Tweet
Tweet

Slide 1

Slide 1 text

BEST PRACTICES FOR WORDPRESS SITE MANAGEMENT

Slide 2

Slide 2 text

AKA  AVOIDING  A   WORDPRESS  ARMAGEDDON  

Slide 3

Slide 3 text

WHO  AM  I?   •  WordPress  Lover     •  Founder  of  WP  Site  Care   •  @ryandonsullivan  on   twi8er  the  social  network.   •  wpsitecare.com   •  Once  met  Charles  Barkley   •  Obsessive  about  amazing   customer  support   RYAN SULLIVAN

Slide 4

Slide 4 text

GETTING  STARTED   WITH  WORDPRESS  

Slide 5

Slide 5 text

“WORDPRESS   IS  EASY”  

Slide 6

Slide 6 text

No content

Slide 7

Slide 7 text

What  Makes  WordPress  Run?   •  Server  Hardware  (your  web  host)   •  Linux  (or  Windows  if  you’re  a  masochist)   •  PHP  –  The  Magical  Code  That  Makes  it  Run   •  MySQL  –  Your  Database   •  A  web  server  –  Apache  or  Nginx  are  best   •  CSS  –  If  you  want  your  site  to  look  pre8y   •  Javascript  –  most  likely  

Slide 8

Slide 8 text

START  LEARNING!  

Slide 9

Slide 9 text

No content

Slide 10

Slide 10 text

BACKING  UP   WORDPRESS  

Slide 11

Slide 11 text

PROTECTING   YOUR  SITE  IS   YOUR  JOB!  

Slide 12

Slide 12 text

OFFSITE  BACKUPS   •  Download  from  your  host  manually   •  cPanel  Backups   •  WordPress  Backup  to  Dropbox   •  BackupBuddy  integrates  with  Amazon  S3,   Dropbox,  Rackspace  Cloud,  Email,  Stash,  or   even  FTP   •  VaultPress  

Slide 13

Slide 13 text

STAYING  SECURE  

Slide 14

Slide 14 text

WHAT’S  THE   NUMBER  1  RULE   FOR  SECURING  A   WORDPRESS  SITE?  

Slide 15

Slide 15 text

BACK  UP   WORDPRESS  

Slide 16

Slide 16 text

It’s  when,  not  if  

Slide 17

Slide 17 text

No content

Slide 18

Slide 18 text

UPDATING  WORDPRESS   •  Backup  WordPress  (are  you  seeing  a  trend?)   •  Always  keep  plugins  and  themes  current   •  Keep  records  of  changes  –  server  logs,  audit   trails   •  Test  Locally   •  Staging  or  cloned  site   environment   •  Deploy  changes     •  Say  a  short  prayer  

Slide 19

Slide 19 text

RESTRICT  ACCESS   •  HTTP  Authen\ca\on   •  Limit  Login  A]empts   •  Secure  Transmission  (Force  SSL  on  admin)   •  Restrict  IP   •  2-­‐Factor  Authen\ca\on   •  Use  SFTP  not  FTP   •  Don’t  store   FTP  passwords    

Slide 20

Slide 20 text

HARDEN  WORDPRESS   •  Set  proper  file  permissions   •  Use  secret  keys  in  wp-­‐config   •  Don’t  use  default  database  prefix   •  Block  direct  access  to   WordPress  directories   •  Disable  file  edi\ng  in  the   admin  panel  

Slide 21

Slide 21 text

CODE  CONTROL  

Slide 22

Slide 22 text

VERSION  CONTROL   •  Quick  rollbacks   •  Quick  updates   •  Easy  to  maintain   •  Easy  to  allow  addi\onal  contributors   •  Addi\onal  form  of  redundancy  

Slide 23

Slide 23 text

SCALING   MANAGEMENT  

Slide 24

Slide 24 text

MANAGING  MULTIPLE   SITES   •  One  click  updates  across  many  sites   •  Easy  upgrades   •  Mange  backups   •  Easy  admin  access   •  Site  monitoring   •  Quick  code  deployment  

Slide 25

Slide 25 text

THANK  YOU   @ryandonsullivan   www.wpsitecare.com