@Ian A You might be advised to wait a bit before making ahem, a quick decision, I have a feeling a middle ground between 'It's the best thing ever' and 'It's the worst thing ever' might take some sorting out yet.
Several reasons;At the risk of some topic drift I would like to ask "Why does Wordpress suffer from malware so often?"
Thanks. I'll definitely be waiting and not moving anything "live" over. More speculation when I get some down time as an alternative to investigate.
Great, to be honest I was only in here because I was stalking @coffeejo but then her post involved some IMHO over a PHP and playing with CSS for an HTML CSM so I went back out to the shed for a bit to fiddle with my 5mm.![]()
Thanks.Several reasons;
- it's one of the most heavily used publishing platforms out there so it will be targeted accordingly.
- It's not very robustly engineered (or at least in the past it hasn't been)
- if a WP install isn't kept up to date then known exploits will be abused
- it's not at all built with security in mind, third party theme/module developers can easily sneak in backdoors that allow executable code to be run on the server
- it can run on a variety of PHP versions, many of which will themselves be very old and riddled with vulnerabilities.
It's a great application, albeit a terribly written one, if that makes sense. More importantly it has a low barrier to entry and an active community of people developing themes and plugins for it.
Now, don't get me started on Magento...