Wordpress Checklist: Difference between revisions

(10 intermediate revisions by 2 users not shown)

Line 1:

[[Category: IT Knowledge]]

= Setting =

* Setting up Permalinks

Line 47:

Line 49:

1. Secure wp-includes by adding these lines to your .htaccess file.

2. Secure your wp-config.php by adding these lines to your .htaccess file.

* Protect .htaccess from unauthorized access

Add this code to your .htaccess file:

order allow,deny

deny from all

satisfy all

</files>

* Check that you have disabled file editing

Add the line `define(‘DISALLOW_FILE_EDIT’, true);` to your wp-config.php file.

Line 59:

Line 68:

Desired: 400

Fallback: 440, 444, 600, 640

* Disable directory browsing

Add this line 'Options -Indexes' to your .htaccess file.

* Delete readme.html and install.php

* Add blank index.php files where needed

Line 68:

Line 79:

* Move wp-config.php file outside the web root folder

The wp-config.php file is a very important configuration file. It contains a lot of sensitive information about your WordPress site, like your database information for example.

WordPress will automatically look for this file in the folder above the WordPress root folder if it does not exist in the root folder. Moving this file out of the public_html folder means the file will not be accessible from the Internet.

WordPress will automatically look for this file in the folder above the WordPress root folder if it does not exist in the root folder. Moving this file out of the public_html folder

means the file will not be accessible from the Internet.

* Create secret keys

https://api.wordpress.org/secret-key/1.1/salt/

define('AUTH_KEY', 'put your unique phrase here');

define('SECURE_AUTH_KEY', 'put your unique phrase here');

define('LOGGED_IN_KEY', 'put your unique phrase here');

define('NONCE_KEY', 'put your unique phrase here');

= TEMPLATE =

* Browser testing

* Device compatibility

* Validate your code

using the W3C's validato

* Test site Search functionality

* Verify favicon displays on IE (might need .ico version) and non-IE browsers

* Delete unused themes, except a fallback like Twenty ____

* Create essential pages

Home Page, About page, Product page, Sigle

* Verify the theme’s (not the server’s) 404 page works and is designed as desired

* Make sure all images have captions and that they look good

* Make sure video embeds work as desired

= Plugin =

* Deactivate development plugins, like Action Map / CSS Map; testing code, scripts, and dummy content; and SSL testing plugins

* Delete unnecessary plugins

= Maintenance Mode =

* It is best to turn on Maintenance mode for 15 – 20 minutes that it may take you to make sure that everything is working properly.

= Updating WordPress to Latest Version =

* Check Requirements

PHP 5.2.4 or greater

MySQL 5.0 or greater

The mod_rewrite Apache module

* Check & Update Themes & Plugins

* Backup WordPress

* Updating WordPress

@@ Line 1: / Line 1: @@
+[[Category: IT Knowledge]]
 = Setting =
 * Setting up Permalinks
@@ Line 47: / Line 49: @@
 . Secure wp-includes by adding these lines to your .htaccess file.
 . Secure your wp-config.php by adding these lines to your .htaccess file.
+* Protect .htaccess from unauthorized access
+  Add this code to your .htaccess file:
+    <files ~ "^.*\.([Hh][Tt][Aa])">
+     order allow,deny
+     deny from all
+     satisfy all
+    </files>
 * Check that you have disabled file editing
    Add the line `define(‘DISALLOW_FILE_EDIT’, true);` to your wp-config.php file.
@@ Line 59: / Line 68: @@
    Desired: 400
    Fallback: 440, 444, 600, 640
+* Disable directory browsing
+  Add this line 'Options -Indexes' to your .htaccess file.
 * Delete readme.html and install.php
 * Add blank index.php files where needed
@@ Line 68: / Line 79: @@
 * Move wp-config.php file outside the web root folder
    The wp-config.php file is a very important configuration file. It contains a lot of sensitive information about your WordPress site, like your database information for example.
-   WordPress will automatically look for this file in the folder above the WordPress root folder if it does not exist in the root folder. Moving this file out of the public_html folder means the file will not be accessible from the Internet.
+   WordPress will automatically look for this file in the folder above the WordPress root folder if it does not exist in the root folder. Moving this file out of the public_html folder
+  means the file will not be accessible from the Internet.
+* Create secret keys
+https://api.wordpress.org/secret-key/1.1/salt/
+  define('AUTH_KEY', 'put your unique phrase here');
+  define('SECURE_AUTH_KEY', 'put your unique phrase here');
+  define('LOGGED_IN_KEY', 'put your unique phrase here');
+  define('NONCE_KEY', 'put your unique phrase here');
 = TEMPLATE =
+* Browser testing
+* Device compatibility
+* Validate your code
+  using the W3C's validato
+* Test site Search functionality
+* Verify favicon displays on IE (might need .ico version) and non-IE browsers
+* Delete unused themes, except a fallback like Twenty ____
+* Create essential pages
+  Home Page, About page, Product page, Sigle
+* Verify the theme’s (not the server’s) 404 page works and is designed as desired
+* Make sure all images have captions and that they look good
+* Make sure video embeds work as desired
 = Plugin =
+* Deactivate development plugins, like Action Map / CSS Map; testing code, scripts, and dummy content; and SSL testing plugins
+* Delete unnecessary plugins
+= Maintenance Mode =
+* It is best to turn on Maintenance mode for 15 – 20 minutes that it may take you to make sure that everything is working properly.
+= Updating WordPress to Latest Version =
+* Check Requirements
+  PHP 5.2.4 or greater
+  MySQL 5.0 or greater
+  The mod_rewrite Apache module
+* Check & Update Themes & Plugins
+* Backup WordPress
+* Updating WordPress

Wordpress Checklist: Difference between revisions

Navigation menu

Search