@Carsten thanks for the backstory. DDC is Dealer.com who is an OG dealer website provider within automotive. All of our OEM program websites are on their platform because we are forced to select from a list of providers. The game for any vendor (website, widgets, agency) within auto is to get a certification from an OEM to be able to "pay to play" and be allowed to actually build websites for franchise dealers. @csabatka1 can tell you how that looks. We just recently caved to Kia and moved from his WP sites to two more DDC Kia sites and they suck compared to his BUT there is a lot of money that dealers lose by not falling in line with an OEM program provider.I have been toying with an idea to try to get into the dealer websites.
Just for AI giggles.
hey ChatGPT!
how secure is word press ?
ChatGPT:
WordPress can be secure if it's maintained properly, but like any web platform, it also has vulnerabilities. Here's an assessment of WordPress security:
Core Security
- Well-Maintained: The core WordPress software is actively maintained, and security patches are released regularly.
- Security Team: WordPress has a dedicated security team that collaborates with the global community to identify and patch vulnerabilities.
Potential Vulnerabilities
- Plugins and Themes:
- Third-party plugins and themes can introduce vulnerabilities if not properly vetted or maintained.
- Outdated or poorly coded plugins are a common source of security issues.
- Brute Force Attacks:
- The default WordPress login page is a frequent target for brute force attacks.
- User Roles and Permissions:
- Incorrect role assignment or permissions can lead to unauthorized access.
Best Practices
- Keep Software Updated:
- Regularly update WordPress core, plugins, and themes to the latest versions.
- Use Trusted Plugins/Themes:
- Only use well-reviewed plugins and themes, and remove those that aren't actively maintained.
- Security Plugins:
- Install security plugins like Wordfence or Sucuri for enhanced protection, including firewalls and malware scans.
- Strong Passwords:
- Use strong passwords for all accounts, especially administrators.
- Two-Factor Authentication:
- Enable two-factor authentication (2FA) for additional login security.
- Backup:
- Regularly back up your WordPress site to ensure you can restore it in case of an attack.
Summary
WordPress can be secure if regularly updated and maintained, and if best practices like strong passwords, secure plugins, and backups are followed. However, it's not immune to attacks, especially when users neglect updates or install vulnerable plugins.
NOTE:
I do agree with the statement that any site can be vulnerable. You also need to stay up-to-date with the coding language and server versions. Word Press is just notorious like Windows because end users don't stay on top of updates.
We're not planning on replacing our WP sites. You were highly critical of using WP so I just wondered if you had an opinion of another industry automotive website platform. We are using DDC for our "have to have" OEM sites but bury them when able. We did just replace our two WP Kia sites because the co-op incentive and incentive was too great to not just go with a Kia provider. What proprietary system are you working on @Carsten? I see you active on DR and wondered what your experience was and assume you are working on something for the automotive retail space?@Dan Sayer
For the vendor thingy, I didn't really know what to choose when I signed up here and vendor seemed the most fitting since I am working on my own proprietary system. Obviously, I have a lot to learn and I'm always willing to learn.
As for what I would recommend:
Make sure that WP is updated religiously and that you have daily backups of your DB and if you don't monitor your site daily, then make sure that you have a backup of your data on timely basis in case you do have to roll back your db. But chatGPT also mentioned this.
Migrating to another platform most likely doesn't make sense until it happens. You did say you have been clear so far of carnage, so why change?
For replacing WP, I'd need to ask a whole slew of qualifying information questions since you didn't mention why and what for you use WP. What's your use case?
What would you recommend we do @Carsten? Migrate to another platform? What is your background in this area? I see that you're a vendor but the company site listed in your profile is not active.You are like one of very few people that I have come across who have gotten away without having an issue.
Script kiddies learn on WP sites.
This is just a well know fact in the coding world.
You really need to stay on constant updates for WP and make sure you have Database backups.
I can provide some phone numbers for friends who took the easy way out and later got hit.
Services like Wix do great because they monitor like crazy.
the automotive industry is at a crossroads. It can either continue with its antiquated ways or embrace a new paradigm that values transparency and efficiency
Then I realized I didn't like Air Traffic Control
Like anything the FTC or government is involved in, it starts with good intentions and evolves into loads of bullshit, with a little 1/32 carat diamond in the middle.As it should be...
but... it's a link in a text message. They don't need to type it in or remember it, they can just click the links. who cares if the link is bestaudidealerinvirginiabeachthatsbetterthanalltheotheraudidealersinviginiabeach.com?
but yeah, if you have a long URL and you think people would care, just use a URL shortener. Why go spend $1500+ a year to have a .dealer or .cars TLD when you can use bit.ly for free?
plus, there are massive SEO implications for switching your domain name to something else for non-SEO reasons...
but... it's a link in a text message. They don't need to type it in or remember it, they can just click the links. who cares if the link is bestaudidealerinvirginiabeachthatsbetterthanalltheotheraudidealersinviginiabeach.com?
but yeah, if you have a long URL and you think people would care, just use a URL shortener. Why go spend $1500+ a year to have a .dealer or .cars TLD when you can use bit.ly for free?
plus, there are massive SEO implications for switching your domain name to something else for non-SEO reasons...
Thank you for your participation, Drew. Great points.
1. What is your sentiment on the experience/capability you have with where you listen to calls today? What platform do you use to listen to them? What is missing?
No - that's pure Vitale there. I'm scared to think of what would happen if Chris used a botThe exhausting reality of overposting AI bots.
State your case and examples on the hacking comment @CarstenUse WordPress if you want to be a hacking target.
Adding plugins is like buying oil at Dollar General. They may work ... but good luck!
ecommerce is always going to look stale to some extent. Amazon hasn't changed much over the years.
@DaveNovotny I book marked Gray Scott's DR podcast. It's bad assI have a tool I created with a friend that does just this. It will work to remove your negative reviews that you may struggle to have removed
If the FTC gets their way, transparency will be forced on dealers overnight.