Kai Armstrong of ZippyKid gave a talk at the 2012 Orlando WordCamp and talked about the kind of things that you really should avoid doing on your WordPress sites. The points were fairly elementary, but for those new to WordPress, it’s certainly worth a look:
- Don’t ever write changes directly to a theme. Create a child theme. Every time.
- Don’t upload massive images unless you need them. Resize them to as big as you need them. Then compress them.
- Remove unused plugins and themes. Update, update, update!
- Never use the admin username. If you have a user called admin, change it.
- Make sure your password is strong and unique.
- BACKUP! You’ve got no one to blame but yourself if your site breaks, gets hacked or you suffer from a hardware failure, and you don’t have a recent copy of your site to restore from.
- RTFM: if you have any questions about WordPress, start with searching the Codex. There’s a crap load of information there and chances are, your question will be answered there. Don’t ask for support if you haven’t done a couple of minutes of research first.
Like I said, nothing groundbreaking here, but a good list to start with before you start getting into bad habits.