{"id":22020,"date":"2024-01-02T10:50:03","date_gmt":"2024-01-02T08:50:03","guid":{"rendered":"https:\/\/wpbeveiligen.nl\/?p=22020"},"modified":"2023-07-27T10:51:35","modified_gmt":"2023-07-27T08:51:35","slug":"would-you-still-use-wordpress-as-the-start-of-a-new-website","status":"publish","type":"post","link":"https:\/\/wpbeveiligen.nl\/en\/would-you-still-use-wordpress-as-the-start-of-a-new-website\/","title":{"rendered":"Would you still use WordPress as the start of a new website?"},"content":{"rendered":"
WordPress vulnerabilities found in all versions up to 3.8 – updates needed, WordPress 3.9 still has a vulnerability, vulnerabilities found in WordPress 4.0, WordPress 4.1…<\/p>\n
These news reports are becoming more and more common. As I mentioned in previous articles, WordPress occupies a significant part of the internet, making it a prime target for numerous hackers (read here why<\/a>) especially when many websites are not up-to-date.<\/p>\n This naturally raises the question for both me and my clients:<\/p>\n The answer is still: yes<\/p>\n The days when anyone with a little reading could put WordPress online, download a few plugins<\/a> and a theme<\/a>, and be done with the site and maintenance are over.<\/p>\n WordPress has not gotten worse.<\/strong> WordPress is still in the hands of developers who work with dedication to improve the system.<\/p>\n Every time a vulnerability is discovered, they ensure that a security update is released. In short, the quality is still high, and the speed at which WordPress is updated has kept up with the need.<\/p>\n WordPress still features passwords, the database, and the user-friendly way to set up websites. WordPress continues to evolve and ensures that it remains one of the best functioning CMS platforms.<\/p>\n WordPress itself is a good system, but there are certain “rules” you should consider when setting up a WordPress website.<\/p>\n There have been some “rules of the game” that have changed due to the many hacking attempts and various viruses circulating on the internet.<\/strong><\/p>\n <\/p>\n WordPress vulnerabilities found in all versions up to 3.8 – updates needed, WordPress 3.9 still has a vulnerability, vulnerabilities found in WordPress 4.0, WordPress 4.1… These news reports are becoming more and more common. As I mentioned in previous articles, WordPress occupies a significant part of the internet, making it a prime target for numerous […]<\/p>\n","protected":false},"author":4,"featured_media":503,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[212],"tags":[],"_links":{"self":[{"href":"https:\/\/wpbeveiligen.nl\/wp-json\/wp\/v2\/posts\/22020"}],"collection":[{"href":"https:\/\/wpbeveiligen.nl\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/wpbeveiligen.nl\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/wpbeveiligen.nl\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/wpbeveiligen.nl\/wp-json\/wp\/v2\/comments?post=22020"}],"version-history":[{"count":1,"href":"https:\/\/wpbeveiligen.nl\/wp-json\/wp\/v2\/posts\/22020\/revisions"}],"predecessor-version":[{"id":22922,"href":"https:\/\/wpbeveiligen.nl\/wp-json\/wp\/v2\/posts\/22020\/revisions\/22922"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/wpbeveiligen.nl\/wp-json\/wp\/v2\/media\/503"}],"wp:attachment":[{"href":"https:\/\/wpbeveiligen.nl\/wp-json\/wp\/v2\/media?parent=22020"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/wpbeveiligen.nl\/wp-json\/wp\/v2\/categories?post=22020"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/wpbeveiligen.nl\/wp-json\/wp\/v2\/tags?post=22020"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}Should you still use WordPress as the foundation?<\/h2>\n
But…<\/h2>\n
Has WordPress become worse?<\/h2>\n
How can you safely use WordPress then?<\/h2>\n
The “rules of the game” for WordPress in 2015<\/span><\/h2>\n
\n
\nEach plugin is a potential entry point for hackers. Some plugins are developed by programmers who are just looking to make a quick buck and don’t bother updating or securing them when exploits are found.<\/li>\n
\n<\/strong>Not every update is related to security, so you don’t have to follow every update. Sometimes, it’s best to wait until the bugs in the update have been ironed out.
\nSometimes, plugin developers also need some time to update their plugins as they might be dependent on the code of the previous WordPress version.<\/li>\n
\n<\/strong>One of the first things a spambot tries is your screen name, website name, or variations thereof.
\nIn short: be creative and avoid using “dictionary words.” Mix in some numbers and capital letters.<\/li>\n
\n<\/strong>These plugins allow you to easily set up whether every visitor can browse the folders of your server, whether the WordPress version is visible, where the admin panel is located, whether files are writable, whether long queries can be used through the navigation bar, whether multiple login attempts result in an IP ban, and more.
\nTo keep your WordPress website somewhat secure, you need one of these plugins.
\nNote: You should configure them properly as well!<\/em><\/li>\n
\n<\/strong>Through small scripts from the internet, a page, or a browser add-on, they can capture and transmit your data. Use a good antivirus program on your PC.
\nTip: Avira<\/a> has a good free antivirus scanner!<\/li>\n<\/ol>\n","protected":false},"excerpt":{"rendered":"