ShieldPRO Moving To PHP 7.0+

April 20, 2020 by Paul G. | Blog, Features, Shield Pro, Updates

[2022-11-1] Update: As of Shield v17 we’re dropping support for PHP 7.0 and 7.1. In order to run Shield v17, your web hosting will need to run at least PHP 7.2+

Some time ago we made the decision to increase our minimum-supported PHP version from PHP 5.2 to PHP 5.4.

Since that time WordPress themeselves have also increased their minimum PHP version to 5.6, and have already discussed moving towards PHP 7.0.

We’re taking the decision that it’s time to move ShieldPRO to PHP 7.0. This quick post is to give some explanation around this, and also to communicate our time frame and what you can expect.

Why We’re Moving To PHP 7.0

As it stands today, even PHP 7.0 is already an unsupported version. In-fact, any website running PHP less than 7.3 is unsupported!

What does “unsupported” mean exactly?

It means that websites running PHP where the version doesn’t begin with 7.3 or 7.4…

don’t receive PHP updates or bug fixes.
don’t receive security patches
(except 7.2, but this also ends in November 2020)

Many websites still run a variant of PHP 5… where 5.6 hasn’t received any fixes since 2017 (except for a few security patches at the end of 2018).

So if you take the security and stability of your WordPress sites seriously, keeping your PHP system up-to-date and patched, should be a priority.

We’re talking about moving to PHP 7.0 which is, as we mentioned, unsupported. The reason we’re not pushing all the way to PHP 7.3 or 7.4 is because we want to strike a balance between forward progress, and compability with as many client sites as possible.

Advantages Of Moving To PHP 7

In much the same way as moving ShieldPRO to PHP 5.4 brought us some massive advantages, there are also huge benefits to moving to PHP 7.0.

Developing a large application like ShieldPRO is a complex and time-consuming job. But it’s a challenge we enjoy and we thrive on.

However, developing code so that it will work on as many versions of PHP as possible adds a layer of complexity that we really don’t enjoy. Not only that, it introduces greater propensity for errors.

We’re careful not to introduce new PHP 7.0-only code into our application as this will break websites running PHP 5. Our development environment is setup so as to catch many of these errors, but regardless, it can and does happen from time to time.

Moving to PHP-7 will free us up in 2 massive areas:

we’ll be less likely to release code with errors relating to incompatible PHP code; and
we’ll have the freedom to take advantage of newer code that is only available with PHP 7+ and which itself reduces the likelihood of errors.

When Will We Move To PHP 7.0+?

We’re giving as much advance notice of this move as possible. ShieldPRO 9.x will be the last major release to support PHP 5.

That is, with ShieldPRO 10.0, we’ll no longer support PHP 5.4, 5.5, or 5.6. In order to install/run this version of ShieldPRO, you’ll need to upgrade your PHP hosting.

We don’t have a release date for ShieldPRO 10, but it’ll likely be around 2-3 months after ShieldPRO 9.0, which is due out in late April 2020.

What If Your Site Runs PHP 5?

If you want to continue to run ShieldPRO from v10.0, you’ll need to upgrade your PHP version. All major webhosts, even the terrible ones, should offer the option of moving to PHP 7.0.

Not only will your site benefit from the improved codebase and security that comes with PHP 7.0, you’ll immediately give your WordPress site a huge speed boost.

WordPress performance by PHP version. Source: CloudWays

From the chart above, you see PHP 5.6 lagging far behind on the far-left.
PHP 7.3, in the benchmarks they ran, could handle over 4x as many requests per second as PHP 5.6.

So if you’re spending time optimising this, that, and the other, and running into page caching problems and other issues, you can quickly give your WordPress site a huge performance boost just by upgrading your PHP version.

Question or Comments?

We understand this isn’t a trivial thing to take on board for some clients, which is why we’re trying to give as much advance-notice about this as possible.

If you have any questions or concerns about this, please let us know in the comments below and we’ll do our best to address them and take them on-board.

Hello dear reader!

If you want to level-up your WordPress security with ShieldPRO, click to get started today. (risk-free, with our no-quibble 14-day satisfaction promise!)

You'll get all PRO features, including AI Malware Scanning, WP Config File Protection, Plugin and Theme File Guard, import/export, exclusive customer support, and much, much more.

We'd be honoured to have you as a member, and look forward to serving you during your journey towards powerful, WordPress security.

Try ShieldPRO Today →

ShieldPRO Testimonials

@infogurushop

Shield Security is 100% PRO

Shield Security os 100% PRO for professional. They have the best product and support with TOP SECURITY I have seen on the web/Internet for any website in 10 years. 1. YOU WON’T GET HUNDREDS OF INBOX EMAILS SAYING INVALID ADMIN LOGIN – FILLING UP YOUR EMAIL ACCOUNT LIKE OTHER TOP…

@blphoto2

Has some great features

WordPress sites seem to be the target of more attempts to log into the admin. I liked many of these features to keep the site secure.

@tosc

Amazing plugin

I only use this plugin to protect my site for more than one month now, and I am so happy with it. The developer is really responsive and gave me tips and clear explanations. This plugin really deserves more than 5 stars. Thanks for your amazing work!

@lraccajr

Exactly what I needed.

I have using Simple Security Firewall for the last several months since some of our company sites were getting attacked. Since I installed this plugin and made a few adjustments for my needs on the sites. I have not had a problem at all. Simple Security Firewall is easy to…

Comments (2)

Robert Pacheco

August 6, 2020 8:56 pm

Hello ShieldPro,
I have taken over the operations in our BCRCC -Bristol County RC Model Club. It was dropped in my lap. I now how to move around on the web, but I am not a webmaster as I know very little about web operations. All I do is manage the PHPbb forum as best I can. I have WordPress and know even less how to use that. I have figured out how to post monthly events. I am afraid to change the formats and photos as I may crash it. I had a hell of a time with bad people trying to enter my website Forums. I finally closed the enrollment. We are a private non profit org. The site is for our members and special friends only. I am very afraid to upgrade to the vers 7.0 PHP. If something happens we are screwed. We have not 1 person that would know what to do with a club web crash or change in any of the codes. If it crashed I doubt it could be returned to operating again.
Thanks
Bob Pacheco

Paul G.

August 7, 2020 2:07 pm

Hi Bob,

Thanks for your message! I completely understand your concern about moving the site to PHP 7.0. If you’re unsure of what’s involved, it can seem quite daunting.

If you’re not able to do this, it might be worth seeking out a professional to help you get the site upgraded to PHP 7.0+ in a reliable way. Perhaps you can find someone in your network with the expertise to get it there and then leave you to continue your efforts.

Or, you can try it yourself and see how you get on. Here is what I would advise if you want to look at doing this:
1) ensure you have a solid backup system in place. This should be a must in any case. So that if something happens and you need to restore the site because something broke, you can also do it. Before anything else, investigate and put in place some sort of backup / disaster recovery.

2) Most webhosts will now allow you to change your PHP version on your site simply by adjusting the settings on your web hosting. cPanel now offers this as-standard so perhaps give your web host a call and discuss the options.

What this means is that you can change your site’s PHP version without change any code. Then test your site. If it’s working when you switch your PHP version, then fantastic. If not, you can simply switch it back. As always, check with your webhost what options you have available.

Thanks for your comment and hope you’re able to make some progress with these.
Paul.

ESSENTIAL WORDPRESS SECURITY NEWS

Get ShieldNOTES, our excellent weekly WordPress security newsletter!