We have been long-time fans of WordPress a great cms/blogging software that has been available for free for a long time. While donations are certainly helpful, they have never required a dime. Our support/enthusiasm is waning … with the quiet release of a security update 2.0.2.
We have several dozen WordPress installs for clients. When they upgrade, they do not — in our experience and despite signing up for their release list — ever get any notice. There have been major security issues as far back as version 1.2 and into the 1.5 version. Yet they never gave out a public notice.
With the recent release of 2.0.2 being a security update, would it not make sense that it be somehow featured on the front page of their site? It isn’t.
Updating is a time consuming process because it requires a complete replacement of the existing install. Especially given that many of our installs involve some customization, that can be time consuming.
So our advice to WordPress:
1. always email all users and if the issue is security, consider seeking out all users — the bad guys do.
2. put the latest release clearly on the front page of your site … I always have to look further to see if a new release is out.
3. start making security patches or upgrade patches to simplify the update process.
I am considering using Expression Engine for more and more installs to be honest because updates are much easier. I like many features of WordPress better (page feature, fold menu plug-in, semi-static home page etc.), but I also have to value my time.
April 27th, 2021 at 9:07 pm
Each year, the people of Hong Kong consume 2.62 litre of alcohol per capita, and this volume consists of 42% beer, 18.7% wine, 31.3% distilled spirits, 8% other alcohol.