Trustworthy Plugins and Plugin Collections

  • Resolved allstar

    (@allstar)


    17 years, 8 months ago

    I’ve been using phpBB for ages and I’ve been using other (shock, horror) blog software and what I deeply like about both is there repository of Plugins that have been validated by the core team thus I have someone to trust on a Plugins validity.

    WordPress does not have this so how do I know to trust any of the thousands of plugins that are floating around that are not on the wordpress.org site?

    I don’t want to have to spend weeks checking all plugins that I would like. I’d like to install, plug ‘in’ and go and have it happen in a few days. WordPress exceeds my current software in all aspects except this and whilst I’m not going to ask how long until the ‘extend – plugin’ section is ready I would like to know what I can safetly use in the meantime.

Viewing 2 replies - 1 through 2 (of 2 total)
  • Christopher J. Hradil

    (@chradil)

    17 years, 8 months ago

    wp-plugins.net and dev.wp-plugins.org currently contain the cutting edge of what’s happening with plugins.

    be sure to install he latest (2.0.4 as of this writing) version of wordpress and keep it up to date.

    each plugin’s description should let you know whether it will operate correctly with wp 2.x.x or if it is a 1.x.x plugin (many of those even work with a minor bit of tweaking).

    Personally, I’ve used phpBB for a couple of sites for years, and the WP plugin system is much easier to deal with for one, and is much more secure/less apt to cause problems than phpBB.

    I can recall a couple of times where users requested I install specific phpBB plugins which not only didn’t work, but also ruined the base installation because as you should be aware, many of the phpBB plugins ‘edit’ core system files and database tables whereas WP plugins do not, thus making them much safer and easier to use right off the bat. For example, if you installed a plugins that for one reason or another didn’t work correctly with your site (I just did one yesterday out of the dev trunk, and the site became a blank white page with one

    • tag in the source !) simply delete the plugin’s file/directory from your wp-content/plugins directory and you’re back up and running.

      Quite the contrast to something like phpBB where you’d then need to go back and by hand figure out which phpBB files were changed by the plugin, what changes were made, then attempt to return the files to the state they were before the plugin install.

      Summary — overall, you’ll find the WordPress plugin architecture much safer and easier to deal with than many other packages out there since plugins do not alter core system files

      …..c

    Michael Bishop

    (@miklb)

    17 years, 8 months ago

    Allstar-

    Indeed plugins are generally speaking, released in a caveat emptor state. Personally, being a user and active member of the forums, I haven’t run across any malicious plugins, but recently I read a post about the reality of how plugins could actually be nefarious.

    My suggestion would be to do a search here at the forums for top 10 lists as those plugins will in some manner be vetted by the fact that many have used those plugins, or follow the plugin tag and do a little research of your own on individual ones.

    Welcome to the WordPress community, and by all means, if you run across a plugin that seems odd, post back here in the forums, there are always users who are more familiar with code who can “inspect” the code.

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘Trustworthy Plugins and Plugin Collections’ is closed to new replies.