----- Forwarded Message ----- From: Jonathon Book <jb@xxxxxxxxxxxxxx>To:
Mike Chasin <mikechasin@xxxxxxxxx>Sent: Thursday, June 11, 2020, 04:52:53 PM
PDTSubject: web site
I took a look.
It seems to be a plain ol' html web site and your guy is either
hand-coding it or using some editor program to FTP upload files?
Nothing wrong with that, but it usually means just one person can edit
the site and has to have some coding skill. Can you tell me more about
what happened when it was "hacked"? What were the symptoms? Was the FTP
password sniffed and the site was defaced?
Wild Apricot looks like a nice service. They provide a web site builder
tool included in the monthly fee. It looks ok, too.
Options:
1. Leave the site alone. If I can better understand the hacking problem,
a plain html site can be hosted anywhere.
2. Move the site, but just change hosts. Use SFTP to help keep it secure
(with plain FTP, passwords are sent in clear text and could be sniffed.
Not really an issue when working from home, but public WiFi could be an
opportunity for bad guys)
3. Update the site and redesign using a Content Management System (CMS).
There are two practical options:
A. Use the Wild Apricot web builder. You're already paying for it,
can't hurt to try. If it looks ok, move the domain there to go live.
B. Rebuild the site in WordPress. It's a very popular CMS. Needs to
be maintained and updated regularly to keep secure, which is basically a
matter of logging in and clicking the Update buttons once a month or so.
Wild Apricot has some plugins to share content and calendars with a
WordPress site. The only downside is that you will continue to pay for
external hosting when the Wild Apricot CMS may be adequate.