One of the best ways to ensure strong security for your WordPress-powered site is to secure its foundations during the installation process. Of course these techniques can be implemented at any point during the life of your site, but stetting them before the game starts prevents headaches and saves time. We’ll start with the WordPress database..
Author: Jeff Starr
I think one of the biggest WordPress myths is that you need a bunch of plugins to control comment spam. Pretty much all of the posts out there on preventing WordPress comment spam are telling you to install some list of “must-have” anti-spam plugins. Some authors insist that you need only a few “choice” plugins, while others advise you to load up on everything you can get your hands on. Such advice is all well-intentioned, I’m sure, but it’s all based on the assumption that plugins are actually necessary to control comment spam. They’re not. WordPress is well-equipped to handle the job all by itself. Plugins may provide additional anti-spam functionality, but they are by no means essential to running a spam-free site.
Tim Haslam shares a very nice theme called “One Day At A Time” designed to promote awareness of breast cancer. Check out the demo, grab yourself a free copy, and support a good cause. Update 2013/07/29 – 404 link removed:
You know that you can target single-view pages with the conditional tag,
One of the easiest ways to display your FeedBurner subscriber count number in plain text is to use the Feed Count plugin by Francesco Mapelli. I have been using this plugin at Perishable Press for a long time, and it has always been great. Unfortunately, Francesco’s site seems to be suffering from malicious behavior these days, with tons of spam comments, weird files that are automatically downloaded to your computer, and even one of those scary warnings from Google: “Reported Attack Site,” or whatever it says.
In any case, the Feed Count plugin is too awesome to let disappear into the ether, so it will be hosted here at Digging into WordPress until Francesco’s site checks into a rehab center and cleans itself up. Hopefully that will be sometime soon. In the meantime, to download a squeaky-clean copy of the Feed Count plugin, simply click on the title of this post.
Time for a new poll! This one is something that many WordPress developers and designers think about: how many plugins is the right number of plugins? Of course there is no one correct answer, but it will be interesting to see if there is a particular number of plugins that most people are using.
Back in July, we asked the WordPress community whether or not the Hello Dolly plugin should be included with WordPress. Several months later, over 1,200 people have voted, and here are the results:
Steve Taylor takes PHP error-logging to the next level by making it easy for WordPress users to display the latest errors as a widget on the WordPress dashboard. Just drop the script into your functions.php file, configure a few variables, and enjoy tracking of your site’s PHP errors from your WP dashboard. Works great as-is, and looks like a great starting point for further development into plugin format.
With the dynamic nature of WordPress, creating, using, and maintaining strong passwords is critical. Passwords help keep the good guys in and the bad guys out, enabling you to run a safe, secure WordPress-powered website. In this DiW tutorial, we’re going to show you how to change your WordPress password in virtually any scenario: logged in, locked out, and everything in between.
By default, WordPress wraps HTML comments with paragraph tags:
WordPress also employs various template tags that may, in certain situations, result in empty HTML elements such as paragraphs tags:
WordPress’ powerful action-hook system makes it possible to insert functionality at any point in your theme. Most WordPress themes include some of the built-in WordPress hooks by default. For example, most of us are aware of the two most common WordPress hooks:
wp_footer(), which generally appear in the theme’s header and footer sections. These two hooks provide WordPress a location at which to execute various scripts and functions. For example, the
wp_head() hook is where WordPress generates a variety of
<link /> and
<script></script> elements, among other things.
Justin Tadlock takes WordPress user-management to the next level with his new “Members” Plugin. Members improves WordPress’ content-management capabilities by providing some serious “fine-grain” control over the users of your site. The plugin features many functional “components,” which may be selected according to your specific needs. From editing roles and content permissions to widgets, shortcodes, and template tags, Justin’s new Members plugin looks like the ideal solution for your user-management needs.