For a large number of people, 7 Mistakes Beginner WordPress Users Make. WordPress is the first script that they have have installed online for the first website they have ever developed. As a result of this, WordPress beginners make a lot of basic mistakes.

In this article, we would like to speak about some of the mistakes that many WordPress users make when they first start using the platform.

1.Installing WordPress in a Sub Folder Called “WordPress”

The WordPress zip file places all core files in a folder entitled “WordPress. Beginners make the mistake of simply uploading this folder to their website using FTP rather than uploading the files and folders contained within the folder. This results in their website being located at rather than


WordPress does allow you to install WordPress in a different directory than the one it is installed. However, for most people, it is simpler to just install WordPress in the same location it is being displayed. This is usually the root of your domain or in a sub-directory such as blog.

2.Not Using Permalinks

Out of the box, the default permalink structure for WordPress is /?p=<postid>. This displays URLs such as rather than the more

Many beginners do not change this default permalink structure to a more user-friendly option that uses keywords. This is sometimes referred to as using “Clean URLs“.


I use post name (/%postname%/) on most of my websites as it keeps links short and allows me to insert keywords into the URL (to do this, simply change the post slug in the post editor). News blogs that publish dozens of articles per day tend to use day and post name (/%year%/%monthnum%/%day%/%postname%/) to avoid any problems with duplicate post slugs. Category and post name (/%category%/%postname%/) is another popular option.

In the past, /%postname%/ was known for having an adverse effect on website performance. Thankfully, this issue was resolved in WordPress 3.3. Therefore, from a performance point of view and from an SEO point of view, there does not seem to be any real significance as to which user-friendly permalink structure you choose.

To change permalinks through the WordPress admin area, your .htaccess file has to be writable. To do this, WordPress recommends that you change the file permissions of .htaccess to 644.

If you do not have permission to update .htaccess through the admin area, WordPress will give you the code for your chosen permalink structure so that you update the .htaccess file manually. You can then manually update the .htaccess file via your hosting account file manager or using a File Transfer Protocol (FTP) client.

3.Publishing Incomplete Pages

Nothing screams out “NEWBIE” more than a website that has incomplete pages. Beginners frequently launch their website before it is ready. Due to this, visitors click on a navigation link and are welcomed with incomplete pages with messages such as “Coming Soon” or “To Be Updated”.

As a rule, you should never link to any page that is not complete. Doing so will alienate visitors and give the impression that you are not taking your website seriously.

My advice is wait until your website is complete before you launch it. Whilst building your website, you can use a maintenance mode plugin such as Anticipate to keep interested parties informed of your launch date.

4.Installing Unnecessary Plugins

Plugins that are not being used should be deactivated and uninstalled if you do not plan on using them again.

Beginner WordPress users do not adhere to this mindset. They install plugins and do not deactivate them. It is not uncommon for a new WordPress user to install dozens of plugins; even if he is only using a few. This slows down their website and increases the resources required to run their website.

I encourage you to only use plugins that are important to your website’s success. Do not fall into the trap of installing dozens of widgets you are not using and statistical plugins that you are not checking every day. All this does is make your website slower.

5.Not Keeping WordPress Up to Date

It is important to keep WordPress, and any themes and plugins you are using, up to date. Failure to do this will increase the chance of your website being hacked and make it difficult for you to use any new WordPress products.

WordPress are aware of the problems associated with using older versions of WordPress. Which is why the release of WordPress 3.7 in October 2013 included a fantastic new auto-update feature. This allows important maintenance and security updates to be applied to your website as you sleep.

By default, updates to the WordPress core will be applied automatically if you are using WordPress 3.7 or higher.

Plugin and theme updates are not enabled by default. In order to activate automatic plugin updates on your website, you need to add the following code to your wp-config.php file:

add_filter( ‘auto_update_plugin’, ‘__return_true’ );

To activate automatic theme updates, simply add the code below to your wp-config.php file:

add_filter( ‘auto_update_theme’, ‘__return_true’ );

If you are using a version of WordPress that is older than 3.7, I encourage you todownload the latest version from so that core updates are applied automatically in the future. This will ensure you never miss out on important updates in the future.

6.Not Using a Strong Password

Guessing a user’s username and password remain the number one way that unauthorised parties access WordPress websites. The situation has improved a little since WordPress stopped forcing WordPress users into using the username “admin” for the master account, however easy passwords are still the main way hackers break into websites.

When it comes to setting passwords, simple passwords are just not good enough. You need to something that a script cannot easily guess.


There are many great free services online that allows you to generate a strong password at the click of a button. One of my favourites is It allows you to select the password length and complexity.

You can also take advantage of password solutions such as Passpack and LastPassto store your strong passwords in a secure location.

7.Not Backing Up Regularly

New WordPress users (all new website owners for that matter) fail to recognise the importance of backing their website up regularly. This is a mistake they usually continue to make until their website is hacked and they lose a lot of data.


It is a shame that most people need to experience data loss in order to learn the importance of backing up, as backing up is so easy to do. Professional backup and restore services, such as VaultPress, are available for only $5 per month. There are lots of free solutions available too, such as the popular WordPress Backup to Dropboxplugin.