wordpress and the enterprise
TRANSCRIPT
WordPress: Not just a blogSource: Matt Mullenweg’s State of the Word 2013 talk at WordCamp http://www.slideshare.net/photomatt/state-of-the-word-2013
Security Concerns
• Patches and What-if-it-breaks– Back-ups and versioning
• WordPress is not secure myth– It powers 20%+ of the internet!
• If it’s built on PHP, it has to be vulnerable
Addressing those concerns
• Secure hosting• Secure WP• Back-up plug-ins• Security plug-ins• Too many plug-ins!
Secure permissions and access rights
• 755 for Directories• 644 for Files
More: http://codex.wordpress.org/Changing_File_Permissions
Plug-ins
• Security Plug-ins– iThemes Security–WordFence
• Backup Plug-ins– Vaultpress– BackupWordPress
• Do you really need so many?
Experts speak
The WordPress team is doing their part to ensure your security on the web, can you say the same thing?
- Sucuri Blog
“
Addressing Scale
• Serverside changes– Pagespeed– Varnish– HHVM instead of PHP (approx 2x)– Nginx instead of Apache
Content Management Workflows
• Event based triggers– Inform user A when user B does something
• Discussion spaces• Access based rules
Communications and Collaboration
• Hooks– e.g user registration– Building custom hooks – Filters
• Beautiful commenting engine• User roles to limit access
Professional Support
• WordPress agencies and a vast eco-system of freelancers
• Large scale System Integrators also hiring WordPress developers e.g Big 4
Case Studies• Time.com• TechCrunch• FoodFood• One of the top 5 Insurance providers in India
– WP as Employee Recruitment platform– WP as Sales Training platform
• Sears– Sears India – Sears Global Technology