WordPress in the Wild
   Deployment, Performance,
   Optimization, and Security


      Markku Seguerra / rebelpixel.com
It’s a wild world out there!
A guide to using WordPress in production
environments, from small blogs to full-
blown sites. Simplify deployment,
optimiz...
4 Questions
    ???
Question #1
What is the most effective way of
    deploying WordPress?
Question #2
How do you maximize performance
      of a WordPress blog?
Question #3
How do you optimize your blog for
 search and your target readers?
Question #4
How do you protect your blog from
 malicious users and catastrophic
             failure?
#1 Deployment
* Simple
* Fast
* Secure
Simple & Fast
* Download/wget from wordpress.org
* Copying from existing install is
troublesome
* Use local installer with...
Secure
* Use only wordpress.org
* For themes & plugins, inspect code if
from other sources
* Use SSH/SFTP for secure trans...
#2 Performance
What limits performance?
* WordPress is dynamic
* WordPress is for everyone
* WordPress is too popular
WordPress is dynamic
* Every page view uses the
database (and the CPU)
* Use caching; WP Super
Cache works best!
WordPress is for everyone
  * Some features are built for
  the other half of its users
  * Stick to what you need and
  w...
WordPress is too popular
 * Almost automatically invites
 spam comments
 * Akismet takes care of the
 spam problem 99% of ...
More performance tricks
  * Offload content (Amazon
  S3, Flickr, YouTube, etc.)
  * Use only necessary plugins
  * Use 3rd-...
Beyond WordPress
* Optimize MySQL (MyISAM
only, query_cache tuning, etc.)
* Optimize PHP (limit
extensions, memory allocat...
#3 Optimization
“WordPress takes care of
80-90% of (the mechanics of)
SEO.”
         - Matt Cutts, Google
Highlight your Content!




     Pretty permalinks
Highlight your Content!




     All in One SEO Pack
Highlight your Content!
* Analytics360 + Google Analyticator
* WordPress.com Stats
* Google XML Sitemaps
* FD Feedburner /...
Content is King!
SEO can only do so much; it
can only be as good as what’s
on your blog.
#4 Security
* Content theft
* WordPress vulnerabilities
* Server security
* Database failure
* Server/hosting failure
Content theft


            RSS Footer
* Blog about it!
* Resume creating good content.
* Report to search engines.
* Repo...
WordPress vulnerabilities
 * More users invites more
 discoveries of awed code
 * Widespread use attracts more
 mischief
 ...
WordPress Upgrades
  WordPress is safe only
   when up to date!
More WordPress security
* Remove “admin” username
* Change table pre x (wp_)
* Hide WP version
* Secure /wp-admin/ with se...
More WordPress security
Server security
* Timely upgrades saves you from
pain!
* Use proper le & directory
permissions
* Audit all installed apps
Security plugins




  WP Security Scan
Security plugins



 WP Exploit Scanner
Database failure




WordPress Database Backup
  (or use PhpMyAdmin)
Database backups
* Use onsite backups
* Use offsite, online storage
(Gmail is good)
Server/hosting failure
* The end?
* Regularly download full
backups to local PC
* Burn full backups to DVD!
* Be prepared ...
Thank you!
Word Camp Ph 2009   Word Press In The Wild
Upcoming SlideShare
Loading in...5
×

Word Camp Ph 2009 Word Press In The Wild

783

Published on

Published in: Technology, Business
0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total Views
783
On Slideshare
0
From Embeds
0
Number of Embeds
1
Actions
Shares
0
Downloads
4
Comments
0
Likes
0
Embeds 0
No embeds

No notes for slide
  • Transcript of "Word Camp Ph 2009 Word Press In The Wild"

    1. 1. WordPress in the Wild Deployment, Performance, Optimization, and Security Markku Seguerra / rebelpixel.com
    2. 2. It’s a wild world out there!
    3. 3. A guide to using WordPress in production environments, from small blogs to full- blown sites. Simplify deployment, optimize performance, and increase security with the most effective plugins and tweaks that help you get the most from your WordPress-powered blog.
    4. 4. 4 Questions ???
    5. 5. Question #1 What is the most effective way of deploying WordPress?
    6. 6. Question #2 How do you maximize performance of a WordPress blog?
    7. 7. Question #3 How do you optimize your blog for search and your target readers?
    8. 8. Question #4 How do you protect your blog from malicious users and catastrophic failure?
    9. 9. #1 Deployment * Simple * Fast * Secure
    10. 10. Simple & Fast * Download/wget from wordpress.org * Copying from existing install is troublesome * Use local installer with important themes and plugins from official sources
    11. 11. Secure * Use only wordpress.org * For themes & plugins, inspect code if from other sources * Use SSH/SFTP for secure transfer if available; FTP is a last option
    12. 12. #2 Performance What limits performance? * WordPress is dynamic * WordPress is for everyone * WordPress is too popular
    13. 13. WordPress is dynamic * Every page view uses the database (and the CPU) * Use caching; WP Super Cache works best!
    14. 14. WordPress is for everyone * Some features are built for the other half of its users * Stick to what you need and what works for you!
    15. 15. WordPress is too popular * Almost automatically invites spam comments * Akismet takes care of the spam problem 99% of the time
    16. 16. More performance tricks * Offload content (Amazon S3, Flickr, YouTube, etc.) * Use only necessary plugins * Use 3rd-party comments (Disqus, Intense Debate, etc.)
    17. 17. Beyond WordPress * Optimize MySQL (MyISAM only, query_cache tuning, etc.) * Optimize PHP (limit extensions, memory allocation, use memcache, etc.) * Replace Apache!
    18. 18. #3 Optimization “WordPress takes care of 80-90% of (the mechanics of) SEO.” - Matt Cutts, Google
    19. 19. Highlight your Content! Pretty permalinks
    20. 20. Highlight your Content! All in One SEO Pack
    21. 21. Highlight your Content! * Analytics360 + Google Analyticator * WordPress.com Stats * Google XML Sitemaps * FD Feedburner / Feedburner Feedsmith * Broken Link Checker
    22. 22. Content is King! SEO can only do so much; it can only be as good as what’s on your blog.
    23. 23. #4 Security * Content theft * WordPress vulnerabilities * Server security * Database failure * Server/hosting failure
    24. 24. Content theft RSS Footer * Blog about it! * Resume creating good content. * Report to search engines. * Report to host/ISP.
    25. 25. WordPress vulnerabilities * More users invites more discoveries of awed code * Widespread use attracts more mischief * Extensibility opens a back door
    26. 26. WordPress Upgrades WordPress is safe only when up to date!
    27. 27. More WordPress security * Remove “admin” username * Change table pre x (wp_) * Hide WP version * Secure /wp-admin/ with server passwords
    28. 28. More WordPress security
    29. 29. Server security * Timely upgrades saves you from pain! * Use proper le & directory permissions * Audit all installed apps
    30. 30. Security plugins WP Security Scan
    31. 31. Security plugins WP Exploit Scanner
    32. 32. Database failure WordPress Database Backup (or use PhpMyAdmin)
    33. 33. Database backups * Use onsite backups * Use offsite, online storage (Gmail is good)
    34. 34. Server/hosting failure * The end? * Regularly download full backups to local PC * Burn full backups to DVD! * Be prepared to restore from scratch!
    35. 35. Thank you!
    1. A particular slide catching your eye?

      Clipping is a handy way to collect important slides you want to go back to later.

    ×