The most important step anyone can take to make sure that a site is secure is to keep in mind that no single process or method is sufficient to ensure nothing bad happens. WordPress itself provides a sizable library of functions, some of which can be dangerous. Beyond that, there are lots of PHP functions that a WordPress (PHP) developer will use with some frequency that can be dangerous when used. Before deploying a new plugin in WordPress, it’s a good idea to keep a list of easy-to-misuse functions by your side. In this article, David Hayes will take a closer look at some functions which you can and should use as part of a broader security strategy.
Read more…
