security

Change WordPress Admin Login URL

I’m long overdue for improving my WordPress website security. With that said, I’m embarking on a journey to enhance my site security. Security implementation #1 is to protect my site against brute force attack . A brute force attack is when a hacker attempts to try various permutations and combinations of usernames and passwords to get inside of your WordPress blog. All WordPress websites have a common admin URL in the form of www.domain.com/wp-admin. Knowing this common URL makes it easy for a hacker to get started with brute force attack. Ok, enough blabbing … let’s get to work (follow my Github project for securing WordPress to see new implementations)

Continue reading…

An Easy Approach To Oracle Database Security Assessment

Performing routine holistic database health checks is a must – good database administrators do more than just keep their database up to PAR . I perform these health checks on a quarterly basis to analyze database capacity/resource utilization, availability, performance, and security. Oracle Database Security Assessment Tool (DBSAT) just made my life alot easier and my health checks more effective. DBSAT is a command line tool focused on identifying how securely the database is configured, who are the users and what are their entitlements, what security policies and controls are in place, and where sensitive data resides with the goal of promoting successful approaches to mitigate potential security risks. DBSAT is a lightweight utility that will not impair system performance in a measurable way.

Continue reading…

Keeping Your Database Up To PAR Isn’t Enough In 2019

Ensuring the database is up to PAR (Performance, Availability, Recoverability) has long been the focus of database administrators everywhere. Although this is still true, it is no longer an accurate depiction of the full scope of a DBA’s responsibilities. Modern businesses operate as online data driven machines. The demand and value placed on data, coupled with the current cyber security concerns means that database administrators have to redefine their focus. This blog is intended for DBA’s looking to a add value in a modern IT world. I will mention technology implementations specific to Oracle databases, however the concepts mentioned in this blog post are applicable to any database platform.

Continue reading…

Secure Your Joomla Website With 2FA

I recently upgraded my Joomla! site to version 3.9.2. As I was reading through the post installation messages I noticed that Two-Factor Authentication was available. How exciting, finally another layer of security around user authentication. Apparently the Two-Factor Authentication was added to the Joomla! core as of version 3.2: I’m a little late to the game but this feature is so cool and easy to implement that I have to spread the word.

Continue reading…