You are here: Saotn.org » WordPress » Page 2

WordPress

WordPress.org logo

WordPress Security, WordPress Help, and WP optimization and development. Run WordPress and your servers as efficiently and secure as possible. These articles provide a broad overview of WordPress security, optimization and developent with specific recommended approaches. This is of huge importance for every WordPress developer and website owner. Harden your WordPress website security with these valuable tips!

In the first place how to optimize WordPress performance on Windows Server IIS. Secondly how to use WordPress plugins for speed, optimization & security. Tips! And PHP and MySQL! After all this is everything we want.

Benchmarking WordPress, simple load & speed testing with ApacheBench

WordPress load testing with ApacheBench.

ab is a small benchmark utility that comes with Apache. It’s a really simple HTTP load generating tool, ideal for a simple WordPress load & speed test. How fast does your WordPress site respond? How many HTTP requests per second can your server handle? These are questions on which ab can shed some light.

Read More »Benchmarking WordPress, simple load & speed testing with ApacheBench

Tips to speed up WordPress, serve gzip compressed static HTML files

Who said WordPress is slow on Windows Server IIS? Gzip compress and serve WP-Super-Cache or Cache Enabler static HTML files, to supercharge your WordPress blog. Here is how to serve gzip compressed HTML files through Windows Server IIS: create smaller, compressed, static HTML files, that are downloaded faster. This works with WP-Super-Cache and Cache Enabler on IIS!

Read More »Tips to speed up WordPress, serve gzip compressed static HTML files

WordPress advisory: Akal premium theme XSS vulnerability

Over the course of one week I had the opportunity to audit two hacked WordPress websites. I could quickly discover two vulnerabilities: a Cross Site Scripting, or XSS, in a premium WordPress theme Akal, and a Denial-of-Service in an undisclosed newsletter plugin. This post describes the Akal premium WordPress theme XSS vulnerability.

Read More »WordPress advisory: Akal premium theme XSS vulnerability
HTTPS for WordPress

SSL in WordPress: how to move WordPress to HTTPS? The definitive guide

Having an SSL certificate in your WordPress is the de-facto standard nowadays, did you know that? Google ranks sites having HTTPS higher in their SERP. But in WordPress, how do you configure an SSL certificate and HTTPS URL? You’ll learn the important steps to move WordPress from http to https in this post.

Read More »SSL in WordPress: how to move WordPress to HTTPS? The definitive guide

Optimize WordPress MySQL tables through Cron, behind the scenes

Schedule WordPress database optimization with WP-Cron

To regularly optimize my WordPress database tables, I created a small plugin that utilizes the WordPress Cron feature. This comes in handy to perform database optimization for WordPress on a regular basis, without forgetting about it. Just activate and enjoy. And here is the plugin code …

Read More »Optimize WordPress MySQL tables through Cron, behind the scenes

How to add conditional analytics tracking code in WordPress Multisite

In my WordPress multisite, I use one theme for three sites and a tracking code for analytics on my websites. Whether it is Google Analytics or Piwik doesn’t matter. Here is how you can conditionally add tracking codes to your WordPress Multisite: Use a condition in functions.php to add the tracking code for Piwik/Matomo Analytics or Google Analytics.

Read More »How to add conditional analytics tracking code in WordPress Multisite

Add a delay to your WordPress login form

Or why *not* to add a delay … !

It is important to protect your WordPress website from brute-force attacks, and various security plugins exist in doing so. For the purpose of this article, I modified the WordPress Login Delay plugin with a fixed delay of three seconds for my wp-login.php page. This provides you with an easy to use method of protecting your WordPress login form (but do read the caveats!).

Read More »Add a delay to your WordPress login form

My WordPress web.config

Do you host your WordPress website on Windows Server IIS? And are you having trouble with your web.config? I often receive questions about how to use a web.config file in WordPress on Windows Server, and which settings are important for a WordPress site. Maybe it’s because I’m a WordPress on Windows Server IIS enthusiast, so here is my web.config for your convenience (really, it’s not that special).

Read More »My WordPress web.config

How to disable WordPress comments

The WordPress comment system can be a bless for your blog, because of the user interaction. However, when the WordPress comment option is abused by spammers, it becomes a real pain in the “@ss”. With thousands spam reactions, disabling -and removing- WordPress comments is the only way to go. Here is how to disable WordPress comments in both the WordPress Dashboard interface and in your MySQL database.

Read More »How to disable WordPress comments

Display commas in WordPress tags

Commas in tag name, like “cafe, bar, restaurants”

How to use a tag with a comma in it in WordPress? Normally, in WordPress all tags are comma seperated: php, wordpress, website, functions.php. But what if you need to use a tag with commas in it? For instance “cafe, bar, restaurants“. Easy, create a filter in your WordPress functions.php, and here is how…

Read More »Display commas in WordPress tags

Send authenticated SMTP email over TLS from WordPress

How to configure TLS for SMTP email in WordPress. I was suprised WordPress is not able to send email using an SMTP server out-of-the-box. Not to mention using authenticated SMTP or TLS transport for security. A quick Google search showed me multiple plugins to handle this, but I wanted to create something myself. Here is how to override the wp-mail() function and send email using authenticated SMTP and StartTLS from WordPress.

Read More »Send authenticated SMTP email over TLS from WordPress