Posts tagged "Security"
Essays, field notes, and engineering write-ups by Al Amin Ahamed covering Security — practical patterns, gotchas from production code, and lessons learned shipping real systems. Topics include architecture decisions, performance tuning, debugging stories, and integration notes you can apply directly to your own Security work.
· 10 min read
WordPress Plugin Security: Lessons from Two Disclosures
The exact security checklist I run every plugin through before release — capability checks, escaping, nonces, and the disclosed bugs that taught me each lesson.
· 8 min read
Caddy + Laravel: A 50-Line Production Config
The exact Caddyfile I run in production — automatic HTTPS, HTTP/3, security headers, rate limiting, asset caching, all in ~50 lines.
· 8 min read
Cloudflare in Front of Laravel: Real IPs, Trusted Proxies, Locked-Down Origins
How to make Laravel see real visitor IPs through Cloudflare — TrustProxies config, origin firewall rules, geolocation headers, and the caching gotchas.