What do you expect from future versions of WordPress?

jamilaliahmed · Apr 12, 2017

WordPress now powers up to 26.4% of the web and is continuously increasing its market share. I agree with Robby McCullough co founder at BeaverBuilder as he said 'push for a better customization experience' said here..
Please discuss what are your expectations for future versions of WordPress?

HostColor · Apr 12, 2017

Define "customer experience", please. Many folks just use cliches. I would say:
- Make WordPress les vulnerable (as it is quite vulnerable CMS at the moment)
- Make the plugins to be less resource-cinsuming, by setting certain guidelines for plugin development.

Hope that this helps.

rshosting · Apr 13, 2017

Security security and security is the major concern for Wordpress. With everyday hackers trying to invent new ways to brute-force wordpress, Wordpress really need to work on their security. There should be a certain benchmark for themes or plugins to be eligible for production use, which should be implemented by Wordpress at the time of installation and install them only if they qualify.

David Beroff · Apr 14, 2017

rshosting said:
Security security and security is the major concern for Wordpress.

I quite agree with you, don't know why Wordpress didn't improve the security for their cms over years.

rshosting said:
With everyday hackers trying to invent new ways to brute-force wordpress.

Are there any ways to decrease brute-force attacks on Wordpress?
Disable it or 2 level password authentication by a plugin?

rankmyhub · Apr 14, 2017

Are there any ways to decrease brute-force attacks on Wordpress?
Disable it or 2 level password authentication by a plugin?

https://wordpress.org/plugins/wp-simple-firewall/

Check this out. Will help you achieve, what you are looking for. In my experience, we have handled more than 100 wp instance, which never got attacked or hacked till date. As we implement best security practices possible. Most important thing is password security and hiding the wp-admin part, which will kill most attacks. Rest will be easy to tweak.. Regular maintainance is also important to keep wp secure and good.

Thanks.

LarsJ · Apr 14, 2017

The WP security by default is virtually nonexistent unfortunately. I do still believe that free security is not as good as paid for software. Having said that, a WP site with just the basic WP installation is going to get hacked after a matter of time for sure. Brute force attacks are relentless.

David Beroff · Apr 18, 2017

rankmyhub said:
Most important thing is password security and hiding the wp-admin part, which will kill most attacks. Rest will be easy to tweak

I agree with you about these, I will not use a plugin to make WP sites secured. That will be more risks because those plugins are shared and it could contain security holes.

LarsJ said:
The WP security by default is virtually nonexistent unfortunately. I do still believe that free security is not as good as paid for software. Having said that, a WP site with just the basic WP installation is going to get hacked after a matter of time for sure. Brute force attacks are relentless.

I have to agree with you.
Do you use any effective ways to stop Brute force attacks on WP sites?

LarsJ · Apr 18, 2017

The techs we have install something serious for sure but on top of that we use ithemese security which stops a lot of brute force attacks directly targeting WP. Changing the "wp-admin" to something like "login" or "righthere" helps a great deal. Bad guys are just looking for wp-admin all the time. It's unfortunate when a lot of hosts offer Wordpress hosting and clients assume that means WordPress security too...

rankmyhub · Apr 18, 2017

I agree with you about these, I will not use a plugin to make WP sites secured. That will be more risks because those plugins are shared and it could contain security holes.

If you do not want to trust, plugins, then you should probabily make security stuff yourselves. Which is not so easy for a newbie or even intermediate user. We have to trust developers, if not we have to be a developer, simple.

rankmyhub · Apr 18, 2017

I do still believe that free security is not as good as paid for software.

I would say this is rather a myth. If something is free, it does not mean that it is cheap or not worth using. Infact everyday stuff we use like server OS, softwares and other things are free and open sources and they are tightly secured. There is something called social code of conduct and much more.

You should probabily read more about things, one thing I will convey, do not think free stuff is bad. If it is bad, no servers run linux OS. They will run Mac or Windows lol. But majority of server software is run on linux os which is free and better when it comes to security.

Please read here: https://privacytoolsio.github.io/privacytools.io/#os

For example debian is open source, and free. It does not mean it is inferior to windows or mac. Its just free, but its not mean insecure.

Suggested reading: https://cryptoseb.pw/paper

Note: Its not realted to WP, but I just wanted to say that free is not secure is just a myth.

BlueLeaf · Apr 18, 2017

Security has always been WordPresse's Achilles' heel, but it's not all doom and gloom. By taking basic security measures you reduce the risk of being hacked considerably, and there's plenty of tips and tricks all over the web on how to secure a WP site.

For me, more lightweight plugins are definitely the way to go forward. I would introduce strict guidelines and regulations for plugin development. I would also like more attention to be given to WordPress Multi-Site.

LarsJ · May 9, 2017

I'm not saying free is bad. I'm saying the software that costs it usually better. A lot of companies offer free versions of their software and the paid for version is noticeably better with more features. Of course there will be free stuff out there that is great, but the same companies offering two different versions will have a more feature packed one that people pay for. So yes, CentOS is free and great, Windows is not and no that doesn't mean it is "better". There is also the issue of charging for software that comes with support for example. That could be listed as "better" too.

Also, for David's issue mentioned earlier, changing the default WordPress login page, can help significantly. iThemes has that option under advanced settings called Hide Backend. "Hides the login page (wp-login.php, wp-admin, admin and login) making it harder to find by automated attacks and making it easier for users unfamiliar with the WordPress platform."

Sonwebhost · May 9, 2017

A plugin that makes me money for the time spent using it

What do you expect from future versions of WordPress?

jamilaliahmed

Member

HostColor

Well-known member

Hugo E.

Member

rshosting

Member

David Beroff

Well-known member

rankmyhub

Well-known member

LarsJ

Active member

David Beroff

Well-known member

LarsJ

Active member

David Beroff

Well-known member

rankmyhub

Well-known member

rankmyhub

Well-known member

BlueLeaf

Well-known member

LarsJ

Active member

Sonwebhost

Well-known member

Latest posts New threads

Latest posts

New threads

Latest Hosting Offers New Reviews

Latest hosting offers

Popular Contributors - Past 30 Days

Sponsors

Tag Cloud