I’d like to get rid of them all asap now. If you wonder how that turned out: Continue reading →

QueryPath – Find your Way

QuerPath is another PHP library for working with XML and HTML. Licensed under LGPL/MIT it self-announces it with the following features: Continue reading →

freshly served: oclHashcat v0.19

The kitty catty on speed (oclHashcat) is there with a new release. oclHashcat uses specialized attacks ported from hashcat (a CPU based variant) that reflects both: GPU and hardware architecture (the way how specialized chipsets are integrated into the personal computer). Done that “kitty style”, it excells in pretty much the best benchmarks (if not all!) for this class of programme. Continue reading →

Google Font Directory – A Dive into

We’re closer to a better Web-OS these days. Fonts, Codecs and all the gems to come: Google Font Directory just started (official Google Blog Post). Continue reading →

Tools: WebSVN

I ran over this by need and I must say in the end I’m pretty confident with: WebSVN is a PHP script/webapp that publishes one or multiple Subversion-Repositories as HTML on the fly. Continue reading →

Enhancing Feeds: Comment RSS Security

There is a known bug in WordPress that is about displaying feeds for private posts publicly. If you’re using the private post feature, you should consider taking a look to this plugin which is not officially available in the plugin repository but here:

Comment RSS Security

Plugin that enhances the default security behaviour of WordPress. Disables showing comments related to private posts in RSS.

• Download: Comment RSS Security WordPress Plugin (Source)
• Author: Palotas, Boldizsar

Via: #11695

Control your site’s usage in frames

A nice way to improve your website against click-jacking and framing is now available for Internet Explorer 8, Safari 4 or Chrome 2. And for Firefox users who are using the No-Script plugin. You as web-developer only need to add a header: Continue reading →