yuvilio
commented
4 years ago Before merging, we'll have a redirect substitution. The yoast wordpress-seo redirection is a premium option, so scratch that. The Redirection plugin looks good (has dashboard, active usage). We'll want to make sure to
- Install the plugin locally and test both common redirection types (301/302) and regex.
- Wdd its wordpress hook to disable the logging/hit counts it does out of the box for performance and keeping WP db light.
https://redirection.me/developer/wordpress-hooks/
We can then merge.
A host we use often, WP Engine, recently messaged us that the Quick Page/Post Redirect plugin seems abandoned and not secure. Recommendations were to use a different plugin
https://blog.nintechnet.com/authenticated-settings-change-vulnerability-in-wordpress-quick-page-post-redirect-plugin-unpatched/
For redirecting options,we've actually been using wordpress-seo yoast, which is also in our default plugin list.
Should we need a specific redirect plugin (for example for sites that don't use yoast), we might consider adding this popular alternative redirect plugin, Redirection, from one of Automattic's developers .
https://wordpress.org/plugins/redirection/
Either way, we should remove the quick-pagepost-redirect-plugin in the meantime.