How to Make Your WordPress Website Security Bulletproof ?

How to Make Your WordPress Website Security Bulletproof ?

WordPress has been a hot topic of debate for quite some time. According to several articles I’ve read, WordPress is not safe; however, most of these articles were based solely on personal opinions. Nevertheless, what does security mean for a CMS like WordPress?

Being a Market Leader Is No Easy Task

WordPress is the leading CMS for websites according to W3Techs. In 2018, WordPress held 59-60% of market shares, followed by Joomla at a mere 6%. Someone who is trying to develop a hacking tool and exploit its flaws won’t be interesting in targeting Ektron which accounts for 0.1%. The number of sites that may be taken advantage of would be substantially lower. Besides, return on investment is essential for hackers; therefore, a market leader (i.e. WordPress) is more likely to be targeted.

Web Hosting and Maintenance

WordPress may be used as a full-fledged integrated platform (WordPress.com) similarly to Wix and the rest: Weebly, Squarespace etc. In this case, it is not possible to access servers or files: all you need to do is set up your website with an extremely low risk of error.
However, WordPress also includes WordPress.org, the open source project that you may set up yourself if needed. Here is where things get serious. First of all, in terms of web hosting: it’s quite common to come across servers based on PHP 5.2 (which is no longer supported for quite some time: http://php.net/supported-versions.php meaning there was no available security update in years). Then, in terms of web design: was the setup performed properly? Have you accurately established file copyrights? And in the long term: is there a maintenance plan to update the various technological components of the project? If security was not monitored in years, you are most likely at risk; nevertheless, this would have been the case with any other CMS.

Access Denied. Try Again

Hackers will try to gain illicit access to your WordPress website using an admin account. Obviously, avoid using an account with an “admin” username and an “admin” password. To avoid a dictionary attack (someone using all possible passwords), you may set up various plugins requiring Captcha feature as an additional step, or blocking access after multiple failed attempts, or even use a second authentication step (e.g. SMS).

Limit the Hacked Area

Do you really need 30 active plugins from 30 different developers? You own various active admin accounts which you probably have not checked in months… Don’t create doors if these are not fully protected! Close these accounts and reduce the number of plugins to the bare minimum.

Prepare for the Worst

Security is also about prevention. Don’t forget to perform regular backups of your files and databases. Are you really going to do it yourself? No, you’re well-intentioned to do it a couple of times during the first month, and then forget about it altogether. However, you can always have an automated backup! There are quite a number of awesome plugins ready to do the backup at your selected location. Your desktop is working offline? No problem, you can opt for Dropbox backup based on your selected frequency.

In Conclusion

WordPress is not a security liability but a tool. If you use it the wrong way, you are likely to get in trouble! However, using another CMS is not the solution. Improve your security and stay safe.

Sagenda Makes Online Scheduling Easier with Squarespace

Sagenda Makes Online Scheduling Easier with Squarespace

New Year calls for less resolutions and better planning. Online appointment scheduling might be just what you’re looking for. At Sagenda, we’re keeping our promises of enhancing your strategic time management through better integration, cross-device flexibility and security. Do you want to change your CMS or web host? Don’t worry; Sagenda is now available for Squarespace users searching for a flexible scheduling or appointment system. You’ve got two options: add Sagenda to your Squarespace website or add a link from your website to your Sagenda page.

Add Sagenda to your Squarespace website

If you’re planning to integrate an appointment scheduler directly on Squarespace, this is a very simple procedure. Log in to your Sagenda account, copy your HTML code from the dashboard and paste it on your Squarespace website under ‘embed data’.

Add a Website Link to Your Sagenda Page

Just like Sagenda, Squarespace allows endless possibilities thanks to its easy user interface. If you would like to open the calendar view in another page or tab via an HTML link, select your Squarespace page, add a code block and an HTML code. Then, copy the URL code from your Sagenda account and paste it to replace the HTML code on Squarespace

Whichever you choose, we’re thrilled to help you out. Online scheduling is all about growing your business, improving communication and outsourcing appointment planning and scheduling so you take better care of your clients.

For further information about integration, please follow our step-by-step procedure on how to integrate Sagenda to Squarespace or our YouTube tutorial to help you with the process.

Have questions? Drop us a line and our support team will reach out.

Sagenda Available as Calendar Module for Drupal 8

Sagenda Available as Calendar Module for Drupal 8

As anticipated, Sagenda’s calendar view is now available as a module for Drupal 8. Here’s our year-end gift for Drupal 8 users looking for an event scheduling module, which is both user-friendly and seamless, to integrate on their booking website.

Drupal 8: Sagenda Calendar for Booking Management

After you open your Sagenda account, all you need to do is download the calendar module available from Drupal. Once you have integrated the Sagenda module on your Drupal 8 website, the calendar view displays the list of bookable items followed by the booking form. Nothing could be easier than allowing your clients to select and confirm their booking events using a simple booking form.

 

Multi-Booking Option

Suitable for a multi-screen experience, the calendar view for Drupal 8 allows simple or multiple bookings. All you need to do is enable the multiple booking option to include various events on the same booking in order to save time and improve event management while ensuring an unsubscription option. Using the email booking confirmation, the client may select the respective service and confirm the unsubscription. Any booking modification, unsubscription or cancellation is confirmed by email notification to clients and owners as well, and optionally by SMS.

Customized Sagenda Calendar for Drupal 8

If you have already downloaded Sagenda’s module for Drupal 8, you should know there are a couple of available calendar customization options. From your Sagenda account, the module center offers a wide customization range:

  • PayPal gateway: a must-have in order to charge your clients online;
  • Email customization to change email text and sender’s email address, including a reminder feature;
  • SMS reminders to reduce no-shows and retain your clients;
  • Color management: be creative in adapting the calendar to your website style;

Don’t forget that Sagenda’s calendar view is already available as WordPress plugin and Joomla extension.

What’s New in WordPress 5 in 2019?

What’s New in WordPress 5 in 2019?

As you might know, we love WordPress and are pretty excited about the upcoming release of WordPress 5.0 with its new features and moniker (generally, a jazz man). This is a major version as there were no releases over the past 4 years (since WordPress 3.0 switched to 4.0).

So let’s take a peek at what’s new!

Gutenberg: A New WordPress Editing Experience

Gutenberg is the latest WordPress editor and so much more: easy to use and intuitive design but also very powerful allowing you to build responsive pages. It’s all about “blocks” that you can build and manage on your own website depending on the display size. From now on, you may create and change the “responsive design” behavior of pages without affecting the theme and with no HTML, CSS or Twitter Bootstrap skills whatsoever.

However, Gutenberg is not as comprehensive as other recent commercial products extending the features of page editing, such as page builders (i.e. DIVI, Elementor and so on) which will likely be overtaken in the medium term.

If page editors available as WordPress plugins are rather seen as partners instead of competitors, this is not the case when it comes to external platforms such as Wix. In fact, when speaking about WordPress, we’re referring to an open source project available for download from WordPress.org. However, it also includes WordPress.com which allows you to start your own website without worrying about web installing or hosting based on some fees. You got that right: WordPress.com provides most of its revenues and WordPress 5.0 is poised to fight those competitors offering paid CMS versions.

Gutenberg WordPress5

Gutenberg, the new page editor

Gutenberg is an editor already available for use with WordPress 4.9.x. Optionally, you may also download it as a plugin here !

Don’t fret: the old editor is also bundled as a plugin to allow its continued use in WordPress 5.0 in case of difficult transition. However, it will probably become unavailable at a certain point as I believe the WordPress team won’t support it all the way through WordPress 6.0 or 7.0. In other words, you’d better get started to get things done! OK, enough about Gutenberg, what else?

 

Twenty Nineteen: New Theme

Twenty Nineteen is the new theme of WordPress 5.0. There’s nothing special about it if you’re already using it as users rarely change the theme when doing a major web content overhaul. However, Twenty Nineteen includes a very interesting option (free of charge) for new websites as it has a very understated and minimalist theme unlike in previous cases. This is also a pretty interesting sandbox for web designers willing to learn new features and best coding practices in terms of WordPress 5.0 themes.

TwentyNineteen_WordPress5

Twenty Nineteen Theme fits Gutenberg Editor perfectly

Click here to have a look at Twenty Nineteen.

 

JSON Internationalization Support

Developers can finally use JSON to upload language files. We’re hoping this is the end of formats which should have never existed in the first place, such as .mo and .po.

New! JavaScript i18n support in WordPress 5.0

As WordPress developers (Sagenda is available as WordPress plugin), we are thrilled to welcome a new minimalist format: way to go!

 

WordPress 5.0: Install or Stall It?

Scheduled mid-November, but postponed somewhere end of November 2018, the roll-out of WordPress 5.0 is not all milk and honey. Here are some tips before updating:

  • Feel free to wait for WordPress 5.0.1 and let others do the dirty work.
  • Make sure your theme and plugins are updated for this version.
  • Don’t update directly on your live website: make a test copy and, if all goes well on copy, update your website thereafter.
  • Don’t forget to back up before upgrading!

 

WordPress 6.0 To-Do List

WordPress still does not have a native multilingual management of front-end pages. For multilingual websites, users still need to use plugins such as WPML and Polylang, thereby affecting website compatibility. Your website requires internationalization in so many aspects: text content, but also media (images, videos, sound, and so on), URLs (links, web page redirect, and possibly different domain names by country language). Therefore, internationalization management requires various plugins as well as lots of testing and settings.

However, we’re positive WordPress 6.0 will make a case for it! Anyway, this is the most wanted feature so feel free to vote for it : here !