WordPress 201
I work for 
Today, I'm going to teach you how to do some stuff.
Like improve your site's performance.
And make it more secure.
So let's get started...
Performance
Methods for Reducing Load Time
- Visitor & server side caching
- Image tweaks & optimization
- JavaScript & CSS minification
We'll go ahead & begin with caching...
Page Caching Plugins
Browser Caching
I've adapted a set of .htaccess rules from HTML5 Boilerplate for this.
There's no need to reinvent the wheel, right?
Now, let's tighten up those images...
Compress Your Images Locally
Compress Images on Your Site
Load Images As They're Needed
Finally, let's cut the fat on your CSS & JavaScript...
Compressing Your CSS and JavaScript
Okay, that covers performance.
Now, let's focus on security.
But first, we'll cleanse our palate with a video.
Security
Methods for Securing WordPress
- Block attacks at the server level
- Protect your admin area
- Staying on top of updates
How about we start with blocking attacks at the server level?
Who's already using a plugin?
Here's why that's not such a great idea...
Blocking Without Plugins
Okay. Now let's chat about insulating your admin area...
So, we want to keep unauthorized people from getting into your admin area.
But we also want to not be annoying to the site's contributors, right?
The Programable Bouncers
Note: Enabling all of these at once can make logging in an ordeal.
Let's finish this out with a conversation about updates...
According to WPsecure, there were 186 exploits for WordPress and its plugins in 2011.
"But it's such a pain to stay on top of plugin updates!"
You know what's an even bigger pain? Cleaning up a hacked site.
Getting an email reminder though? That's no pain at all.
Update Reminders
And that covers security.
Questions?
