My WordPress configuration suitable for a tech blogger

by

Well it has come time to review, update and clean up my WordPress instance to get it refreshed so i can start to put some new posts. Below is a brief snapshot of the plugins and themes i use, and high level clean-up steps i performed.

Themes

  • GeneratePress theme (https://wordpress.org/themes/generatepress/) as its clean and free and offers some of the features i really wanted to have:
    • Posts need to have a date on the post, so people can instantly see relevance – i find many bloggers remove this and its frustrating as a reader.

Plugins

  • Akismet Anti-Spam – https://wordpress.org/plugins/akismet/ This is self explanatory as to why i have it.
  • BackWPup – https://wordpress.org/plugins/backwpup/ This is a basic backup that i use, specifically to do backups locally as well as to Dropbox and Azure Blob storage. Its free for the the backup destinations i use, and restores are more ‘hands on’ but that’s ok for me.
  • Highslide for WordPress *reloaded* This plugin helps user experience when clicking on images – rather than the page loading the image, it simply creates a ‘lightbox’ with the image, and a second click closes it. This plugin is no longer available on WordPress, but is a very simple implementation looking at the code. I will replace it if it causes issues
  • JetPack – https://wordpress.org/plugins/jetpack/ Offers signing in with WordPress account, and MFA. Also there are some additional benefits it offers for free that make it worthwhile
  • Urvanov Syntax Highlighter – https://wordpress.org/plugins/urvanov-syntax-highlighter/ Nice and very feature rich syntax highlighter for code. I have customised this to suit the way i like code displayed.

Configuration

Most of the config is fairly straightforward and wont cover off. Below are more noteworthy changes worth documenting:

  1. SQL updating all tables that reference my old domain and point everything to https://ivan.dretvic.com. This just cleaned up all broken links/images in posts.
  2. Cloudflare was put in front of WordPress. This provides protection benefits including:
    1. WAF/security protections
    2. TLS enforced on all connections
    3. Cloudflare Access to get into any of the sensitive directories like /wp-admin
  3. Updated all previous logs to use the new Syntax Highlighter. I used to use a different one previously, but with no development for two years (the developer past away) i decided to migrate.
  4. Ran a security vulnerability scan using a tool to validate that the server, database and WP instance is configured appropriately.
  5. Configured WP, plugins and themes to automatically update. Historically i have had no issues due to keeping it vanilla, so not worried about doing it automatically.

Whats next?

Ill keep updating this post as i update with any new changes. What I will look at doing is building out some automated testing to validate that a) the site is up, and b) is rendering as expected.

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

QR Code Business Card