Skip to content

Tundis is one of 175 business owners sued by Emily Fuller, of Broward County, a visually-impaired woman holding businesses accountable if they have websites that are not ADA compliant. Fuller, in her lawsuit filed Jan. 4, claims that she was not able to use the recently launched website of Tundis' shoe store.
-- News10 ABC

We tend to put a lot of thought into the visual design of websites, without much consideration for the hearing or visually impaired user. I think this blog is okay - probably a bit better than most websites, since the Tiny Framework theme incorporates screen reader tags and proper semantics, but when I look at something like Lighthouse for the Blind, I know it's probably not ideal.

Is accessibility something you consider, when it comes to your website? I know the WordPress team took it up, three years ago. I'm not sure how much that has moved the needle, however.

-- Scrib

When I upgraded ModSecurity to version 2.9.3 from the version 2.6.7 that was bundled in the Bitnami WordPress stack, I was then able to install the OWASP ModSecurity Core Rule Set (CRS) version 3.1.0, which requires ModSecurity 2.8.0 or higher. Out of the box, the CRS will throw some errors with WordPress and generally be a nuisance, but it comes packaged with a configuration option that will take care of most issues.

...continue reading "ModSecurity Exclusions for WordPress"

Bot Attempting WordPress Logins
Automated login attempts using both "admin" and the site name as usernames

Running WordPress on my own server, like on Amazon Web Services (AWS), is a bit more work than even the popular commercial website hosts, since the server configuration is entirely up to me. This site had been up for about three weeks, when I noticed 900 login attempts on WordPress. I've never run into this on WordPress.com or shared hosting sites like GoDaddy or HostGator - presumably because they have applications protecting their servers from script kiddies (bandwidth is money).

...continue reading "WordPress Gotchas When Rolling Your Own Site"

WordPress Certified by Bitnami
Hosting a WordPress blog on Amazon Web Services is hard to beat, provided that you have a working knowledge of WinSCP and PuTTY, or the equivalent SFTP and SSH functionality on a non-Windows device. Of course, it pays to thoroughly understand the install documentation beforehand, but you can be logging into your WordPress admin page in just a few minutes.

...continue reading "WordPress Certified by Bitnami"