Sucuri Security released a public announcement on October 8th regarding a large scale attack which could leave your blog at risk of hackers gaining unauthorized access. To summarize, attackers are taking advantage of a vulnerability in WordPress’s XML-RPC system.multicall method which effectively allows them to issue hundreds of login attempts with a single request. To…

Continue Reading

Why we rolled our own AB testing tool at POP

We’re happy to announce that we’ve unleashed our custom rolled AB testing tool, Winston, to the masses. While we’re currently only using it in our development and test environments, we’re satisfied with it’s current alpha stability enough to let others know they can dig in and have at it.   With all of the options…

Continue Reading

How to Never Worry About Email Templating Again

At POP, we’re always on the hunt for cleaner solutions to existing problems. Part of our recent website redesign efforts included new email messaging and design. As a seasoned developer, I’ve experienced the hell that is email templating dozens of times over. The overarching problem is the fragmentation of how each mobile, web, and desktop…

Continue Reading

Why We Chose API First Development

At POP, our site is entirely API driven. We separated our frontend codebase from our backend API in it’s entirety. The two sites are even in separate repositories. There are several reasons we decided to use this architecture which I’ll cover below. Openness and Future Consumer Availability We had decided that a day will likely…

Continue Reading

Great News: POP Now Supports Nameserver Changes

One recurring feature request we’ve seen since launching POP has been the ability for you to update your domain’s name servers. We’re happy to announce that we’ve just released a new DNS Nameserver Management page allowing you to update your name servers at will. For those of you that have already had your name servers…

Continue Reading