So far, we have only interviewed people who understand and use application and word press security. We always hear the voice of suppliers. But in this interview, we took a different approach. I interviewed Ivica delic, a WordPress security expert. Understanding the scope of word security and service is not how to better understand the security scope of the press team. This interview also helps us understand where we can improve and what these experts are doing to maintain the security of our customers’ websites.
Male Ivica delic has been working as WordPress since 2011, frelancerstools. com。 He has volunteered in the WordPress community, attended and published many WP meetups on the speed improvement of WordPress website. Ivica has launched several popular Facebook groups for various WordPress Themes. He is the administrator of more than 25 Facebook groups with more than 150000 members. Ivica received a master’s degree in economics. After managing a team in the banking industry for more than 20 years, Ivica jointly established confida, a digital marketing company, focusing on helping manage customers with WordPress website and digital marketing needs.
Interview Q1: what are the top 5 security best practices implemented \/ followed when setting up a new WordPress website? The first step is to choose an excellent and stable word press hosting. I have worked with many web hosts, and there are many good hosts. I use SiteGround for most of my work. The second best practice is to implement a good backup strategy. If possible, I always use online services such as blogvault. This allows you to store backups offsite and in secure locations. Then install multiple word press security tools and plug-ins. I always recommend malcare and WP activity log to all customers as the last line of website defense.
The remaining two best practices are user specific recommendations. Use a unique and powerful WordPress password to ensure that the WordPress core, themes, plug-ins, PHP and all software on Web servers and computers are always up-to-date. Use anti-virus \/ anti malware whenever possible. Q2. Are WordPress security plug-ins and services easy to implement and use? We have tested many security plug-ins and tools over the past few years. Several are very easy to implement and use. But some are hard to use and the gains outweigh the losses. Although users still have a lot of room for decision, most users and experts are not proficient in security. Therefore, they realize that these plug-ins are overwhelming, resulting in too little protection or over protection of the website.
Complex user plugins are often incorrectly configured. For example, the security plug-in will lock your website or no longer load all hot link images. Alternatively, some security plug-ins with file integrity monitoring report that changes to log files may be malicious. For example, users may not understand whether changes to log files are malicious, or why hot linked images do not work, so they will panic. Q3. What are the biggest challenges \/ difficulties encountered in implementing or using security plug-ins \/ products \/ services? For the previous question, my biggest difficulty is to test and confirm the security tools used on the customer’s website. This tool may not be familiar. Sometimes, we will take over the customer’s website management, and all security solutions have duplicate functions
