My WordPress configuration suitable for a tech blogger

by

Well it has come time to review, update and clean up my WordPress instance to get it refreshed so i can start to put some new posts. Below is a brief snapshot of the plugins and themes i use, and high level clean-up steps i performed.

Themes

  • GeneratePress theme (https://wordpress.org/themes/generatepress/) as its clean and free and offers some of the features i really wanted to have:
    • Posts need to have a date on the post, so people can instantly see relevance – i find many bloggers remove this and its frustrating as a reader.

Plugins

  • Akismet Anti-Spam – https://wordpress.org/plugins/akismet/ This is self explanatory as to why i have it.
  • BackWPup – https://wordpress.org/plugins/backwpup/ This is a basic backup that i use, specifically to do backups locally as well as to Dropbox and Azure Blob storage. Its free for the the backup destinations i use, and restores are more ‘hands on’ but that’s ok for me.
  • Highslide for WordPress *reloaded* This plugin helps user experience when clicking on images – rather than the page loading the image, it simply creates a ‘lightbox’ with the image, and a second click closes it. This plugin is no longer available on WordPress, but is a very simple implementation looking at the code. I will replace it if it causes issues
  • JetPack – https://wordpress.org/plugins/jetpack/ Offers signing in with WordPress account, and MFA. Also there are some additional benefits it offers for free that make it worthwhile
  • Urvanov Syntax Highlighter – https://wordpress.org/plugins/urvanov-syntax-highlighter/ Nice and very feature rich syntax highlighter for code. I have customised this to suit the way i like code displayed.

Configuration

Most of the config is fairly straightforward and wont cover off. Below are more noteworthy changes worth documenting:

  1. SQL updating all tables that reference my old domain and point everything to https://ivan.dretvic.com. This just cleaned up all broken links/images in posts.
  2. Cloudflare was put in front of WordPress. This provides protection benefits including:
    1. WAF/security protections
    2. TLS enforced on all connections
    3. Cloudflare Access to get into any of the sensitive directories like /wp-admin
  3. Updated all previous logs to use the new Syntax Highlighter. I used to use a different one previously, but with no development for two years (the developer past away) i decided to migrate.
  4. Ran a security vulnerability scan using a tool to validate that the server, database and WP instance is configured appropriately.
  5. Configured WP, plugins and themes to automatically update. Historically i have had no issues due to keeping it vanilla, so not worried about doing it automatically.

Whats next?

Ill keep updating this post as i update with any new changes. What I will look at doing is building out some automated testing to validate that a) the site is up, and b) is rendering as expected.

This site uses Akismet to reduce spam. Learn how your comment data is processed.

QR Code Business Card