Version Checking / Updating

d.healey

I started with gumroad too. It is much cheaper to host your own solution but also more work. Another option you might want to consider is PayHip, it's just like gumroad but last time I checked it was a little cheaper.

orange

@iamlamprey Wordpress-Woocommerce is one of the best price/performance solutions out there. WooCommerce powers more than 30% of all e-commerce websites all over the World.

However, one of the most critical tasks when using this system is to constantly update it. If the update is not done well, hacking is inevitable, because there are too many Wordpress sites, hackers primarily attack these systems. With updates, current vulnerabilities are continually being fixed.

So Keep updating your website to make it secure and compatible - Make your website fast with premium Theme & high quality WP plugins - use a good Hosting Service - use a Firewall WP plugin.

Matt_SF

@orange said in Version Checking / Updating:

use a Firewall WP plugin.

I use wordfence, do you use something else?

d.healey

use a Firewall WP plugin.

This is a last line of defense so don't rely on it alone.

If you're using managed hosting then a lot of the server side security will be handled for you - but you'll pay for it.

If you have your own host (I'm using vultr) then the server side security is mostly up to you, so take the time to set it up. Even if you have the greatest wordpress firewall plugin it will do nothing if your server is an easy vector.

Also use 2FA on everything if you aren't already, and use a password manager so you even you don't know your passwords :)

orange

@Matt_SF said in Version Checking / Updating:

I use wordfence, do you use something else?

Yes I use it too.

@d-healey said in Version Checking / Updating:

If you have your own host (I'm using vultr) then the server side security is mostly up to you, so take the time to set it up.

Having your own server system is the biggest vulnerability. You can't have the front security systems of a good hosting company (many of which are expensive, high-tech services) on your own personal host or server. So don't rely on that setup. It is wise to pay a little price rather than incur much greater damage later on.

This is a last line of defense so don't rely on it alone.

It is not the only one defense, but it is one of them.

• Firewall blocks repeated failed account logins and brute force attacks.
• Updates will prevent vulnerability/compatibility issues.
• A good Hosting company takes a lot of front security services for you.
• 2FA should be used for every user, not only for admin.

d.healey

@orange

Having your own server system is the biggest vulnerability. You can't have the front security systems of a good hosting company

I use a cloud-host which has some of the advantages of both a managed service but with more freedom to do your own stuff (if you know what you're doing). With vultr you can easily install different front end interfaces. I use CyberPanel, but there's plesk and cpanel, etc. For a managed version of vultr there is Cloudways which is pretty good value.

orange

@d-healey I am using Kinsta. It is a cloud based system, and it eliminates the need to use CyberPanel or cPanel. It is a very fast system designed and optimized/customized only for Wordpress, which is incredibly fast compared to cPanel and other Hosting companies. It also has a Staging environment that allows you to try and see it on the server before updating or modifying it.

d.healey

@orange

It is a serverless system

Tell me more.

Edit: I just took a look at their site. Looks like cloudways but more shiny.

A Former User

y'all out here playing buzzword bingo with your fancy plugins

orange

@d-healey

From their website:

Kinsta is a Cloud hosting platform designed to help companies and dev teams ship and manage their web projects faster and more efficiently.

I edited my post :) but highly recommended.

Matt_SF

@d-healey Ah thanks, yes 2FAs everywhere and passManager obviously. I'm on a cloud hosting. I considered using my own server but I don't had time yet to learn all the whereabouts.
@orange also thank you for your insights. I believe Kinsta is quite good but also quite expansive...

A Former User

Does anyone have any suggestions for pulling Patch Notes to display on the update GUI? JSON can't handle multi-line strings without /n, or adding a new entry for each line/note. Ideally something like this:

Update v20 Notes


* Added a cool change
* Added a cooler change
* Added an even cooler change

Edit: Okay nevermind, JSON saves the day again