For those with Wordpress Blogs!

Page may contain affiliate links. Please see terms for details.

Acyclo

Veteran
Location
Leeds
At the risk of some topic drift I would like to ask "Why does Wordpress suffer from malware so often?"
 

Ian A

Über Member
@Ian A You might be advised to wait a bit before making ahem, a quick decision, I have a feeling a middle ground between 'It's the best thing ever' and 'It's the worst thing ever' might take some sorting out yet.

Thanks. I'll definitely be waiting and not moving anything "live" over. More speculation when I get some down time as an alternative to investigate.
 
At the risk of some topic drift I would like to ask "Why does Wordpress suffer from malware so often?"
Several reasons;

  • it's one of the most heavily used publishing platforms out there so it will be targeted accordingly.
  • It's not very robustly engineered (or at least in the past it hasn't been)
  • if a WP install isn't kept up to date then known exploits will be abused
  • it's not at all built with security in mind, third party theme/module developers can easily sneak in backdoors that allow executable code to be run on the server
  • it can run on a variety of PHP versions, many of which will themselves be very old and riddled with vulnerabilities.
 
Last edited:

IDMark2

Dodgy Aerial
Location
On the Roof
Thanks. I'll definitely be waiting and not moving anything "live" over. More speculation when I get some down time as an alternative to investigate.

Great, to be honest I was only in here because I was stalking @coffeejo but then her post involved some IMHO over a PHP and playing with CSS for an HTML CSM so I went back out to the shed for a bit to fiddle with my 5mm. :smile:
 

Acyclo

Veteran
Location
Leeds
Several reasons;

  • it's one of the most heavily used publishing platforms out there so it will be targeted accordingly.
  • It's not very robustly engineered (or at least in the past it hasn't been)
  • if a WP install isn't kept up to date then known exploits will be abused
  • it's not at all built with security in mind, third party theme/module developers can easily sneak in backdoors that allow executable code to be run on the server
  • it can run on a variety of PHP versions, many of which will themselves be very old and riddled with vulnerabilities.
Thanks.
 

Mr Haematocrit

msg me on kik for android
It's a great application, albeit a terribly written one, if that makes sense. More importantly it has a low barrier to entry and an active community of people developing themes and plugins for it.

Now, don't get me started on Magento...

WordPress is OK till it needs updating then everyone and their grand mother get exploited, due to the horrible permissions it requires to run.

Magento is OK as well I work for a company which has the highest volume of magneto installations globally. It's a bit bloated and needs a decent caching setup but its no worse than many other similar apps. The biggest problem with magneto is that it has no real competition which allows for lazy coding, same can be said for that both could improve from a coding perspective.
 
I had written a big spiel about Magento but then realised I was ranting incoherently about it and decided against it... :crazy:
(I used to have a Magento-hate account on Twitter)

Hopefully Magento 2 will improve upon the massive inefficiencies and opaqueness of the core. The devs are obviously clever people who probably coded themselves into a corner early on before best development practices were well-documented, by which time it was too late to do anything other than continue to build upon their design mistakes.

Like I said, don't get me started on Magento :biggrin:
 

Doseone

Guru
Location
Brecon
There's a lot of words and acronyms I don't understand on here, but if I was going to have a blog and didn't mind paying a little for it I'd use Squarespace.
 
OP
OP
jhawk

jhawk

Veteran
Like you, Doseone, I have no idea what most of these acronyms mean.

I should mention that I don't operate a ".wordpress.com" domain. I'm confused by all the acronyms and discussion about WP...
 
Top Bottom