Why WordPress? Do and Don’t

Why WordPress? Do and Don’t

It’s WordPress again? Someone has written to our tech support department, asked if we can install WordPress for him. If you are using Plesk Onyx or cPanel, they have a one-click installer for WordPress in the control panel. Plesk Onyx has this WordPress Toolkit to manage your WordPress under one roof. But this is not the topic today. There are so many WordPress websites. If you are an amateur, I recommend you read further to understand WordPress further. This is extremely important and you will know why.

There are many websites are hacked each day, do you know it is 70% of them are WordPress websites. It is because most have installed WordPress and leave it in Auto-Pilot mode. Things start to turn ugly if you are doing this.

a. If you have decided to use the WordPress website, you need these skills like adjust the php.ini, restart your web server to address the changes if you have a VPS. For Shared Hosting users, you might need to address this through .htaccess or a custom php.ini, for example, time-out error when you are trying to upload a file through WordPress. Contact your web host if necessary.

b. Load only the plugins are needed. Not the more the better. A plugin uses resources like memory and processing power. They can slow down your website. This is bad for your visitors.

c, Compress your image. Do not use a large image with very high DPI. They will greatly slow down the loading time of the page and website. Keep it low enough resolution and still details enough on a computer screen.

d. Always protect your wp-admin login. You can use Sucuri Firewall Pro or Wordfence to protect any unauthorized login attempts to your wp-admin page. Remembered, you are using opensource CMS, anyone can download. The admin login URL or path is known to all. Thus, brute-force login using an automated script is possible and this is happening to all WordPress websites.

f. Update the WordPress and its plugins as soon as there are new releases. As they are opensource, it is vulnerable and especially you do not have any protection. If you are unable to spare the time to monitor and execute this, I will suggest you look for an alternative CMS. Frankly speaking, all opensource CMS has this nature in common. They are vulnerable and hacking is always possible. Tus, protection like Sucuri Firewall Pro is a must.

g. Backup your WordPress website, as often as you made changes. The backup will restore the website in the event if the website is hacked or any incompatibility of plugins. You never know when you will need them. But a backup can save you from a lot of works.

Control panel providers have made life easier to install WordPress into your website. Yes, it is not difficult to install. The problems will start to come when you are maintaining it. In my opinion, it is easy to start but not straightforward at all to maintain it or choosing a right platform isn’t easy. I have seen most WordPress sites are slow. There are a few plugins may help by implementing caching. Again, if you are working with limited resources, you have to avoid heavy plugin like woocommerce for example.