Skip to content

Flarum - WordPress Journey

WordPress

Related Topics
  • Who uses Flarum?

    Chitchat
    22
    7 Votes
    22 Posts
    294 Views

    @Madchatthew I use it here. It is faster, but not sure if that extends to build times.

  • configure ghost and wordpress combo

    Moved Solved WordPress
    9
    7 Votes
    9 Posts
    97 Views

    @Madchatthew I’d always post for the reasons I stated above. It’s useful information and could save someone else the headache.

  • WordPress and NodeBB on different machines

    Solved WordPress
    10
    2 Votes
    10 Posts
    593 Views

    @phenomlab thank you for information.

  • Flarum SEO is worst and i still want to use it 😭

    General
    15
    6 Votes
    15 Posts
    1k Views

    @Hari said in Flarum SEO is worst and i still want to use it 😭:

    Flarum is coded in such a way where it tells spiders not to crawl any internal links by adding nofollow tag. How stupid this is

    Yes, I agree this doesn’t make any sense. If you compare to WordPress, then (via a plugin of course) you can set the attribute as you wish. It doesn’t make any sense to take a blanket approach. I guess I unerstand why they are doing this, but it’s not an optimum SEO methodology.

    @Hari said in Flarum SEO is worst and i still want to use it 😭:

    For few minutes i thought i should register a domain called flarumSEOsucks.com

    They’d probably sue you for using the Flarum name in a URL 😕

  • WordPress site

    General
    118
    10 Votes
    118 Posts
    12k Views

    @jac said in WordPress site:

    It’s Wordpress OUT, and Ghost IN it seems! *preference based .

    Even County’s site uses Wordpress 😉 . Although that does serve it’s purpose.

  • 1 Votes
    13 Posts
    1k Views

    @phenomlab said in Hardening WordPress - Reducing the attack vector:

    @jac Microsoft’s and Google’s Authenticator both support TOTP - essentially, a time based system that changes every 30 seconds. The main principle here is that the device itself carrying the One Time Passcode only needs to be in sync with the source server in terms of time, and can be completely offline with no internet access.

    Provided the time matches on both devices, the One Time Passcode will be accepted. Applications such as Microsoft Authenticator and Authy also support push notification meaning you just choose either yes or no on your device when prompted, and then that response is sent back to the origin which then determines if access is granted or not.

    One of the best looking password less authentication models was CLEF - sadly, this product died out due to a lack of funding (if I recall correctly) although some open source implementations of this have appeared quite recently.

    Essentially, both products will achieve the same goal. TOTP is an industry standard, and widely accepted across the board. Not all services offer push confirmation.

    Many thanks for the detailed reply mate.

    There’s some great advice in there that will help me secure my accounts.

  • help me configuring cron job for fof/sitemap - flarum

    Solved Configure
    36
    18 Votes
    36 Posts
    2k Views

    you are too fast 😉

  • WordPress & NodeBB

    Solved WordPress
    6
    0 Votes
    6 Posts
    644 Views

    @jac That won’t matter. You just redirect at nginx or apache level and it’ll work. The generally accepted standard though is to use a subdomain.