” All right, so today, We have a special guest Alycia from Sucuri. Thank you so much for coming on today. Yeah thanks, I’m happy to be here Awesome, so we’re Talking about what is a CMS and which one should you Use for your website, Can you tell us a little Bit about what a CMS is So CMS stands for. Content management system and it’s basically an easier way to put pages, live on your Website or blog post manage your image media Library all that kinda stuff Awesome and now, let’s Go over the top three CMSs, I’m going to be a little bit! Biased in this episode, That’s my disclaimer right there, I’m going to start with WordPress WordPress is the most popular Content management system out there today powers Over 1/3 of the internet, It has tons of plug-ins tons of options and it’s pretty resourceful And probably my favorite Reason for why I use WordPress is the community behind it.
They’re such a large community that that just all comes Together, there’s meetups, there’s wordcamps and everyone just helps each other out For sure, and I mean with 40,000 plugins almost like you, have no end to the kind of functionality you can add to your CMS Absolutely. So what are some other CMSs that we can possibly use For sure, yeah,,’cause everybody’s heard of WordPress, so Yeah Drupal is another very popular one.
It’s been described to me as Kinda, like a Swiss cheese, you need to be a bit more Technical to use Drupal, but it does have a lot Of different features compared to WordPress, it has A different user experience and ultimately it’s been Used for a lot of things like government websites, And that kinda thing because of its ability to be a little more secure in some areas: yeah Yeah and it’s definitely One not for like the smaller business type sites as Enterprise or large Corporation type sites right, Yeah, yeah for sure Yeah Joomla – is another really Popular one as well, It’s got a really good.
Community – and it’s got, I think, the second highest Market share after WordPress, Although WordPress is Like 30 % – and I think, like It’s, a giant Joomla’s like 6 %, so just A little bit of a gap there between the top two but Joomla’s, also a really awesome CMS to use You wan na make sure that you’re using the most latest version. If possible, There are two active versions: Available that you can use Yeah, you definitely wan na stay on the most recent branch.
Of any CMS, if possible, Yeah that’s just a best practice there. All right. Let’s talk! About really figuring out, which one should you use right Like what are some of the first Steps we wan na think about. Definitely you wan na Make sure that you know what your requirements Are for your website, So how does it need to Be for your users to use! How are you going to go about? Actually creating posts and what are the processes that you’re going to use as part of that And then once you have all that you can kinda look at each CMS and see what are the extensions and Themes that are available And see if they’ll match the Requirements that you have for your website, That makes sense and It all comes down to figuring out what’s right for you Like, I will stand by WordPress all day, but WordPress may not be Right for your situations, Figuring out those requirements, With those applications are super important, Yeah and usually a Lot of the CMS websites have a great community Because they are open-source, So tell us a little about open-source Yeah for sure.
So all Those top three CMSs they’re open-source they’re, also free, which is very important, Open-source, basically Means that the source code used to build WordPress Or Drupal or Joomal, it’s all open and available, and anybody can contribute to it as well Right on So that just means it’s Constantly being improved by the community and the Community’s also checking to make sure that, what’s Being added is secure All right, so we want our Website to look good right, So is that something to think About when we’re choosing what platform we use and how easy it is to create those sites Totally so different themes will have different attributes like They may have a sidebar on the left or the right, Or they may be all one column in a never-ending scrolling website.
Different themes will Allow you to accomplish, maybe what you need by Having custom backgrounds or custom menus, so you Wan na look at the options for your theme and you also don’t wan na discount like premium themes, A lot of premium themes out, there will add extra functionality, So you’re, essentially Paying for the theme, even though the CMS is free, That’s an awesome option. There’s premium plug-ins as well, Depending on what you Need the default themes that come with it are Sometimes a little restrictive, so you wan na take a look at What the default themes are: Try some different free themes and see what the options are to get your site to look.
The way you want it to Yeah and what was kind Of controversial at first in WordPress and 5.0 remember Gutenberg, Oh yeah, Gutenberg is essentially The new WordPress editor, The whole point is to kinda mirror the printing press of just Blocks and everything else, Yeah, what you see is what you get So as you’re typing — Whizzy, wig, Yeah whizzy wig, Thank you So as you’re typing Yeah, you see exactly what you would see on the website, So that comes default by WordPress.
It has made the experience. Especially for first-time users easier to create, Then there are page Builders like Elementor or Beaver Builder or WPBakery Builder, that makes that user-experience A little bit easier, If you’re going on the WordPress realm and really want something: That’s pretty customizable, you don’t have to be a Web developer or guru to build that website For sure CMSs are having to Make things a little easier, You know, there’s a lot of Different places out there that are creating website builders that are super easy for people to use, and so it’s helpful for These open-source CMSs to make the user-experience a little easier All right.
So another thing we probably have to think about. Is the hosting requirements We’re going to need for our applications? Talk us through a little Bit of what that looks like For sure, so most of These are running on PHP, so you want the most Updated version of PHP, especially if you want The latest features and to make sure that you’re Getting those security updates? Yes, So that’s really important.
A lot of hosting companies will offer one-click Install for most of these major CMS applications, Some hosting companies Especially when I first started creating websites – and I Was on a super budget, but also a very secure host, it took me a long time. It took me like three days to install WordPress and they have a famous 5-minute install You wan na look and see, and maybe talk to your hosting company.
About what the options are for getting this CMS Installed on your server Right,,’cause, taking three Days to get a website going just the beginning is not Something you wan na do There’s a lot of places out there that will do managed hosting Especially with WordPress There’s managed WordPress that has just already automatically installed some extra security features And then what most people End up going with is like a cPanel type Hosting Since it does have that one-click install with Installatron or Softaculous, Whatever they’re, using Totally Couple of clicks of a button and then it’s there, You can start building and Designing, however, you want All right, so the real Reason I brought you on to this.
Episode is really talking about security with CMSs They’re open-source. You Constantly have to update them, so there’s lots of things. That we need to really think about to make sure Our stuff’s protected Totally well with It being open-source not only are all the good People contributing code, but all the bad people can Also, look at that code as well and find vulnerabilities. So that’s something that a lot of people are concerned about.
Especially with WordPress being so popular, it is a large target. The CMS itself is actually quite secure because there’s a great Community checking things out. You wan na make sure that you’re Not installing more plug-ins than you need Trying to make sure that you’re keeping everything up to date. If you have a managed solution, They’ll, do it for you, Which is awesome. Yup, You wan na make sure That you have something some kind of security plug-in That’s monitoring your site, letting you know if there is A problem that they detect There are some that can also Add features for protection like adding Two-Factor Authentication, which is a second password on your phone that you need to enter in Order to get into your website There’s all kinds of Cool security, plug-ins security utilities that You can use with your CMS Yeah, I know with WordPress the top security plug-ins That come to mind, of course, Sucuri has This security plug-in, but there’s also Wordfence And then with having an SSL on your site, super important just to Encrypt that password,’cause, you have to login The beauty with CMSs that You can access them anywhere right, Yup, So you wan na make sure that wherever you’re accessing’em Your password isn’t being sniffed out by someone in the middle Yeah.
You wan na, be careful. You don’t wan na. Maybe do It in like an airport or coffee shop, Wi-Fi Unless you’re using a VPN.’Cause, if you are sitting There on public, Wi-Fi and there’s a hacker sitting next to you, they could sniff your password As you’re typing it in And then the next thing you know, there’s a bunch of spam pages on your site that you need to deal with. So what about firewall? I’ve heard that it should be important.
Should be added to the site, What’s the validity with that? Definitely one of the nice things about a website firewall Is that it will virtually patch your CMS? So if There is a security issue, essentially the firewall’s Taking care of that, It surrounds your website. And if somebody’s trying to exploit a vulnerable Plug-In on your site, the firewall will catch. That attempt and block it They’ll see a blocking page.
Meanwhile, all of your legitimate Visitors are being sped-up because of the global Network of the firewall and content delivery network, So we’ve figured out what Cms we’re wanting to use We’ve got it installed, how Do we go about documentation, learning the program itself? There are some awesome Resources out there, You talked about WordPress WPBeginner has some awesome? Training guides and tutorials There’s an awesome community.
For all of these CMSs, with very active, like support forums, That’s a great way to go about it And then, obviously, if you have a developer, Or something like that, that’s helping you get some customization. They can usually help you. You wan na make sure that You’re documenting everything as part of your website as well, so It’s just going to help you Later on down the line, if you know you have a List of all the users, all the plug-ins and that kind of stuff and you’re keeping that up-to-date Yeah, especially if you Have people on your team that needs to access the site, Giving them documentation on What they should be accessing, what they shouldn’t be, because sometimes the wrong click can Make just chaos happen Totally and good user passwords making sure that you’ve Got the right role levels assigned to your users? Whether they’re just an editor or author or contributor Right Those roles are usually built into the CMS to allow you to make Sure they can only access what they should be allowed to access.
You only wan na grant admin privileges to somebody for as long as they need it, and that kind of thing Now, with this website, I know many of the entrepreneurs or even solopreneurs out there with their stuff, has Many hats to wear right, Sometimes maintaining it, isn’t always something that they have time for Yeah. It may not be top of mind Right. What should we be? Doing with those updates Yeah, definitely I would say that it’s very important to make sure that you always retain Access to your property, your web property, So I’ve seen cases where a developer will leave a client and Leave with the passwords and then you can’t get Into your hosting account, or you can’t into WordPress, It’s not ideal, so make sure you always have access to those things And make sure that you’re just practicing safe security practices.
Throughout all of it Right on and with WordPress and Joomla everything else, we Talked about it earlier, make sure you’re at least going in there every now and then to update It to the next latest version: It’s not only for performance, but it is for security Yeah for sure I mean with some CMSs there might be different branches that are still being actively developed So having a firewall That can virtually patch and make sure if there Are any vulnerabilities you have a little bit of an extra window.
‘Cause whenever there’s a Security update released, the hackers are looking going. “: Okay, here’s the old file; “, here’s the new file; oh look: “! There’s the security flaw!”, So it can be –. Then send all our bots out Totally it can a matter of minutes hours after a security patch is released before there’s active attacks in the wild So definitely update your Sites as soon as possible, Auto-updates are amazing, WordPress has auto-updates on most hosts, Yeah and or you can hire developers like most designers or Developers will have like a website care plan, so you Can them just do it for you, If you’re using WordPress, Godaddy ProSites or ManageWP has the one-click updates.
So you can update all your Plug-Ins and your themes, You even have a safe update option. So what it does is It’ll update your site, take a snapshot of before and after and make sure they’re all the same. And if there’s an issue It’ll retract, back to it It’s a free option for you Yeah, that’s perfect! You hit on a good point, It’s not a set it and forget. It thing with a website: You need to make sure that You’re maintaining it And that it’s part of your business, it’s how your business looks.
So you should definitely Make sure that you have some kind of plan for keeping It up-to-date and maintained All right. The last point that we should really talk about is really your time and investment with the CMS of your choice. Talk us through a little Bit of that about that For sure we’ll you Wan na go in and realize that it’s going to take you Time to setup all the pages that you want Right: It may take you time to find the right plug-ins, so you wan na kinda think through whether You want to hire somebody or get some help with that To find the functionality and the look and feel that you’re after Definitely budget when It comes to free CMSs.
Well, you don’t have to pay for the CMS. So that’s helpful Right! But it’s customization and security and all Those things that you definitely wan na consider as part of the whole package of having a website On-going costs for domain WHOIS privacy, SSL certificates, Right firewall, All that kind of stuff, All that good things Totally yeah, there’s A lot of accessories that go on with having a website, So you wan na figure like I said at the beginning what those requirements are And then make sure you have a plan for how you’re going to budget and the timelines around When you wan na launch Perfect and with Drupal And Joomla they are, they do have that smaller market share, So there’s really specific requirements of when you wan na use those applications.
Those developers that you hire for Drupal or Joomla might cost more than a WordPress designer as well For sure yeah, and you wan na make sure that you’re really looking at the work that the developer has done and make sure that it Matches what you’re, after There’s lots of great Websites out there that you know can tell you more About how to pick a developer depending on what you’re after Well? Thank you so much for Coming out on the show today and helping us figuring Out what a CMS is why we should use one You’ve been awesome Thanks my pleasure.
Well, if you liked this article go ahead and smash that, like button, add a comment below on Something that you’ve learned and subscribe to this blog and ring that bell, if you’d like to see these episodes first, This is “ The Journey.,” we’ll see you next time.