It's interesting that this guy does cyber security for a living but is ok with handwaving away Wordpress's bad reputation for security with strong passwords and MFA. Then again it's been forever...
It's interesting that this guy does cyber security for a living but is ok with handwaving away Wordpress's bad reputation for security with strong passwords and MFA.
Then again it's been forever since I last evaluated WordPress, during which time I am sure it has been completely rewritten since PHP has changed so dramatically. Perhaps WordPress is much more secure and reliable than it used to be.
It is. WordPress used to be swiss cheese, but over the last ten years it's gotten significantly better. Almost all vulnerabilities come from poorly written plugins now. Also, a lot of the...
Perhaps WordPress is much more secure and reliable than it used to be.
It is. WordPress used to be swiss cheese, but over the last ten years it's gotten significantly better. Almost all vulnerabilities come from poorly written plugins now.
Also, a lot of the rewritten code is actually done in JavaScript now (Gutenberg, Calypso).
Why I don't use Wordpress or a static site generator: who the hell cares what I have to say? Well, this post wasn't really a deep-dive, or anything. tl;dr: it's easier.
Why I don't use Wordpress or a static site generator: who the hell cares what I have to say?
Well, this post wasn't really a deep-dive, or anything. tl;dr: it's easier.
Why not both? A couple years ago when I was faced with this decision, I installed WordPress locally (fully offline) with this plugin which publishes the whole site to S3 as static files. Seems...
Why not both? A couple years ago when I was faced with this decision, I installed WordPress locally (fully offline) with this plugin which publishes the whole site to S3 as static files.
Seems like the perfect solution to me. You get a robust, easy to use CMS on the backend, and a fast, secure site on the frontend.
I think it's just still way easier managing everything within Wordpress itself. Like handling media files, attachments and so on. If it's just text, the Gitlab or GitHub editor would probably be...
I think it's just still way easier managing everything within Wordpress itself. Like handling media files, attachments and so on. If it's just text, the Gitlab or GitHub editor would probably be enough.
It's interesting that this guy does cyber security for a living but is ok with handwaving away Wordpress's bad reputation for security with strong passwords and MFA.
Then again it's been forever since I last evaluated WordPress, during which time I am sure it has been completely rewritten since PHP has changed so dramatically. Perhaps WordPress is much more secure and reliable than it used to be.
It is. WordPress used to be swiss cheese, but over the last ten years it's gotten significantly better. Almost all vulnerabilities come from poorly written plugins now.
Also, a lot of the rewritten code is actually done in JavaScript now (Gutenberg, Calypso).
Why I don't use Wordpress or a static site generator: who the hell cares what I have to say?
Well, this post wasn't really a deep-dive, or anything. tl;dr: it's easier.
Why not both? A couple years ago when I was faced with this decision, I installed WordPress locally (fully offline) with this plugin which publishes the whole site to S3 as static files.
Seems like the perfect solution to me. You get a robust, easy to use CMS on the backend, and a fast, secure site on the frontend.
Gitlab is one of many solutions with their web interface - available from phone, tablet, computer, etc.
I think it's just still way easier managing everything within Wordpress itself. Like handling media files, attachments and so on. If it's just text, the Gitlab or GitHub editor would probably be enough.
Yeah, if it's a blog that is more involved then I absolutely agree with you.