Kevin Quillen

What is this? You leave Wordpress alone for a week or two and suddenly your blog is hacked? I understand Wordpress is open source and modular, there’s nothing wrong with that. But they need to get a #$@(* handle on their core and third party add ons like Drupal does. Automatic Update is on, and yes I could use it, but my current hosting provider does not allow me to do that on the plan I have.

This didn’t used to be a problem back in the day, but now it seems like if you don’t stay on top of Wordpress patches (almost weekly), you’ll fall victim to some kind of blog attack. Can’t they make software that’s secure? I mean we’re only talking a blogging platform, one that I allow no one but myself access to. How hard is that? I have an Analytics plugin and AKISMET spam plugin. So, how? You almost have to be versed in Wordpress and monitor it 24/7 to make sure nothing ever happens to your site.

Well its been a fun few years, and just like I left LiveJournal (and DeadJournal) for Wordpress, I can see myself converting my site into Drupal in the near future. I’m going to say SEE YA to HostMySite too. At least I know I won’t be hacked then, because I am well versed in Drupal. Easiest CMF (content management framework) around, easy to extend, easy to maintain. I can’t believe over a year ago we scratched our heads on it, but now we’re ninjas.

I can’t ever think of a time we’ve been severely at risk for any hack attempt on any site, core or contrib. The community does a great job vetting poor code. Not Wordpress I guess. And some people want to call this a CMS..