There are two main customer types in the world of WordPress: The greed-is-cool guy and the one who happily pays a premium for services that help to increase both performance and security of web projects and agility of workflows. What’s the difference between the two and who’s the one you want to go after? There are so many WordPress hosting offerings available and even we’re getting confused when trying to compare them all. So we asked experts to do it instead. In his talk Jan will not only share some of the results and introduce his vision of the best-in-class WordPress hosting. He’ll bring a surprise guest telling you how to make a WordPress user happy and let hosters stand out from the crowd. Becoming the most wanted WordPress hoster alive is easier than you think. Join in and be the first to hear about the latest product innovations from Plesk.
8. WE SCANNED THE WEB
Own scans of 88M+ domains with Google Ranking: every 2nd WordPress site worldwide is hosted by one of those Top 15 Hosting Groups
all others
9.
10. “The more you engage with customers,
the clearer things become and
the easier it is to determine
what you should be doing.”
John Russel, President of Harley Davidson
14. WordPress accounted for 90 percent of hacked CMS sites in 2018
Note: The data in this graph exceeds 100% due to the fact that some websites may have multiple CMS installations. For
example, it’s common to see both WordPress and Joomla! installed on the same server account.
Source: Sucuri
...
16. Minimum Requirements for WebApp Security
Data Center level
● route traffic through a cloud based WAF to block
attacks already before hitting your server
● provide DDoS mitigation
17. Minimum Requirements for WebApp Security
OS level
● keep Linux kernel updated
● keep OS & system software update
● force usage of strong passwords
● close all non-required ports via firewall to prevent from
configuration mistakes and bugs
● continuously scan for malware and viruses
● continuously scan for vulnerabilities software
18. Minimum Requirements for WebApp Security
Web server level
● use a web application firewall (WAF) to block attacks on
web server level
● force usage of strong passwords
● remove insecure components like Apache modules (e.g.
mod_perl) if you run in shared hosting mode to reduce
the risk of cross-client access
● Disable any login options you don’t need or don’t want
to support
19. Minimum Requirements for WebApp Security
Application level (WordPress instance)
● configure file system and access permissions to only allow
required usage while blocking everything else
● keep CMS always updated including plugins & themes
● don’t use plugins & themes with known security issues
● force usage of strong passwords
● enable multi-factor-authentication (MFA)
● continuously scan for website vulnerabilities
● check your users from time to time
29. In a nutshell - what do those players
do better than others?
They offer great support
They engage with the WP community
They have great infrastructure
They optimise for WordPress
They focus on WordPress
38. „Great things are done
by a series of small things
brought together”
Vincent Van Gogh
39.
40. Keep the core lean and robust
Do it your way & Open Source
Faster release cycles
Better quality and safe updates
More features and solutions
Save disk space
Why Extensions?
46. Plesk Obsidian Highlights
Modern Web Stack Web Project Lifecycle User Experience Mail improvements
● MongoDB
● Improved Docker
integration
● Domain Connect
● .htaccess support
for NGINX
● PHP Composer
support
● Pre-configured by
default
● Defaults customizable
by hosters
● Alerting & notification
center
● Advanced monitoring
● Move domains
between
subscriptions
● Ability to restrict
server-side operations
for Plesk Admin
● Improved UX
● New Website
Overview
● Updated File
Manager
● SNI for Mail
Services
● Forgot password
feature
● Emails from Plesk
are not considered
as SPAM out of
the box
51. !won’t get WordPress Toolkit
!won’t get Advisor
!won’t get top Extensions
!will not have highest security
standards
But most importantly,
your customers
58. Bought cheaply and paid dearly?
There are two main customer types in the world of WordPress: The greed-is-cool guy and the one who
happily pays a premium for services that help to increase both performance and security of web projects
and agility of workflows. What’s the difference between the two and who’s the one you want to go after?
There are so many WordPress hosting offerings available and even we’re getting confused when trying to
compare them all. So we asked experts to do it instead. In his talk Jan will not only share some of the
results and introduce his vision of the best-in-class WordPress hosting. He’ll bring a surprise guest telling
you how to make a WordPress user happy and let hosters stand out from the crowd. Becoming the most
wanted WordPress hoster alive is easier than you think. Join in and be the first to hear about the latest
product innovations from Plesk.
The WordPress Hosting experience