If you are building and creating a blog which attracts a large number of page views then WordPress Comment Spam is most definitely one of the most annoying chores you are forced to deal with on an almost daily basis. There’s trusty Akismet, the old plugin which does a pretty good job in catching WordPress comment spam, but there are some times when spammers are able to get by Akismet’s defenses and enter your main comments section.
In case you haven’t noticed, I simply love using WordPress for clients web sites. The reasons why are numerous. In case you’re still not sure, here are my top ten reasons why you should, too.
- It’s very search engine friendly. This is the number one reason you should be using it. Search engines love to crawl clean, well structured content. WordPress makes that easy.
- It’s easy to manage. Other than the initial learning curve, adding and changing content does not require an understanding of html. It doesn’t hurt either, if you have html skills you can do even more with a great content framework.
- The plug-ins. There are thousands of useful tools to make a great platform even better. From customized login screens to double opt-in email list managers, WordPress has it all.
- Themes, themes and more themes. Whatever your taste if you do not have design skills, you are almost certain to find a template design that suits your tastes and needs. From there you can add your custom logo and if your really good with design, modify the theme to suit your own tastes.
- It’s a complete and robust CMS (content management system) You decide what information you want on what pages and place them accordingly on your site. You have complete control over your message.
- Everyone else and their mother is using it. It’s one of those things that if you wait to see what happens, you will be left in the dust.
- It’s robust enough with the right plug-ins and configuration to run some of the top read websites on the net. I do believe TechCrunch and Mashable both run on WordPress MU(multi-user)
- You can have a site up and running in minutes, you can move to a totally new domain and never have to worry about breaking links. Just 2 lines of database code set-up the entire sites link structure.
- It does not take a degree in computer science to use, and if you do happen to have a degree in computer science you can make it that much more cool.
- Because I say so. Since I tend to know what the heck I am talking about, you should trust in this fact and succumb to the geekness.
That pretty much sums it up. If you need further convincing, read this article again. Maybe you just have too much money on your hands and can afford a $25K custom site that does what WordPress already does out of the box. In that case more power to you, you’re gonna need it.
Warning…this is a mildly complex server administration task. I assume no responsibility if you toast someone’s website.
If you have root access to a VPS or dedicated box then proceed with caution.
What this tutorial will do is allow updating of the WP core, plug-ins, and themes via SSH through PHP.When this is installed correctly a third option will appear in your update options section. (FTP, SFTP, and OMGSTFU SSH2!) SSH2 is a secure channel client that requires about half of the processing requirements of the standard WP FTP routine. Did I mention it was fast? Yeah like real fast, like a graduating classes virginity on prom night fast.
Fair Warning there are a few things that need to be in place before you can actually use this tutorial. The first thing to do is make sure you have SSH2 installed. It’s a fairly simple install with pecl. If it’s not installed or you’re not sure, run this command or have your hosting company do this for you.
#:[enter root user password]
pecl install -f ssh2
note: If your distro’s installed version of SSh2 is beta, as mine was on Media Temple, run this command instead
pecl install channel://pecl.php.net/ssh2-0.11.0
The next step is to include the dynamically loaded extension. Search for php.ini on Media Temple Cent 5 it is /etc/php.ini. Inside that file locate the dynamic extensions area. Should be blank, add this line….
This will force php to load the SSH2 library for Secure communications. At this point you should restart the web server apache.
Once you restart apache, login to your blog, try to install a plug-in or theme. You should see a third option to update via SSH2. This will tell you if its installed correctly or not. Almost Done! To really make it sing continue a little bit more.
To use SSH2 you need to generate a set of rsa keys. This is great so you will never have to enter that password again, or worry about your credentials being sent over the wire in clear text.
Login to your home directory as normal user. You do not want to run the next few steps as root. Run this command.
This will prompt you for a file location to create a key pair. It should default to something like /var/www/vhosts/mydomain.com/.ssh/id_rsa or /var/www/html on RH or Cent. /home/html/.ssh/id_rsa for Debian/Ubuntu. Go ahead and press enter, you should be prompted to enter a password. Do not enter any passwords, hit enter twice. Some folks have noted that password protected keys cause problems with SSH via PHP.
After creating the keys there are couple of final steps in SSH terminal. This sets up the key pair for WordPress to use while accessing your server via SSH.
cp id_rsa.pub authorized_keys
chmod 755 .ssh
chmod 644 .ssh/*
The last step is to add the credentials and path locations to your wp-config.php file that automates the update/install process for you. Here is an excerpt from my config. Be absolute in your paths to files. Note the ‘FS_METHOD’ is ‘direct’ compared to ftpext, SSH, or ftpssl. This works for me and updating, installing, deleting plug ins really zings!!!
//* Added for Auto FTP updating
define(‘FTP_PLUGIN_DIR ‘, ‘/var/www/vhosts/michaelquale.com/httpdocs/wp-content/plugins/’);
If your getting connection errors it’s possible that apache does not have write permission on the files. Easily fixed by navigating to the wp-content folder and entering a few commands.
chown myuseraccount:apache /upgrades -R
chown myuseraccount:apache /themes -R
chown myuseraccount:apache /plugins -R
chmod 775 upgrades/ -R
chmod 775 uploads/ -R
chmod 775 themes/ -R
chmod 775 plugins/ -R
This step dramatically improved the performance of installs, updates, and deletes. Hope this helps you!