All wordpress sites use the social bookmarks for sharing there content. For adding social bookmark they always use the wordpress plugins.
But that plugins will add some mysql quries and apache requests to your server. I recommend not to use these plugins.
How to Add the social Bookmarks Icons in WordPress without using any plugins
Just follow my steps:
1. Open single.php file from your wordpress theme.
just do one think, please assign class=”social_icons” to div.
BulletProof Security and Better WP Security both wordpress plugins are used for wordpress security purpose. Both have some nice and unique features. There are wordpress hackers and they are looking to hack your wordpress sites. You should protect your wordpress sites.
BulletProof Security and Better WP Security both wordpress plugins are used for wordpress security. we explored BulletProof Security vs Better WP Security.
BulletProof Security vs Better WP Security
Better WP Security features:
Better WP Security takes the best WordPress security features and techniques and combines them in a single plugin thereby ensuring that as many security holes as possible are patched without having to worry about conflicting features or the possibility of missing anything on your site.
With one-click activation for most features as well as advanced features for experienced users Better WP Security can help protect any site.
BulletProof Security vs Better WP Security
Obscure
As most WordPress attacks are a result of plugin vulnerabilities, weak passwords, and obsolete software. Better WP Security will hide the places those vulnerabilities live keeping an attacker from learning too much about your site and keeping them away from sensitive areas like login, admin, etc.
Remove the meta “Generator” tag
Change the urls for WordPress dashboard including login, admin, and more
Completely turn off the ability to login for a given time period (away mode)
Remove theme, plugin, and core update notifications from users who do not have permission to update them
Remove Windows Live Write header information
Remove RSD header information
Rename “admin” account
Change the ID on the user with ID 1
Change the WordPress database table prefix
Change wp-content path
Removes login error messages
Display a random version number to non administrative users anywhere version is used
Protect
Just hiding parts of your site is helpful but won’t stop everything. After we hide sensitive areas of the sites we’ll protect it by blocking users that shouldn’t be there and increasing the security of passwords and other vital information.
Scan your site to instantly tell where vulnerabilities are and fix them in seconds
Ban troublesome bots and other hosts
Ban troublesome user agents
Prevent brute force attacks by banning hosts and users with too many invalid login attempts
Strengthen server security
Enforce strong passwords for all accounts of a configurable minimum role
Force SSL for admin pages (on supporting servers)
Force SSL for any page or post (on supporting servers)
Turn off file editing from within WordPress admin area
Detect and block numerous attacks to your filesystem and database
Detect
Should all the protection fail Better WP Security will still monitor your site and report attempts to scan it (automatically blocking suspicious users) as well as any changes to the filesystem that might indicate a compromise.
Detect bots and other attempts to search for vulnerabilities
Monitor filesystem for unauthorized changes
Recover
Finally, should the worst happen Better WP Security will make regular backups of your WordPress database (should you choose to do so) allowing you to get back online quickly in the event someone should compromise your site.
Create and email database backups on a customizable schedule
Other Benefits
Make it easier for users to log into a site by giving them login and admin URLs that make more sense to someone not accustomed to WordPress
Detect hidden 404 errors on your site that can affect your SEO such as bad links, missing images, etc.
Compatibility
Works on multi-site (network) and single site installations
Works with Apache, LiteSpeed or NGINX (NGINX will require you to manually edit your virtual host configuration)
Some features can be problematic if you don’t have enough RAM to support them. All my testing servers allocate 128MB to WordPress and usually don’t have any other plugins installed. I have seen issues with file check and database backups failing on servers with 64MB or less of RAM, particularly if there are many other plugins being used.
Please let us know if you would like to contribute a translation.
Warning
Please read the installation instructions and FAQ before installing this plugin. It makes some significant changes to your database and other site files which, without a proper backup, can cause problems if something goes wrong. While problems are rare, most (not all) support requests I get for this plugin involve the users failure to make a proper backup before installing.
BulletProof Security features:
htaccess Core Website Security
WordPress Website Security Protection: BulletProof Security protects your WordPress website against XSS, RFI, CRLF, CSRF, Base64, Code Injection and SQL Injection hacking attempts. One-click .htaccess WordPress security protection. Protects wp-config.php, bb-config.php, php.ini, php5.ini, install.php and readme.html with .htaccess security protection. Security Logging. HTTP Error Logging. One-click Website Maintenance Mode (HTTP 503). Additional website security checks: DB errors off, file and folder permissions check… System Info: PHP, MySQL, OS, Server, Memory Usage, IP, SAPI, DNS, Max Upload… Built-in .htaccess file editing, uploading and downloading.
Login Security & Monitoring Website Security
Login Security & Login Monitoring: Log All User Account Logins or Log Only User Account Lockouts (see Screenshot). Email alerting options allow you to choose 5 different email alerting options: Choose to have email alerts sent when a User Account is locked out, An Administrator Logs in, An Administrator Logs in and when a User Account is locked out, Any User logs in when a User Account is locked out or Do Not Send Email Alerts. See BulletProof Security Login Security & Monitoring Features for additional features and options.
Why is .htaccess Website Security So Much Better Than Any Other Type of Website Security?
The answer is very simple – .htaccess files (distributed configuration files) are processed first before any other code on your website. In other words, hackers malicious scripts are stopped by BulletProof Security .htaccess files before those scripts even have a chance to reach the php coding in WordPress. BulletProof Security uses .htaccess website security files, which are specific to Apache Linux Servers. Please read the FAQ page for Server compatibility questions.
BulletProof Security Fast and Simple with No Manual Configuration Required
The BulletProof Security WordPress Security plugin is designed to be a fast, simple and one click security plugin to add .htaccess website security protection for your WordPress website. Activate .htaccess website security and .htaccess website under maintenance modes from within your WordPress Dashboard – no FTP required. The BulletProof Security WordPress plugin is a one click security solution that creates, copies, renames, moves or writes to the provided BulletProof Security .htaccess master files. BulletProof Security protects both your Root website folder and wp-admin folder with .htaccess website security protection, as well as providing additional website security protection.
BulletProof Security allows you to add .htaccess website security protection from within the WordPress Dashboard so that you do not have to access your website via FTP or your Web Host Control Panel in order to add website security protection for your WordPress site. BulletProof Security Modes: Root .htaccess security protection, wp-admin .htaccess security protection, Deny All .htaccess self protection, WordPress default .htaccess mode and .htaccess Maintenance Mode (503 Website Under Maintenance). In BulletProof Security Mode your WordPress website is protected from XSS, RFI, CRLF, CSRF, Base64, Code Injection and SQL Injection hacking attempts.
BulletProof Security Maintenance Mode
BulletProof Security Maintenance Mode allows you to create your custom website under maintenance page within BulletProof Security and activate Maintenance Mode to put your website in maintenance mode. Maintenance Mode allows website developers or website owners to access and work on a website while a 503 Website Under Maintenance page is displayed to all other visitors to the website. Allow access to your WordPress Dashboard for only yourself or add additional IP addresses to allow mulitple IP addresses access to your WP Dashboard while in maintenance mode.
WordPress is already very secure, but every website, no matter what type of platform it is built on should have additional website security measures in place as a standard. BulletProof Security provides that additional website security protection that every website should have.
If you would like to translate the BPS plugin to your language see this BPS Plugin Language Translation Tutorial. Please include a link to your website so that we can add it here. Thank you.
Tip: If you use the Google Chrome Browser you can right mouse click in plugin pages and then click on Translate to… To translate plugin text into your Language.
BulletProof Security htaccess Core Features
One-click .htaccess website security protection from within the WP Dashboard
.htaccess security protection against XSS, RFI, CRLF, CSRF, Base64, Code Injection and SQL Injection hacking attempts
Help & FAQ page – links to BPS Guide and other detailed Help & Info pages
Extensive Read Me! jQuery Dialog Help buttons throughout the BulletProof Security plugin pages
Backup and Restore existing .htaccess files
Backup and Restore customized / modified .htaccess files
Add to, Edit, Modify the provided BulletProof Security .htaccess Master files
Create your own .htaccess Master files or code and use BulletProof Security as an .htaccess file manager
Website Developer Maintenance Mode (503 website open to Developer / Site Owner ONLY)
Log in / out of your website while in Maintenance Mode
Customizable 503 Website Under Maintenance page
HUD Success / Error message display
i18n Language Translation coding
BulletProof Security Login Security & Monitoring Features
Log All User Account Logins or Log Only User Account Lockouts
Logged DB Fields: User ID, Username, Display Name, Email, Role, Login Time, Lockout Expires, IP Address, Hostname, Request URI
Email Alerting Options: User Account is locked out, An Administrator Logs in, An Administrator Logs in and when a User Account is locked out, Any User logs in when a User Account is locked out, Do Not Send Email Alerts
Login Security Additional Options: Max Login Attempts, Automatic Lockout Time, Manual Lockout Time, Max DB Rows To Show, Turn On/Turn Off
Dynamic DB Form: Lock, Unlock, Delete
Enhanced Search: Allows you to search all of the Login Security database rows/Fields
Stand-alone Unlock Form bpsunlock.php: Unlock User Accounts without having to be logged into the WP Dashboard
Please click the Login Security Blue Read Me help button for full descriptions of all features and options.
BulletProof Security vs Better WP Security Conclusion: I used both the plugins for some time. I recommend to use the Better WP security plugin which 100% free and it has very great features.
We always found news about wordpress new release and updates. But few reasons some people does not update there wordpress sites.
There should be some may be issues with there plugins. WordPress tutorial for, Update version before wordpress hacked by hacker. Might be there plugins are not supporting the newer wordpress update or version.
Update version before wordpress hacked by hacker
Theme Issue
Some people will thought about theme. Their theme code will break and Site will go down due to errors.
Cost
Sometimes due to unknown issues Wrodpress up-gradation will be costly if you included the some paid plugins and themes then updating will cost you.
You need to hire wordpress developer for fixing those issues which will happen after wordpress updating.
You can choose the following options for updating the wordpress version:
Hire plugins developer and ask him to fix it.
Hire WordPress developer and pay him to fix it.
Remove plugin and start using another plugin But consult with developers.
WordPress Updation is very important.
WordPress updates are often issued for the purposes of fixing potential security issues.
recently noted that if you do not update your self-hosted WordPress software frequently, you are just about guaranteed to get hacked at some point.
I recommend to update the wordpress version and plugins because hacker will hack your site. Do not miss the security updates from wordpress.
While running wordpress site, save Ram usage is always great idea and you can easily improve the site performance by simple wordpress theme tricks.
We mostly use the get_permalink(), get_the_title() methods in our wordpress theme. Do not pass the post ID as parameter.
if you’re doing a get_permalink or get_title() call with Post id, 8 out of 10 times you’ll need to more of that post than just the permalink, so this isn’t really a problem.
save Ram usage
Post object is actually already slightly faster than calling get_permalink with $post->ID (in get_post it then only sanitizes and adds to cache, it doesn’t fetch new data), but the real benefit comes when you add a variable called filter in the $post object, setting it to “sample”. Now you decide whether that post object is going to be cached or not and which variables it contains.
Pass the $Post object instead of Post ID.
Do not use the Custom fields. Your server need to fire extra custom quries on Mysql server.
If your are using $wpdb->get_results or new WP_Query( $args ) then add the order by.
How can we save Ram usages using some wordpress theme tricks
Recently one of my wordpress site is hacked which is on wordpress. There is something wrong happening on server. We fixed issue with some steps, we given full steps for fixing issue. Due to disk I/O notification and CPU usages notification email I got to know.
If wordpress site is hacked then how to fix issue
There is something wrong happening on server.
First thing I did which is checking the apache access logs and error logs. I was getting per second 100 request from some IP addresses.
I stoped apache server and I took my database and filesystem backup. Deleted my admin username and added new administrator with new username.
You should use the Better WP Security wordpress plugin. This is very useful plugin.
# BLOCK BAD IPS
<limit GET POST PUT>
Order Allow,Deny
Allow from all
# uncomment/edit/repeat next line to block IPs
# Deny from 123.456.789
Deny from 192.111.152.122
Deny from 192.111.144.233
Deny from 110.85.90.123
</limit>
If wordpress site is hacked then how to fix issue
But above code was still not helpful to me because disk I/O and apache process was taking time to sending the request to 403.
Then I blocked the IP Address on My Linux server using following commands.
iptables -A INPUT -s 192.111.144.789 -j DROP
iptables -A INPUT -s 192.111.152.122 -j DROP
iptables -A INPUT -s 192.119.144.123 -j DROP
WordPress news, wordpress 3.5 is Worst Update in release History. we have high traffic site. we updated our 3 of sites to 3.5 and sites goes down after wordpress update.
wordpress 3.5 is Worst Update in release History
I faced lots of issues due to this update. To figure out the issue I spent the hours.
After that I finalized to downgrade the wordpress version to 3.4.2
WordPress really did something messy in this release.
I downgraded my wordpress 3.5 to 3.4.2 wordpress release. Now my sites are stable.
I took help from following articles.
Some points are not mentioned in above article. Which is as follows:
Keep your wp-config.php, .htaccess and robots.txt file
Do not forget about sitemap.xml files.
wordpress 3.5 is Worst Update in Wordpess release History
WordPress has category feature, We can use the wordpress category for many purpose. Given plugins list to use category wise background images in wordpress.
Some time we want use category images for show the category content. Some time we want use the category wise background images in your website.
How to use category wise background images in wordpress
For category images you can use the some nice wordpress plugins.
WordPress tutorial, how to stop wordpress spam comments and increase SEO. Spam comments is really major issue. Spam comments will affect your site SEO.
You should delete the spam word comments from wordpress site.
how to stop wordpress spam comments and increase SEO
If you want to prevent spam comments wordpress. You can check more points and wordpress plugins which will be helpful for wordpress websites.
If you have approved spam comments already than you can use following SQL query to change some spam comments status.
Using following sql query you can unapprove spam comments which are already approved.
Update wp_comments set comment_approved=0 WHERE CHAR_LENGTH(comment_author_url)>35;
Update wp_comments set comment_approved=0 WHERE CHAR_LENGTH(comment_author)>30;
After this, you can again recheck the comments which might be spam.
For SEO of your site deleting spam word comments is good.
Here are some steps for protecting your wordpress site.
You may copy and paste the following list to the Comment Moderation box in your wp-admin/options-discussions.php page:
-online
4u
adipex
advicer
baccarrat
blackjack
bllogspot
booker
byob
car-rental-e-site
car-rentals-e-site
carisoprodol
casino
casinos
chatroom
cialis
coolcoolhu
coolhu
credit-card-debt
credit-report-4u
cwas
cyclen
cyclobenzaprine
dating-e-site
day-trading
debt-consolidation
debt-consolidation-consultant
discreetordering
duty-free
dutyfree
equityloans
fioricet
flowers-leading-site
freenet-shopping
freenet
gambling-
hair-loss
health-insurancedeals-4u
homeequityloans
homefinance
holdem
holdempoker
holdemsoftware
holdemtexasturbowilson
hotel-dealse-site
hotele-site
hotelse-site
incest
insurance-quotesdeals-4u
insurancedeals-4u
jrcreations
levitra
macinstruct
mortgage-4-u
mortgagequotes
online-gambling
onlinegambling-4u
ottawavalleyag
ownsthis
palm-texas-holdem-game
paxil
penis
pharmacy
phentermine
poker-chip
poze
pussy
rental-car-e-site
ringtones
roulette
shemale
shoes
slot-machine
texas-holdem
thorcarlson
top-site
top-e-site
tramadol
trim-spa
ultram
valeofglamorganconservatives
viagra
vioxx
xanax
zolus
There are some nice plugins also which is helpful for protecting your site from spam comments.
You should activate the Akismet wordpress plugin.
Akismet is quite possibly the best way in the world to protect your blog from comment and trackback spam. It keeps your site protected from spam even while you sleep.
You should check the following option from wordpress:
Before a comment appears: (Options)
Before a comment appears An administrator must always approve the comment
Comment author must have a previously approved comment
If you have many spam word comments in your site then you should use sql query for delete the spam comments.
DELETE FROM wp_comments WHERE comment_content LIKE '%<a%';
DELETE FROM wp_comments WHERE comment_author LIKE '%<a%';
DELETE FROM wp_comments WHERE comment_author_url LIKE '%health%';
You should replace the spam comments words in SQL query. Using above sql query you can delete the all spam word comments.
For SEO purpose following options are very important.
how to stop wordpress spam comments and increase SEO
There are people who are struggling for showing PDF file in there wordpress post. Please use following steps for show pdf in post wordpress.
show pdf in post wordpress
1) Go to media -> Add New, upload a file. Once file is uploaded, you will get File URL. Copy that file URL. (Let me call it MY_PDF_URL)
This will be a complete URL, with http://yourdomain.com in it..
2) Now, go to add new post and switch to html editor. Place this code where you want to show the pdf file….
[viral-lock message=”Solution code is Hidden! It’s Visible for Users who Liked/Shared This article on Facebook or Twitter or Google+. Like or Tweet this article to reveal the content.”]
<embed src="MY_PDF_URL" width="600" height="400">
This will work smoothly. OR you can use following code as well.
GroupDocs Annotation lets you embed several types of files into your WordPress pages using the GroupDocs Viewer – allowing inline viewing and annotation of the following file types, with no Flash or PDF browser plug-ins required:
Adobe Acrobat (PDF)
Microsoft Word (DOC/DOCX)
Microsoft Excel (XLS/XLSX)
Microsoft PowerPoint (PPT/PPTX)
GroupDocs Annotation lets you view and comment on documents online. Its document annotation features makes it a powerful tool for collaboration. You and your colleagues can collaborate on a document, at the same time, to improve communication and speed up document reviews. GroupDocs Annotation lets you work with text-based documents as well as images. You can collaborate on layouts, drawings and designs just as effectively as on articles, stories and corporate documents. In short GroupDocs Annotation lets you annotate on many file formats including PDF’s, Word documents, Excel documents, Powerpoint documents and many other available formats.
WordPress tutorial, wordpress WP_Query vs query_posts vs get_posts. There are three ways for fetching data(posts) from wordpress. query_posts more often than others. But I prefer to use WP_Query(). WP_Query is object base more secure then others.
wordpress WP_Query vs query_posts vs get_posts
wordpress WP_Query vs query_posts vs get_posts
query_posts() is overly simplistic and problematic way to to modify main query of page by replacing it with new instance of the query. It is inefficient (re-runs SQL queries) and will outright fail in some circumstances (especially often when dealing with pagination). Any modern WP code should use more reliable methods, like making use ofpre_get_posts hook, for this purpose. TL;DR don’t use query_posts() ever;
get_posts() is very similar in usage and accepts same arguments (with some nuances, like different defaults), but returns array of posts, doesn’t modify global variables and is safe to use anywhere;
WP_Query class powers both behind the scenes, but you can also create and work with own object of it. Bit more complex, less restrictions, also safe to use anywhere.
The basic difference is that query_posts() is really only for modifying the current Loop. Once you’re done it’s necessary to reset the loop and send it on its merry way. This method is also a little easier to understand, simply because your “query” is basically a URL string that you pass to the function, like so:
query_posts(‘meta_key=color&meta_value=blue’);
On the other hand, wp_query is more of a general purpose tool, and is more like directly writing MySQL queries than query_posts() is. You can also use it anywhere (not just in the Loop) and it doesn’t interfere with any currently running post queries.
