Some useful information for when someone tells you that WordPress is not a secure enough platform for their business website.
WordPress has been around for 15 years. Today it powers around 30% of the top 10 million websites on the internet. Being such a popular platform, WordPress has been in the limelight quite a few times, more often than not for wrong reasons – security, or lack of. Though is it really as insecure as many think? If it is really that insecure, how come world renowned names and brands such as The New York Times company, Time.com, Microsoft and The Walt Disney Company use it to power their websites, or some sections of it?
Learning from history
WordPress is a free and a easy to use blogging platform, which nowadays is more of a fully blown CMS. The ecosystem of plugins, themes and services built around it has made it possible for anyone with an internet connection to build and manage a website, even if they do not have a computer!
This means that many, who do not have any experience and the knowhow of what it takes to run and manage a website, have built a website. Many, who do not have IT / coding experience, have developed a plugin or a theme, and started a WordPress support agency. This ecosystem and the ease of use are the advantages WordPress has over competing solutions. Though
There are legitimate concerns about Gutenberg - but what do all of these bad reviews really mean?
Perception is everything. And when the perception of your product or service isn’t very positive, it can really throw a monkey-wrench into your plans for success (just ask Windows 8). Frankly, it can be very difficult to shake free from this kind of negativity. At the moment, that’s what we’re seeing with the WordPress Gutenberg editor. As of this writing, the new editing experience hasn’t been merged into WordPress core, but is available in the form of a beta plugin. WordPress 4.9.8 included a call to test the plugin, which led to a huge leap in usage. With that came a flood of reviews – many of them negative.
But how big of a deal are those reviews? This is, after all, a piece of software that is still technically in beta form. Still, it seems like there is pent up frustration when it comes to Gutenberg. One wonders how this bodes for its future.
A Long Time Coming
Since the editor’s first beta plugin release back in June 2017, it seems the whole idea of the Gutenberg project has garnered controversy. Some developers have been miffed by the process for building out the new feature. Others have expressed concern about the effects it will have on
Here are four things you can learn from some of the biggest names in tech employ.
In 2018, tech companies hold 130 spots on Forbes Global 2000 list, ranking the world’s top public companies. No matter what kind of business you own or operate, there is much to be learned from the way tech companies market themselves. Even giants like Apple, Samsung, Google or Facebook, tech companies have to hustle hard to stay ahead of the never-ending competition barking at their heels. One thing you can be sure of, is that tech companies analyze every single aspect of their businesses, from their service providers to their delivery services all the way down to the landing pages on their websites. Know Your Target Market and Target It Aggressively
Apple and Samsung are perhaps the two biggest names in mobile phones. While they are in one sense in vigorous competition, they each target their own very specific and differentiated market share. Perhaps, nowhere is this more clear than in their respective landing pages.
Apple is well known for their smooth, clean lines and rigid attention to detail. Apple users are often strong type-A personalities. They are immaculately groomed while riding in the back of their immaculate, luxury vehicles listening to classical music. Apple’s
A look at how WordPress changed the CMS landscape back in the day and how it impacts us today.
If you're e an aspiring entrepreneur who wishes to launch a startup, these six marketing strategies will blaze your trail to success.
For there’s a will, there’s a way. A really wise quote from “Shrek,” isn’t it? So, if you have a startup idea and hope to bring it to life, the good news is that, Yes! There are actually a lot of ways to do it. What’s the bad news then? Well, to put it mildly, launching a startup is never easy. Now, at the pre-launch stage, putting up with this fact seems absolutely painless, but will you be ready to realize it, accept it, but keep moving forward when you face the first obstacle on your way to success? Let’s agree on the point that you will.
Lack of commitment and motivation are some of the main reasons why about 90% of startups fail. I admit that’s a huge number. But you should know that it’s artificially exaggerated.
Firstly, the rate of failure is different for different industries. Here is the eloquent ranking provided by Small Biz Trends and Failory.com:
Secondly, as of 2017 and according to the results of the research conducted by Cambridge Associates in Boston USA, the real percentage of failed startups hasn’t risen above 60% since the very beginning of the 2000s.
Why add as much as 30%? Believe it or not, the bigger
In this interview with WhatIsMyIpAddress.com, plugin author Robert Abela talks about the importance of WordPress activity logs, WordPress security, compliance, the WordPress activity log plugins market and more.
WhatIsMyIPAddress.com founder Chris Parker talks with WP Security Audit Log plugin author Robert Abela about the importance of audit logging on WordPress sites. Robert Abela is the founder and CEO of the WP Security Audit Log plugin. He is based in the EU and has more than two decades of experience in systems engineering and security. After working for companies such as GFI Software and Acunetix, Robert spent some years helping software startups grow their products and markets. When time allows Robert writes about WordPress security on his blog WP White Security.
CHRIS: What are the most missed security practices for WordPress?
ROBERT: There are two types of WordPress users - those who have a website but do not have any knowledge on what it takes to manage a website, and experienced systems administrator. So you have two extremes, mainly because WordPress is very easy to use so people with no prior experience can setup a website within minutes.
The former typically do nothing in terms of security. They miss the most basic security practises such as not using strong passwords and using outdated software. In fact weak passwords and outdated software (plugins and WordPress core mostly)
Landing pages tend to be very focused on the critical information and show as little unrelated content as possible. But how much do you know about landing pages?
What is a landing page? A landing page is a page built for the main purpose of increasing sales and/or generating leads for your business. When you build any marketing campaigns on social media or through emails, you use a link that sends them to your website. The page that they ‘land’ on needs to be able to capture their attention immediately, so they stay to read it, see your offers, products or whatever you wish to promote.
In that way, visitors do not get distracted and leave before they accomplish the desired action (purchase a product, subscribe to a newsletter, etc.)
You can think of a landing page as a flyer that you hand out to people. You only want it to show the key information about what you are offering that would impress the potential client.
The most common purpose of landing pages is lead generation. Lead generation is the process through which you identify potential customers for your products or services. This then helps you focus your marketing efforts on them and increase your sales.
Coming Soon Page
Building an amazing website takes time, so a great strategy is to build a coming soon page in the meantime. As the name suggests, it is a
This is the first of a series on the WordPress Philosophy. What is it and why does it matter. A new article will be published each month of this year.
Have you ever installed a plugin into your WordPress website and thought, “Ummm… that’s different”? Something about it just stood out as not quite right. The settings felt strange, or there were way too many settings, or maybe it changed parts of your site in ways you didn’t expect. Most often this experience involves a plugin or a theme that doesn’t do things “The WordPress Way.” If you’ve ever heard that phrase, it probably sounded a bit mysterious. That’s because while “The WordPress Way” does have a definition, it’s still a bit fuzzy; it’s not so simple to boil it down to a sentence or two. It’s not merely about the settings interface, or where to put the menus — it’s a whole philosophy of understanding user experience, development, and even freedom itself.
This series is about the WordPress Philosophy. Yes, WordPress has an actual philosophy! This simple document will hold a lot of sway over everything that you interact with in your WordPress admin.
By the end of this series, you’ll have a stronger grasp of the WordPress Philosophy. You’ll be empowered to make more
The question "why Gutenberg and why now?" Doesn't seem to be one that I've seen answered clearly anywhere. I attempt to answer it clearly in this guest post on the WP Tavern.
Tevya Washburn has been building websites for more than 20 years and building them on WordPress for 10. He bootstrapped his website maintenance and support company, WordXpress, that he’s worked on full-time for more than seven years. Late last year he launched his first premium plugin, and presented at WordCamp Salt Lake City. He lives in Caldwell, ID and is the founding member of the WordPress Meetup group in Western Idaho.
It was only a few months ago that I knew almost nothing about WordPress’ new Gutenberg editor. I had a basic concept of what it was and this vague annoyance that it would mean I’d have to learn new things and probably put a lot of effort into making some sites or projects work with it.
I kept hearing all of the frustration and issues with Gutenberg itself and the lack of information on how to integrate with it. At WordXpress we recently pivoted away from designing websites. When we designed them in the past, we used premium themes. I figured Gutenberg was the theme developer’s problem.
I still had this feeling of dread though, knowing many of my favorite plugins might not add support for it. I also felt some apprehension that even if the
While you absolutely could paste in an HTML form into your WordPress site; you really shouldn't. There's much more that goes into forms that you really don't want to worry about.
But don’t. Making a WordPress contact form without a plugin is, most of the time, not worth it.
Look — I’m the guy who makes a form builder plugin so I have a bit of an interest in people using a WordPress form builder. But, I also spent the last few years obsessing over a web form that creates other web forms. This is something I’ve thought a lot about. Probably thought too much about.
Faster to Prototype & Faster to Finished Product
A form, no matter how you build it, is
We love shiny new things, but sometimes it's better to wait a week or two to update plugins/themes. Unless of course there is a security update! WordPress life :)
I have used WordPress going on 10 years now. It’s awesome, and I couldn’t imagine myself working with anything else. However, just like with every platform, there are ways to go about forming what I call “good and safe” habits. Today I want to discuss a little bit about updating WordPress plugins and why I typically recommend users to wait before updating to the shiny new version. Trust me, this will cause you less stress in the long run.
I decided to take a deep-dive into what Gutenberg might mean for the broader WP ecosystem. Content authors, plugin authors, and page builders all have different ways they may have to pivot once its in Core.
I chatted with some prominent plugin authors, page builder authors, and Gutenberg contributors to understand how Gutenberg could impact the broader WordPress ecosystem. This article discusses how it can impact content authors, plugin authors, and page builder plugins in the near future. Gutenberg is the proposed new content editor for WordPress Core. It is currently in beta development. It is a radical departure from the simple WYSIWYG (what you see is what you get) approach WordPress has traditionally had for content creation. As with any major change in WordPress, this will inevitably have ripple effects throughout the WordPress marketplace. With that in mind, here’s my take on how Gutenberg will affect the broader WordPress ecosystem.
The Awesome for WordPress Content Creators
From everything I’ve seen, the main motivation — primarily from WordPress co-creator Matt Mullenweg — is to dramatically improve end users’ experience with content creation in WordPress. With the advent of website builders like Squarespace and Wix, a cleaner WYSIWYG in Medium, and the plethora of full-featured page building WordPress plugins, the simple post editor has started
A nice article about OpenSource Ecosystem and sustainability. Few of our known developer and projects are mentioned here, like Vue.js.
Open source sustainability has been nothing short of an oxymoron. Engineers around the world pour their sweat and frankly, their hearts into these passion projects that undergird all software in the modern internet economy. In exchange, they ask for nothing in return except for recognition and help in keeping their projects alive and improving them. It’s an incredible movement of decentralized voluntarism and represents humanity at its best. The internet and computing giants — the heaviest users of open source in the world — are collectively worth trillions of dollars, but you would be remiss in thinking that their wealth has somehow trickled down to the maintainers of the open source projects that power them. Working day jobs, maintainers today can struggle to find the time to fix critical bugs, all the while facing incessant demands from users requesting free support on GitHub. Maintainer burnout is a monstrous challenge.
That distressing situation was chronicled almost exactly two years ago by Nadia Eghbal, in a landmark report on the state of open source published by the Ford Foundation. Comparing open source infrastructure to “roads and bridges,” Eghbal
Some great, simple (in the scheme of things) suggested improvements to Gutenberg from the team at Yoast. One of the biggest plugin authors is saying they're concerned about the timeline and scale of changes.
There’s a lot of discussion in the WordPress world right now about a new editing experience that’s in the making. It’s called Gutenberg. While some of that discussion is technical, every user that uses WordPress regularly should be aware of what’s coming. At Yoast, we are quite excited about the concept of Gutenberg. We think it could be a great improvement. At the same time, we have our worries about the speed in which the project is being pushed forward. And, we’re not excited about all the changes. In this post I’ll first try to explain what Gutenberg is. Subsequently, I will tell you about the things that are problematic to us. Finally, I will tell and show you what we think should be done about the problems.
What is Gutenberg?
Gutenberg is a new approach to how we edit posts in WordPress. It’s basically a new editor. It tries to remove a lot of the fluff that we built up over the years. The intent is to make the new experience lighter and more modern. The end-goal is to make WordPress easier to use. That’s something we really appreciate at Yoast.
Gutenberg introduces the concept of “blocks“. The new editor will be a block-editor:
Insights from the internal process we've been going through at GiveWP for integrating with Gutenberg.
With its growing list of features and blocks, it’s difficult to know where to begin in preparing an existing WordPress plugin for Gutenberg. That’s why we’re going back to the start to focus on the one change that has kept us most excited about Gutenberg since day one—the block and its ability to unify the content creation interface. Unifying Content Creation in WordPress
Before reimagining how our Give plugin will integrate with Gutenberg, it’s important to first understand the focus of the new editor and the problems it aims to solve. Like most of the WordPress community, we got our first glimpse of the Gutenberg vision through Matt Mullenweg’s early description of the project:
“The editor will create a new page- and post-building experience that makes writing rich posts effortless, and has ‘blocks’ to make it easy what today might take shortcodes, custom HTML, or ‘mystery meat’ embed discovery.” —Matt Mullenweg
For all of their quirks, the shortcodes and “mystery meat” that Mullenweg mentions represent some of the most powerful and relied upon functionality of Give and thousands of other plugins
Recently, I've been fascinated with the growth of WordPress influenced by consultants. I published 20 quotes from consultants that total 2,000+ WordPress websites.
I’m not foolish enough to think that the entirety of WordPress’ growth is driven by our love for the software, but that we consultants are responsible for a sizeable portion of it. A portion that shouldn’t be ignored and one that should be welcome to the discussion more often. Under-represented. Perhaps.
You can listen to the audio version
I know many of you are like me, we don’t run 100+ person agencies, we don’t have 1mil+ plugin downloads, and we haven’t been contributing code to core for the last decade. However, what we do share in common is a life of servicing customers in the online business space. Servicing customers or our local community by way of building websites — helping organizations amplify their message.
This act of service is deeply rooted in using our favorite tool, WordPress.
Sure, we’re talking less and less about the tech side of things lately, but we know that it delivers a massive advantage as a platform to our customers. An advantage that might not matter to them in the short-term, but in the long-term sustainability of their business.
While many might join the ranks of offering WordPress services simply for the
Just your average snitch post showing who the bad guys are.
Josh shows off cool applications of Blockchain Technology. It's a question of how, not when. Ready for the next tech leap?
Bitcoin — the first decentralized currency — has been around for over eight years now. In the past, I was dismissive of it and other cryptocurrencies. The fact that cryptocurrency like Bitcoin has the potential to radically reform banking is not lost on me but is way outside of the scope of this article. Yes, that’s exciting to me. No, I don’t think crypto is a magical cure for what is wrong with global capitalism, but that’s really not the point here.
When I started looking into things further, and I’m super excited about the technology behind Bitcoin, blockchain.
What Is A Blockchain?
My conceptual misunderstanding of Bitcoin when I first became aware of it, was I thought of coins as being awarded for doing computation. Yes, that is is how Bitcoin works, coins are distributed amongst those providing processing power to verify transactions. It’s a smart way to incentivize adding the computational resources the system needs.
While the coins are created through “mining” they can be exchanged for Dollars, Euros or other traditional currencies. This gives them value and an incentive to convert old currency into Bitcoin.
Second of the series on the WordPress Philosophy. We start at the end: The Four Freedoms, or the Bill of Rights. These I believe are fundamental for all the other freedoms.
This is the second post in a series on the WordPress Philosophy. Last month I described why WordPress has a Philosophy and why WordPress users should care about that and understand it. This article is the first of 8 that will explore the tenants of the WordPress Philosophy. We’re going to start at the end. The most foundational tenant of the WordPress Philosophy is the last one: “Our Bill of Rights”. I believe this is foundational to understanding all the previous tenants of the philosophy.
Similarly to the United States of America’s Bill of Rights, this Bill of Rights is all about freedom. This is often called “The Four Freedoms”:
The freedom to run the program, for any purpose.
The freedom to study how the program works, and change it to make it do what you wish.
The freedom to redistribute.
The freedom to distribute copies of your modified versions to others.
The Four Freedom’s come from what is often called the GNU Manifesto by Richard Stallman. This is one of the foundational documents that launched the Open Source movement. It’s a valuable and insightful read that I highly recommend everyone read.
The WP Bill of Rights opens by acknowledging
Morten describes what a path forward WITHOUT the 80/20 Rule might look like. Really important discussion and great read.
Thats an interesting article again on Gutenberg! Author is loving the concept but thinks it does not belong to WordPress, just yet! Keep reading.
I’ve been loosely following the noise and #wpdrama surrounding Gutenberg for as long as it has been around and honestly for the most part I’ve had negative feelings around it (I don’t like change at the best of times). However, I recently dived in and tried it out and you will never guess what happened next! But seriously. I came to two conclusions:
It’s a lovely piece of software
It does not belong in WordPress. (Yet. Or WordPress as we know it today)
Let me explain.
What is Gutenberg?
As a customary catch-up for those who don’t know, Gutenberg is the new way to edit content in WordPress. It replaces the tired TinyMCE post content editor and can do a lot more too – think shortcodes, widgets, menus, and even custom fields. It is a client-side interface built with React that uses a block based system to build up content:
It is being developed as a feature plugin over on GitHub and it has been scheduled to land in core in the next version of WordPress, version 5.0 estimated for the first half of 2018. Here’s a great roundup of Gutenberg information.
Gutenberg is an important step forward for publishers, reducing the visual difference between how
After many years on WP it looks like the "Next Smashing Magazine" will be run by a different platform, actually a mix of different platforms!
I took a look at the stated goals of Gutenberg and whether or not it accomplishes them.
With WordPress in the process of preparing the new Gutenberg editor for full release in version 5.0, there are a ton of opinions on the change. I recently witnessed a demonstration of what the editor can do, and the presenter could barely get a word in. A healthy mix of designers, developers and users in the crowd were asking questions and debating the merits of the project. I don’t know that I’ve seen an impending change to software cause this much debate since Adobe stopped selling physical copies of their apps. But instead of adding more gasoline to the fire, I think it’s important to look somewhat beyond the debate and take a look at what Gutenberg is actually meant to do. So, what is the purpose of replacing the classic editor we all know and sort-of like? WordPress.org tells us:
“The Gutenberg editor uses blocks to create all types of content, replacing a half-dozen inconsistent ways of customizing WordPress, bringing it in line with modern coding standards, and aligning with open web initiatives. These content blocks transform how users, developers, and hosts interact with WordPress to make building rich web content easier and more intuitive, democratizing
I find this fascinating. The fact that one plugin can have such power. If only WordPress would do something similar.
Less than three weeks ago Yoast SEO version 4.5 was released with an ugly, non-dismissible notice for sites on PHP 5.2. The notice encourages the user to upgrade to PHP 7, explaining that it is faster and more secure. It includes links for getting started and example emails that users can send to their hosting companies. In the 18 days since shipping the plugin with the upgrade nag, Yoast SEO creator Joost de Valk has seen a dramatic uptick in sites moving from old, unsupported versions to PHP 7. From December to March, PHP 5.2 usage among Yoast SEO users decreased from 1.9% to 1.7%, a modest drop over three months. After adding the nag on March 21, PHP 5.2 usage dropped from 1.7% to 1.3% for those using Yoast SEO version 4.5. PHP 5.3 usage is also steadily decreasing since de Valk began the campaign to educate his plugin’s users about the benefits of upgrading.
According to de Valk’s stats, 22.2% of Yoast SEO users are on version 4.5 of the plugin. He estimates 1,443,000 sites on 4.5 out of 6.5 million users.
“Assuming 0.5% updated their PHP versions, that’s 7K sites,” de Valk said. “And another 14-20k that updated from 5.3 to something more decent.”