PurabTech is technical blog for Programmer and Coders
Author: Purab
I am Purab from India, Software development is my profession and teaching is my passion.
Programmers blog dedicated to the JAVA, Python, PHP, DevOps and Opensource Frameworks.
Purab's Github Repo
Youtube Chanel Video Tutorials
Connect to on LinkedIn
Here in wordpress tutorial, How to prevent wordpress images hotlinking but allow google. Steeling the blog images is very major issue in wordpress sites. Sometimes people are just linking the your site images in there site.You can read more about linking in above article.
prevent wordpress images hotlinking but allow google
Some sites are using your images and your bandwidth. If you are still want to use other images then use in your server and give credit to there owner sites.
prevent wordpress images hotlinking but allow google
Before every post visit wordpress cron is running and taking too much bandwidth. So we given trick and code to disable cron job in wordpress, which will disable wordpress cronjob. if you have a lot of visitors it can be a problem. I am convinced this is the reason why my admin has become glacially slow and my site often crashes when making edits.
how to disable cron job in wordpress
Disable the wp-cron.php
you need to add the code to your wp-config.php file.
define('DISABLE_WP_CRON', 'true');
If you have shared hosting then add the following cron job
php -q wp-cron.php
If you have your own server then you need to add the cronjob in crontab
Smiles and emoticons are always important show your expressions in short way. Earlier also I posted articles about same. Here is link about that. here in this article written about animated smileys. I given very detailed information to use animated smileys and emoticons in wordpress. animated smilyes and emotions are used everywhere now in mobile device.
use animated smileys and emoticons in wordpress
By default wordpress supports some basic emoticons. Here I can suggest some very cool wordpress plugins.
Kaskus Emoticons is an emoticon set inspired by Kaskus, the Largest Indonesian Community – consisting of over a million active members from all over the world. The images which are used in this plugin are copyright of Kaskus
Speedy Smilies takes emoticons in WordPress to the next level (where it should be already and hopefully one day will). The end goal is to make smilies load faster in the browser for visitors and make them easy to insert into posts/pages for authors. In addition to the speed benefits, Speedy Smilies allows authors to easily change the appearance of emoticons using smiley sets.
Speedy Smilies is free software licensed under the GNU GPL version 3.
Tango Smileys Extended
Tango Smileys Extended (TSE) disables the built-in WordPress smileys and extends the number of available smileys from 18 to 202. The extended smileys can be input using standard emoticon shorthand, or through the CTI (Click to Insert) interface. Smileys in comments is supported and may be inserted using the standard emoticon shorthand or through the CTI interface. MCEComments is also supported.
This version of Tango Smileys Extended is for WordPress 2.8+
WordPress versions pre-2.8 are no longer supported. If you are using WordPress 2.7.x, please use Tango Smileys Extended 2.5.4.1. WordPress 2.6.x and earlier are only supported in versions of Tango Smileys Extended older than, and including, 2.5.2.8.
This addon will add a button to your visual tinymce editor for posts/pages. Clicking the button will open a popup window with over 50 professionally animated .gif smiley’s.
You can insert these smiley’s into your post/page content areas. Simply click a smiley, and it is automatically inserted into your content area.
Replaces WordPress’ smileys (based on images) with font-based emoticons (see screenshots). Font-based emoticons have some advantages:
They have the same size as the surrounding text. No more distorting the heights of lines containing smileys/emoticons. They always fit the font size.
They have the same color as the surrounding text.
The following emoticons are supported:
:):-):smile:
:(:-(:sad:
;);-):wink:
:P:-P:razz:
-.--_-:sleep:
:thumbs::thumbsup:
:devil::twisted:
:o:-o:eek:
8O8o8-O8-o:shock: (No real icon for “shock” yet. Using “eek” instead.)
:coffee:
8)8-)B)B-):cool:
:/:-/
:beer:
:D:-D:grin:
x(x-(X(X-(:angry:
:x:-x:mad: (No real icon from “mad” yet. Using “angry” instead.)
O:)0:)o:)O:-)0:-)o:-):saint:
:'(:'-(:cry:
:shoot:
^^^_^:lol:
Notes: * Emoticons must be surrounded with spaces (or other white space characters); e.g. the emoticon in that:)smile won’t be replaced * Emoticons won’t be replaced in HTML tags nor in <pre> or <code> blocks.
wp-monalisa is the plugin that smiles at you like monalisa does. place the smilies of your choice in posts, pages or comments.
There are a lot plugins for smiley support out there and some of them are really useful. Most of them don’t work out of the box and this is what wp-monalisa tries to achieve, giving you the ability to maintain your smilies and even turn them into img tags.
it’s easy and it smiles at you…what else do you want?
Features:
maintain your smilies in a separate directory
activate or deactivate smilies for posts or comments
replace smilies with img tags
extend or replace wordpress smiley replacement
while edit posts or pages, pops-up in a draggable meta-box
extends your comment form to give you visitors the freedom to smile 🙂
support for fckeditor (tested with v3.3.1)
fully integrated ith BuddyPress
use animated smileys and emoticons in wordpress post
WordPress plugin contact form 7 is popular wordpress plugin which is download more than 11 million times. We written wordpress plugin Contact Form 7 review. This plugin which is download more than 11 million times. In every second wordpress site people used contact form 7 wp plugin. This plugin is very easy to install and easy to use.
Contact Form 7 can manage multiple contact forms, plus you can customize the form and the mail contents flexibly with simple mark-up. The form supports Ajax-powered submitting, CAPTCHA, Akismet spam filtering and so on.
Docs & Support
You can find docs, FAQ and more detailed information about Contact Form 7 oncontactform7.com. If you were unable to find the answer to your question on the FAQ or in any of the documentation, you should check the support forum on WordPress.org. If you can’t locate any topics that pertain to your particular issue, post a new topic for it.
Contact Form 7 Needs Your Support
It is hard to continue development and support for this free plugin without contributions from users like you. If you enjoy using Contact Form 7 and find it useful, please consider making a donation. Your donation will help encourage and support the plugin’s continued development and better user support.
Recommended Plugins
The following are other recommended plugins by the author of Contact Form 7.
Flamingo – With Flamingo, you can save submitted messages via contact forms in the database.
Really Simple CAPTCHA – Really Simple CAPTCHA is a simple CAPTCHA module which works well with Contact Form 7.
Bogo – Bogo is a straight-forward multilingual plugin that doesn’t cause headaches.
If you have created your own language pack, or have an update of an existing one, you can send gettext PO and MO files to me so that I can bundle it into Contact Form 7. You can download the latest POT file, and PO files in each language.
All wordpress sites use the social bookmarks for sharing there content. For adding social bookmark they always use the wordpress plugins.
But that plugins will add some mysql quries and apache requests to your server. I recommend not to use these plugins.
How to Add the social Bookmarks Icons in WordPress without using any plugins
Just follow my steps:
1. Open single.php file from your wordpress theme.
just do one think, please assign class=”social_icons” to div.
BulletProof Security and Better WP Security both wordpress plugins are used for wordpress security purpose. Both have some nice and unique features. There are wordpress hackers and they are looking to hack your wordpress sites. You should protect your wordpress sites.
BulletProof Security and Better WP Security both wordpress plugins are used for wordpress security. we explored BulletProof Security vs Better WP Security.
BulletProof Security vs Better WP Security
Better WP Security features:
Better WP Security takes the best WordPress security features and techniques and combines them in a single plugin thereby ensuring that as many security holes as possible are patched without having to worry about conflicting features or the possibility of missing anything on your site.
With one-click activation for most features as well as advanced features for experienced users Better WP Security can help protect any site.
BulletProof Security vs Better WP Security
Obscure
As most WordPress attacks are a result of plugin vulnerabilities, weak passwords, and obsolete software. Better WP Security will hide the places those vulnerabilities live keeping an attacker from learning too much about your site and keeping them away from sensitive areas like login, admin, etc.
Remove the meta “Generator” tag
Change the urls for WordPress dashboard including login, admin, and more
Completely turn off the ability to login for a given time period (away mode)
Remove theme, plugin, and core update notifications from users who do not have permission to update them
Remove Windows Live Write header information
Remove RSD header information
Rename “admin” account
Change the ID on the user with ID 1
Change the WordPress database table prefix
Change wp-content path
Removes login error messages
Display a random version number to non administrative users anywhere version is used
Protect
Just hiding parts of your site is helpful but won’t stop everything. After we hide sensitive areas of the sites we’ll protect it by blocking users that shouldn’t be there and increasing the security of passwords and other vital information.
Scan your site to instantly tell where vulnerabilities are and fix them in seconds
Ban troublesome bots and other hosts
Ban troublesome user agents
Prevent brute force attacks by banning hosts and users with too many invalid login attempts
Strengthen server security
Enforce strong passwords for all accounts of a configurable minimum role
Force SSL for admin pages (on supporting servers)
Force SSL for any page or post (on supporting servers)
Turn off file editing from within WordPress admin area
Detect and block numerous attacks to your filesystem and database
Detect
Should all the protection fail Better WP Security will still monitor your site and report attempts to scan it (automatically blocking suspicious users) as well as any changes to the filesystem that might indicate a compromise.
Detect bots and other attempts to search for vulnerabilities
Monitor filesystem for unauthorized changes
Recover
Finally, should the worst happen Better WP Security will make regular backups of your WordPress database (should you choose to do so) allowing you to get back online quickly in the event someone should compromise your site.
Create and email database backups on a customizable schedule
Other Benefits
Make it easier for users to log into a site by giving them login and admin URLs that make more sense to someone not accustomed to WordPress
Detect hidden 404 errors on your site that can affect your SEO such as bad links, missing images, etc.
Compatibility
Works on multi-site (network) and single site installations
Works with Apache, LiteSpeed or NGINX (NGINX will require you to manually edit your virtual host configuration)
Some features can be problematic if you don’t have enough RAM to support them. All my testing servers allocate 128MB to WordPress and usually don’t have any other plugins installed. I have seen issues with file check and database backups failing on servers with 64MB or less of RAM, particularly if there are many other plugins being used.
Please let us know if you would like to contribute a translation.
Warning
Please read the installation instructions and FAQ before installing this plugin. It makes some significant changes to your database and other site files which, without a proper backup, can cause problems if something goes wrong. While problems are rare, most (not all) support requests I get for this plugin involve the users failure to make a proper backup before installing.
BulletProof Security features:
htaccess Core Website Security
WordPress Website Security Protection: BulletProof Security protects your WordPress website against XSS, RFI, CRLF, CSRF, Base64, Code Injection and SQL Injection hacking attempts. One-click .htaccess WordPress security protection. Protects wp-config.php, bb-config.php, php.ini, php5.ini, install.php and readme.html with .htaccess security protection. Security Logging. HTTP Error Logging. One-click Website Maintenance Mode (HTTP 503). Additional website security checks: DB errors off, file and folder permissions check… System Info: PHP, MySQL, OS, Server, Memory Usage, IP, SAPI, DNS, Max Upload… Built-in .htaccess file editing, uploading and downloading.
Login Security & Monitoring Website Security
Login Security & Login Monitoring: Log All User Account Logins or Log Only User Account Lockouts (see Screenshot). Email alerting options allow you to choose 5 different email alerting options: Choose to have email alerts sent when a User Account is locked out, An Administrator Logs in, An Administrator Logs in and when a User Account is locked out, Any User logs in when a User Account is locked out or Do Not Send Email Alerts. See BulletProof Security Login Security & Monitoring Features for additional features and options.
Why is .htaccess Website Security So Much Better Than Any Other Type of Website Security?
The answer is very simple – .htaccess files (distributed configuration files) are processed first before any other code on your website. In other words, hackers malicious scripts are stopped by BulletProof Security .htaccess files before those scripts even have a chance to reach the php coding in WordPress. BulletProof Security uses .htaccess website security files, which are specific to Apache Linux Servers. Please read the FAQ page for Server compatibility questions.
BulletProof Security Fast and Simple with No Manual Configuration Required
The BulletProof Security WordPress Security plugin is designed to be a fast, simple and one click security plugin to add .htaccess website security protection for your WordPress website. Activate .htaccess website security and .htaccess website under maintenance modes from within your WordPress Dashboard – no FTP required. The BulletProof Security WordPress plugin is a one click security solution that creates, copies, renames, moves or writes to the provided BulletProof Security .htaccess master files. BulletProof Security protects both your Root website folder and wp-admin folder with .htaccess website security protection, as well as providing additional website security protection.
BulletProof Security allows you to add .htaccess website security protection from within the WordPress Dashboard so that you do not have to access your website via FTP or your Web Host Control Panel in order to add website security protection for your WordPress site. BulletProof Security Modes: Root .htaccess security protection, wp-admin .htaccess security protection, Deny All .htaccess self protection, WordPress default .htaccess mode and .htaccess Maintenance Mode (503 Website Under Maintenance). In BulletProof Security Mode your WordPress website is protected from XSS, RFI, CRLF, CSRF, Base64, Code Injection and SQL Injection hacking attempts.
BulletProof Security Maintenance Mode
BulletProof Security Maintenance Mode allows you to create your custom website under maintenance page within BulletProof Security and activate Maintenance Mode to put your website in maintenance mode. Maintenance Mode allows website developers or website owners to access and work on a website while a 503 Website Under Maintenance page is displayed to all other visitors to the website. Allow access to your WordPress Dashboard for only yourself or add additional IP addresses to allow mulitple IP addresses access to your WP Dashboard while in maintenance mode.
WordPress is already very secure, but every website, no matter what type of platform it is built on should have additional website security measures in place as a standard. BulletProof Security provides that additional website security protection that every website should have.
If you would like to translate the BPS plugin to your language see this BPS Plugin Language Translation Tutorial. Please include a link to your website so that we can add it here. Thank you.
Tip: If you use the Google Chrome Browser you can right mouse click in plugin pages and then click on Translate to… To translate plugin text into your Language.
BulletProof Security htaccess Core Features
One-click .htaccess website security protection from within the WP Dashboard
.htaccess security protection against XSS, RFI, CRLF, CSRF, Base64, Code Injection and SQL Injection hacking attempts
Help & FAQ page – links to BPS Guide and other detailed Help & Info pages
Extensive Read Me! jQuery Dialog Help buttons throughout the BulletProof Security plugin pages
Backup and Restore existing .htaccess files
Backup and Restore customized / modified .htaccess files
Add to, Edit, Modify the provided BulletProof Security .htaccess Master files
Create your own .htaccess Master files or code and use BulletProof Security as an .htaccess file manager
Website Developer Maintenance Mode (503 website open to Developer / Site Owner ONLY)
Log in / out of your website while in Maintenance Mode
Customizable 503 Website Under Maintenance page
HUD Success / Error message display
i18n Language Translation coding
BulletProof Security Login Security & Monitoring Features
Log All User Account Logins or Log Only User Account Lockouts
Logged DB Fields: User ID, Username, Display Name, Email, Role, Login Time, Lockout Expires, IP Address, Hostname, Request URI
Email Alerting Options: User Account is locked out, An Administrator Logs in, An Administrator Logs in and when a User Account is locked out, Any User logs in when a User Account is locked out, Do Not Send Email Alerts
Login Security Additional Options: Max Login Attempts, Automatic Lockout Time, Manual Lockout Time, Max DB Rows To Show, Turn On/Turn Off
Dynamic DB Form: Lock, Unlock, Delete
Enhanced Search: Allows you to search all of the Login Security database rows/Fields
Stand-alone Unlock Form bpsunlock.php: Unlock User Accounts without having to be logged into the WP Dashboard
Please click the Login Security Blue Read Me help button for full descriptions of all features and options.
BulletProof Security vs Better WP Security Conclusion: I used both the plugins for some time. I recommend to use the Better WP security plugin which 100% free and it has very great features.
For getting the wordpress posts we use the following methods. In every wordpress theme we always use the get_posts() vs WP_Query vs query_posts() methods for creating the wordpress theme. We should know about wordpress methods first.
get posts vs new wp_query in wordpress theme
query_posts() is overly simplistic and problematic way to modify main query of a page by replacing it with new instance of the query. It is inefficient (re-runs SQL queries) and will outright fail in some circumstances (especially often when dealing with posts pagination). Any modern WP code should use more reliable methods, like making use ofpre_get_posts hook, for this purpose. TL;DRdon’t use query_posts() ever;
get_posts() is very similar in usage and accepts same arguments (with some nuances, like different defaults), but returns array of posts, doesn’t modify global variables and is safe to use anywhere;
WP_Query class powers both behind the scenes, but you can also create and work with own object of it. Bit more complex, fewer restrictions, also safe to use anywhere.
As per my opinion you should use the WP_Query() method. This is secure to use. If you have a choice, go with WP_Query. Both of the other functions (query_posts() andget_posts()) call WP_Query indirectly.
Here in this article we written my review hosting provider for my wordpress blogs. Eight year before I started blogging using wordpress CMS. Review about all hosting providers which we used. At starting I used some nice hosting services.
my review hosting provider for my wordpress blogs
I took experience of many shared hosting services and wasted my time and money.
I taken domain from one.com at the starting. They were very cheap and nice service providers. They offered my domain with free hosting. I used their service for 4-5 months at starting. But when my site traffic was increased I faced slowness.
Then I moved to domain to godaddy. Then I taken hosting from hostso.com. That was really worst experience of my life. They always took down my site. I contacted their support, Answer I got “Your site is taking too much bandwidth and other sites which is on same server that was effecting so we are taking down your site. That time my site views are only 1k or 2k per day. After some time They asked me to remove your site. Even they did not give my money back.
Then I took hosting from hostgator.com, I faced similier type of issue with hostgator.com They also taking my site very often. Then finally I was very serious about site and hosting providers after completing the only six month of my blogging with wordpress site.
Finally I took bluehost.com hosting service. I was with them, for next 7 months. Till seven month bluehost was really nice but after six month they send me an email saying “There is file limit and bandwidth limit with our server. You need to remove your files from server.”
my review hosting provider for my wordpress blogs
Bluehost is not unlimited!
Bluehost at some point has a file limit. I’m thinking it is 100,000 files
You can read this:
http://www.bluehostforum.com/archive/index.php/t-15628.html
Finally I moved my site to VPS. Because I realized there is no shared hosting provider which gives an unlimited hosting. Only VPS or dedicated server was the option for me.
So from last three years I was running my site on VPS.
We always found news about wordpress new release and updates. But few reasons some people does not update there wordpress sites.
There should be some may be issues with there plugins. WordPress tutorial for, Update version before wordpress hacked by hacker. Might be there plugins are not supporting the newer wordpress update or version.
Update version before wordpress hacked by hacker
Theme Issue
Some people will thought about theme. Their theme code will break and Site will go down due to errors.
Cost
Sometimes due to unknown issues Wrodpress up-gradation will be costly if you included the some paid plugins and themes then updating will cost you.
You need to hire wordpress developer for fixing those issues which will happen after wordpress updating.
You can choose the following options for updating the wordpress version:
Hire plugins developer and ask him to fix it.
Hire WordPress developer and pay him to fix it.
Remove plugin and start using another plugin But consult with developers.
WordPress Updation is very important.
WordPress updates are often issued for the purposes of fixing potential security issues.
recently noted that if you do not update your self-hosted WordPress software frequently, you are just about guaranteed to get hacked at some point.
I recommend to update the wordpress version and plugins because hacker will hack your site. Do not miss the security updates from wordpress.
In every second wordpress sites we used the slider or slideshow. Sliders are very important in wordpress sites. There are many requirements about different types of sliders. Here I collected some very popular jquery wordpress slider plugins. Slider plugins are required in very second wordpress websites. I tested the following wordpress plugins and it found great features..
This is a highly customizable jQuery Slider plugin. You can set its width, height, pagination and other parameters. You can use it on your post or page using schortcode
The ‘JJ NextGen JQuery Slider’ allows you to create a ‘Nivo slider’ (http://nivo.dev7studios.com/) as a widget or as a shortcode. This plugin uses the ‘NextGen Gallery’ plugin for its images.
Promotion slider is a jQuery slider that makes it easy to insert a simple slideshow, or implement multiple rotating ad zones, on a webpage. Because it is highly-customizable, you are in complete control of what shows on the slider, what shows on your promotion pages and how it all works. A simple options page and straight-forward shortcodes provide great flexibility to the average user, while power users can take advantage of special actions and filters built into the plugin to add their own customizations.
WP Orbit Slider is based around the jQuery Orbit Slider from the excellent team Zurb. It uses a custom post type for each slide and taxonomies to create slider groups. The restriction is one slider per post/page. Dont fill your pages with sliders. Use one. Make it bold and get your message across!
The Simple Nivo Slider plugin provides easy access to Gilbert Pellegrom’s excellent jQuery-based Nivo Slider. The admin panel makes it easy to tweak the most commonly used Nivo Slider options from within WordPress.
Cyclone Slider 2 follows the keep it simple mantra. It leverages WordPress’ built-in features. It uses custom post for the slideshow, custom fields to store settings, and media uploader for the images. It also uses a template system that allows developers to easily customize the slideshow to their needs. Its simple yet flexible.
Features:
Very easy to use interface! Blends seamlessly with your WordPress workflow.
Supports image, video, and custom HTML slides.
Powered by Cycle 2, the most flexible jQuery slideshow plugin.
A template system that allows developers to easily customize the slideshows.
Customizable tile transition effects.
Ability to add per-slide transition effects.
Unlimited slideshows.
Unique settings for each slideshow.
Supports random slide order.
Shortcode for displaying slideshows anywhere in your site.
Ability to import images from NextGEN (NextGEN must be installed and active).
Ability to use qTranslate quick tags for slide title and descriptions (qTranslate must be installed and active).
Allows title and alt to be specified for each slide images.
Comes with a widget to display your slideshow easily in widget areas.
