Useful articles and recommendations
WP Security
- [Hardening WordPress] http://codex.wordpress.org/Hardening_WordPress
- [10 Tips to Secure WordPress] https://www.sitepoint.com/tips-to-secure-wordpress/
- [WordPress Security: The Ultimate Guide] https://premium.wpmudev.org/blog/keeping-wordpress-secure-the-ultimate-guide/
- [WordPress : Security Vulnerabilities] http://www.cvedetails.com/vulnerability-list/vendor_id-2337/product_id-4096/
- [WordPress Vulnerability Database] https://wpvulndb.com/wordpresses
- [How to Protect Yourself from WordPress Security Issues & Threats]https://www.wordfence.com/learn/how-to-protect-yourself-from-wordpress-security-issues/
Plugins
- [WordFence] https://www.wordfence.com
- [WP Security Audit Log] https://wordpress.org/support/plugin/wp-security-audit-log
- [Sucuri] https://sucuri.net/
Learn WordPress
- [WordPress Lessons] https://codex.wordpress.org/Category:WordPress_Lessons
- [Theme Development] https://codex.wordpress.org/Theme_Development
- [Child Themes] https://codex.wordpress.org/Child_Themes
- [Stepping into Templates] https://codex.wordpress.org/Stepping_Into_Templates
- [Writing a Plugin] https://codex.wordpress.org/Writing_a_Plugin
- [Conditional Tags] http://codex.wordpress.org/Conditional_Tags
- [WordPress Widgets] https://codex.wordpress.org/WordPress_Widgets
- [Shortcode API] https://codex.wordpress.org/Shortcode_API
Improve WP load speed
- Choose a good host
[WordPress Web Hosting] https://wordpress.org/hosting/
[WPEngine] https://wpengine.com/ - Install a solid theme
[Kallyas] http://kallyas.net - Use an effective caching plugin
[WP Super Cache]
[W3 Total Cache] - Use a content delivery network (CDN)
[MaxCDN] https://www.maxcdn.com/ - Optimize images (automatically)
[WP Smush] https://wordpress.org/plugins/wp-smushit/ - Optimize your homepage to load quickly
Show excerpts instead of full posts
Reduce the number of posts on the page (something between 5-7)
Remove unnecessary sharing widgets from the home page (include them only in posts)
Remove inactive plugins and widgets that you don’t need
Keep it minimal! Remember your visitors are coming here for content. - Keep your WordPress database optimized
[WP-Optimize] https://wordpress.org/plugins/wp-optimize/installation/
[WP-DBManager] https://wordpress.org/plugins/wp-dbmanager/ - Disable hotlinking and leeching of your content
Place this code in your root .htaccess file:# Disable hotlinking of images with forbidden or custom image option RewriteEngine on RewriteCond %{HTTP_REFERER} !^$ ## Allow your own domain RewriteCond %{HTTP_REFERER} !^http(s)?://(www\.)?YOUR-DOMAIN.com [NC] ## Allow Google RewriteCond %{HTTP_REFERER} !^http(s)?://(www\.)?google.com [NC] RewriteRule \.(jpg|jpeg|png|gif)$ – [NC,F,L]
- Add an expires header to static resourcesPaste the following code in your root .htaccess file:
ExpiresActive On ExpiresByType image/gif A2592000 ExpiresByType image/png A2592000 ExpiresByType image/jpg A2592000 ExpiresByType image/jpeg A2592000
The above numbers are set for a month (in seconds).
- Add LazyLoad to your images
[Image Lazy Load] https://wordpress.org/plugins/image-lazy-load/ - Control the amount of post revisions stored
[Revision Control] https://wordpress.org/plugins/revision-control/ - Turn off pingbacks and trackbacks
http://www.wpkube.com/deal-trackbacks-pingbacks-wordpress/ - Replace PHP with static HTML, when necessary
[The 3 Easiest Ways to Speed Up WordPress] https://lorelle.wordpress.com/2007/09/22/the-3-easiest-ways-to-speed-up-wordpress/ - Use CloudFlare
[CloudFlare] https://www.cloudflare.com/