As a beginner, the WordPress backend can be a dangerous area. Anything that provides this kind of power must also assign responsibility to the user, which is where some people can go wrong in the beginning.

Don’t want to scare you too much, you can do certain things in WordPress to spoil it. The less worrying (but also very important) point is that I would definitely advise you not to do something else-whether it represents a potential security risk or just something that has a negative impact on the user experience.

With the above in mind, in this article, I want to introduce five things you must avoid doing in WordPress. After implementing the following suggestions, your website will be more secure, reliable, powerful, and fun for visitors.

1. Don’t use a code editor

The WordPress backend contains several mines; you can access them via Appearance> Editors and Plugins> Editor in the sidebar.

At first glance, these editors are very interesting-full access to the back end of your website! Imagine the possibilities.

Access the header file of my blog through the theme editor.

The header file of my blog is accessed through the theme editor.

Imagine the possibility that it does exist-once the wrong key is pressed, you will suddenly find that your website is intact:

Give up work

I only need to remove three characters from the PHP file of my theme to completely change the appearance of my website, as shown above.

But it’s not the worst-it’s too easy to accidentally disable access to the backend of your WordPress site, which prevents you from restoring order to your site immediately.

Therefore, I recommend that you only use an FTP application to access and edit the PHP files of your site, for example Archives (My personal favorite and Recommendations from Before you begin, you should copy any PHP files you want to edit so that you can quickly switch back to the working version if you accidentally cause serious damage to your site. It’s better to be safe than regret!

2. Do not install disabled themes

According to my experience, there are three types of WordPress users:

  1. Those who drive tightly
  2. Those who keep things fairly neat
  3. Those who don’t care much about the back end of their website

If you belong to the second or third type, then you should carefully consider the themes you currently have installed on your WordPress site. I’m not talking about active themes, but themes you have installed and disabled.

Although these themes have been deactivated, they still exist in your WordPress installation, and any security holes or vulnerabilities can still be exploited. For example, the most famous WordPress theme hacker is the TimThumb vulnerability, which continues to affect certain blogs to this day.

Generally speaking, if you use high-quality themes and make sure they are kept up to date, you should not encounter any problems. However, if you have unused old themes on the back end of your website, then my recommendation is to delete them immediately. Due to its huge scale of use, WordPress is a big target for hackers. Don’t let yourself be an easy target.

3. Don’t use the theme’s SEO features

This suggestion is not “you must Do this” and many more suggestions that I strongly urge you to follow.

Depending on the theme you have, you may find it has built-in SEO features. I recommend that you avoid using these features for two reasons:

  1. If you decide to change the theme, the SEO data in your theme may be lost (or difficult to extract)
  2. free WordPress SEO by Yoast The plugin has the best SEO features of any available plugin or theme

This is a bold statement, but it has been generally accepted by some of the most respected users and developers in the WordPress community. For example, as of October 31, 2012, WooThemes has deprecated the SEO features in its theme because Yoast’s SEO is “more beneficial” for WordPress users. WooThemes handing SEO control to another developer is a bold sign of their confidence in the Yoast plugin and also shows how popular it is.

If you want to learn more about SEO through Yoast, check out our guide on common WordPress SEO mistakes.

4. Don’t categorize and mark in large quantities

Nothing makes me cringe more than the improper use of categories and tags in WordPress.

Let’s figure out one thing first-both categories and tags can play a role on your website. Contrary to what some people believe, tags are not an outdated type of taxonomy and have nothing to do with the modern blog era. In addition, categories cannot be used and abused.

My favorite category and label definitions are from Lorelle:

Category is the directory of your website [and] Tags are the index terms of your website.

Now think about it-will the same text in a book appear in different chapters? of course not. This format should be transferred to your blog. I mean, a job should rarely be assigned to multiple categories. If you feel you need to assign it to two or more, you may have too many overlapping categories (7-10 is my rule of thumb for the best numbers).

Categories should represent the broad topics covered in your blog (e.g. “dinner recipes”), and labels should be more specific (e.g. “chicken”). The content should only be marked if the relevant label is directly related and relevant to the content. Generally speaking, I would say that you should only use no more than 50 tags.

My point is: in order to benefit users, categories and tags should be used at the same time. This is their main purpose. If you ignore this, then browsing your website will become a troublesome experience. At the very least, make sure that your categories are clearly defined and well stocked. If you are not sure how to mark up, then either read more about the topic or leave them alone.

5. Don’t leave comments for review

I will end with a pet that I really hate. When I encountered the following message, there was nothing more frustrated than me when commenting on the blog:

Image source: WPMU

If you have to wait for your comment to be reviewed before it can be posted, do you feel encouraged to comment? Do you think bloggers take it seriously? I guess the answer to these two questions is no.

In my opinion, review review represents the blogger’s lack of respect for reviewers’ time and should be avoided at all costs. Interestingly, you will often find comment moderation on smaller blogs-you rarely use it on larger blogs (you may receive more spam). I speculate that this is because the larger bloggers know not to confront their most loyal supporters (that is, those who make comments).

In fact, spam is not a big problem-plugins such as Archimedes It has done a good job in preventing most spam. I wrote an article about spam prevention on WPExplorer. When blogs grow large and receive a large number of comments, reviewing each blog individually becomes an unnecessary daunting task. Turn off comment moderation via Settings> Discussion screen accessed from the sidebar.

do what you Recommended to avoid?

Above I outlined five things I think you should avoid doing in WordPress-from serious security breaches to pet hatred. Of course, people can give more warnings and suggestions about using WordPress, which is why I want to open it up to you.

So please tell us-what do you recommend us to avoid in WordPress to ensure our website is safe, easy and enjoyable to use? Let us know in the comments section below!