Splash of Style...Macs, Photography, Design, and other Passions

WordPress.tv

January 20, 2009 by debbie T | WordPress

Check out wordpress.tv – interesting!

WordPress 2.7 RC1 – LOVE IT!

December 2, 2008 by debbie T | WordPress

The RC1 (release candidate #1) for WordPress 2.7 was released yesterday. Since it sounded like a fairly stable release, I installed.

Boy, is this an amazing upgrade! I LOVE IT!

Just last week, I was wanting batch editing, and voila! It’s here. I think that might be my favorite new feature. oh and I adore the “quick edit” too. hmm, that could be my favorite as well.

There’s a list of new features (and poll to vote for your fave) on the WordPress blog
http://wordpress.org/development/2008/11/whats-your-favorite-thing-about-the-27-beta/

I really love this new release!!! whooo hoooo!

Edit: found this new cool feature in the Discussion (Other Comments) Settings:
wordpress-new-comments

And I wonder what the threaded comments are about. I wonder if that means you can reply to a specific comment author. I enabled it, and checked back here to see if there were changes. I don’t see anything. I will keep it disabled for now, and take a peek over at wordpress.com to find more answers.

Using Screensteps With WordPress

September 23, 2008 by debbie T | Mac SoftwareWordPress

For the past couple of days, I have been working with the trial for a cool lesson/tutorial building app called Screensteps. I am hoping that it will allow me to write tutorials much faster and easier.

It’s been a lot of trial and error, and lots of experimentation, but I am starting to really love this app.

This article really won’t interest anyone unless you are using Screensteps with WordPress, but I figured I would post it, just in case there were a few people out there that might be having the same problem I was having.

It wasn’t all love at first sight though, because I couldn’t figure out how to fix the annoyance of having multiple uploads of each image file.

The original image files were uploaded, and those were the files referenced in my blog article/lesson. But then there were extra files resized to 150 and 300 pixels. I tried removing the setting for maximum width in my template file. And I tried making sure that all images were not resized in my Screensteps lesson, keeping it at 100%. Nothing worked.

Then I realized. Wait, what about my WordPress blog settings? That was it! Hurray!

WordPress Miscellaneous Setting

wordpress-miscellaneous-setting-1.png

In WordPress Admin, click the "Settings" tab, then "Miscellaneous"

WordPress Image Size Setting

wordpress-image-size-setting.png

Since I don’t normally use files larger than 500 pixels wide and I don’t normally use thumbnail or medium images, I figured it was safe to change both settings to 500. Now when I export my Screensteps lesson, only one of each image file is uploaded. Just what I wanted!

Check out Screensteps Yourself

If you are someone who loves creating tutorials or lessons, then you might be interested in Screensteps, Check out the 30 day trial and make sure to watch the Quick Intro (Long) screencast – and if you are interested in a purchase discount code, check out the Nosillacast podcast. She has a discount coupon code over on her web site sidebar. While you are there, take a listen to one of her shows. It’s the one podcast that I need to listen to every week. She is my favorite! In fact, I first learned about Screensteps from her show.

DNS Poisoning & How To Protect Yourself

August 7, 2008 by debbie T | ComputersInternetMac CornerWeb DesignWeb DevelopmentWirelessWordPress
UPDATE: I will be updating this article very shortly. I have new info on how to change the DNS settings for dialup as well as wired users. I will be adding a few screen shots and step by step instructions.

Now I am not one to panic about malware on the web. I have always prided myself on smart & safe browsing. But when I first heard about the new DNS Poisoning problem on the Nosillacast podcast a couple of weeks ago, it scared me. This could be a problem affecting everyone, no matter what safety precautions they take while surfing the Internet.

The subject is so complicated, and I won’t pretend to understand it fully, but I think I understand it enough to explain the situation to my family and friends, which is what I am trying to do with this blog article.

Okay, bottom line is there is a type of flaw that can be exploited by the bad guys, which enables them hijack vulnerable unpatched systems at your Internet Service Provider (Comcast for example) and change the path of traffic to their own web pages. So, if you are trying to go to amazon.com, your browser address bar will display “http://www.amazon.com” but you might be redirected to the hijacker’s site who has created a web site that looks very similar to Amazon. From there, it could be possible to install malware to your computer or to trick you into giving your personal info like credit cards or passwords.

This vulnerability can also affect your email, which is even scarier. A bad guy could intercept your email message(s) and insert a malware attachment or web site link. And you wouldn’t even know it was happening.

Are you vulnerable?

The Security Now podcast lists several links to sites that will “test” your site for the vulnerability:
http://www.grc.com/sn/notes-155.htm

I ran the test @ DoxPara and the following message appeared:
“Your ISP’s name server, xxxxx, has other protections above and beyond port randomization against the recently discovered DNS flaws. There is no reason to be concerned about the results seen below.”

I have heard that similar messages are appearing for other Comcast users. Since the information I am finding online concerning Comcast is vague and unclear, I am not 100% sure I trust Comcast to deal with this. So, I am taking matters into my own hands until I am sure.

I have read that other ISPs like Time Warner and AT&T have NOT patched, so there are still a lot of people out there that are in trouble!

Good News – Use Open DNS

The good news is, you can bypass your ISP’s DNS computers, and use another. Open DNS is a very secure and highly recommended DNS server that offers use of its servers for FREE! All you need to do is change a couple of settings in your router.

Not using a router? If your computer is attached directly to a high speed modem (ie DSL, Cable, satellite) then you are highly vulnerable to this flaw, as well as many other attacks.

Using a router keeps you safe behind a “hardware” firewall, and that firewall can thwart most attacks…so do yourself a favor and head to Staples, Walmart, Target, or Amazon and buy a Linksys, Netgear, or DLink router. It is an absolutely necessary tool in today’s times!

Change Your Router’s Settings

It is very easy to change your router settings to use Open DNS servers instead of your ISP’s.

Note: Don’t worry, you aren’t changing to a new Internet Service Provider, you will still be using the same ISP, it’s just the DNS computer information that you are changing.

There are detailed instructions on the Open DNS site, but I will walk through the instructions for changing a Linksys router.

First you need to access your router’s settings. Linksys router users can use this link: http://192.168.1.1/.

A password window will appear. The user name is “admin” and unless you previously changed the access password, the default password will be “admin”.

Important note: in the router settings, your password should be changed for extra security. To learn more about configuring your router for better security, please read my prior article.

Once you have logged into your router, you should be on the “Setup” page/tab.

Toward the bottom of the page, there is a setting called “Network Address
Server Settings (DHCP)”. Locate “Static DNS 1” and “Static DNS 2” and type in Open DNS’s server numbers, which are:

208.67.222.222 and 208.67.220.220

NOTE: If you have current DNS settings, then write them down just in case you need to revert back.

change dns servers on linksys router

Once the new DNS numbers have been entered, click the “Save Settings” button. And that is it!

Again, if you are not using a router, I cannot stress enough that you need to go out and buy one. They are usually about $50 and sometimes less. I recommend the Linksys WRT54G series routers, but DLink and Netgear also make good routers. Buy whichever is on sale that week; most will have detailed instructions explaining how to set security.

Okay, next, a word or two about Open DNS. Besides free use of their DNS servers, they also offer all sorts of parental controls and other security. I haven’t really delved into their offerings, but from what I gather, it’s all free. How can all this be free? Well to offset their costs, they have advertising revenues. Keep in mind, that whenever you type in a wrong address into your browser, Open DNS will take you to a custom search page, usually with your corrected web site URL on top.

For instance, if you type “ebay” instead of “ebay.com”, your browser will take you to a search page for “ebay”. Some have complained that this isn’t fair, wah wah wah…but who cares. They have to make money somehow. I don’t mind that they make a little on searches.

To learn more about Open DNS and all their offerings, check out the Typical Mac User podcast for a special 3 part series on all the details.

Personal Computer Patches

Besides your ISP computers, personal home computers, as well as business computers also need to be patched.

As far as I can tell, Microsoft issued a security patch a week or two ago, so make sure you are 100% up to date with all your Vista or XP critical patches.

As for Mac users, there was a patch issued, but it looks like it doesn’t fix everything, so when I am out from behind my router, I think I am still vulnerable if I connect to an open wifi spot. I am still a bit foggy on that issue, so more research is needed.

More Questions

Since I am still learning about this vulnerability, I still have additional questions that I haven’t found answers to.

For example, are cell phones that connect to the Internet still vulnerable? What about if you use a VPN (virtual private network)? What about web based email like gmail?

There is also a problem with routers being vulnerable too, but the issue isn’t as dire, because they would only be attacking your small network. Initially, I think routers will be okay, and the bigger networks like ISPs will be attacked first. I would like to find out more about the router issues, and whether firmware patches will be issued.

Hopefully I can find the answers online soon.

Helpful sites if you want to learn more about the DNS Flaw:

Back Up MySQL Database

March 28, 2008 by debbie T | Content ManagementLinux CornerWeb Development

For those that utilize a MySQL database, whether for a blog, discussion forum, photo page, etc. it is so important to make regular backups of the database(s). You never know when or if the database could be corrupted for any reason.

It is very easy to backup your database, so don’t be afraid! This article will cover a few simple backup (and restore) solutions.

Using Backup Wizard from Cpanel

Does your hosting provider offer Cpanel as part of your hosting plan?

If you have access to Cpanel, then you also should have access to the “Backup Wizard” – on the Cpanel main page, check the category “Files”. You should find the Backup Wizard there.

backup wizard

This is a very simple, straight-forward way to backup your entire web site, including all databases. If you just want to backup only your databases, then click the MySQL database link and choose the specific database to backup. Save each file to the folder on your hard drive where you plan to store your database backups.

There is also an option to restore your whole site or a particular database.

The Backup Wizard is probably the easiest way to backup your web files.

If you cannot find the Backup Wizard, or your host doesn’t offer cpanel as part of your hosting package, then contact them to find out what tools are available to you to backup your database(s).

Want to learn more? Read the Rest of the Article

Very Strange WordPress Error

February 6, 2008 by debbie T | WordPress

I just received a very strange WordPress error while trying to save my last article on iTunes.

I couldn’t save or publish the article, I would receive this error:

Precondition Failed
The precondition on the request for the URL /wp-admin/post.php evaluated to false.

I believe I narrowed it down to a specific sentence in my article that could be misunderstood as vicious code, I suppose.

I can’t even type in the sentence here because it causes the error when I save this article as well. So what I have done is break down the sentence into a list of words.

Isn’t that bizarre? It is the “deleting from Finder” that is causing the issue. I guess it is a safety precaution, and I do appreciate that, but it surprised me nonetheless.

WordPress Admin Page Not Found

September 20, 2007 by debbie T | WordPress

This issue popped up last month right after I updated my WordPress blogs to 2.2.2 – my public blog pages were loading perfectly, but when I tried to access any admin pages, I would receive the dreaded 404 error, with “Page Not Found”

It was bizarre because I getting the same error for all three of my WordPress blogs. I couldn’t find any help at the WordPress forums, so I contacted my host, trying to rule out a server problem.

While waiting for my help ticket to be answered, I checked my error logs and found this error message

“[2007-08-21 14:50:49]: error: directory is writable by others: (/home/xxxxx/public_html/xxxxx/wp-admin)”

On a hunch, I changed the directory permissions (for wp-admin) from 775 to 755, and voila, I now had access to my blog’s admin pages.

I posted an update to my help ticket, and found out that my host had been converting all the servers over to phpsuexec. Under phpsuexec, scripts all run as the user, and not the web server user “nobody” so permissions should not be any higher than 755.

Anyway, today I experienced the same problem accessing the admin after upgrading to WordPress 2.2.3, so I figured I best write an article about it, so I remember what to do if it keeps happening. I usually delete all necessary directories and files before uploading the new ones, so by default that directory must receive permissions of 775.

Hope it helps someone else if they are experiencing the same issues!

My TextPattern Blog is No More

July 2, 2007 by debbie T | TextpatternWordPress

Today, I completely removed my TextPattern blog. I really wasn’t using the blog for anything special, and since I am so rusty with TextPattern, I figured it was time.

I love using Paparazzi though. I made complete web screenshots of all the pages, then backed up the database and files. Someday I might like to try TextPattern again, but I am just really loving WordPress.

I am used to upgrading the WordPress software. Since I have three WordPress blogs, I get lots of practice!

Blogging from Dashboard

June 28, 2007 by debbie T | Mac SoftwareWordPress

I have never been a fan of Dashboard Widgets; I used Konfabulator on my old PowerBook.

With the new MacBook Pro, I decided to try new things, so Dashboard is getting a trial run.

I downloaded the WordPressDash widget, and here I am posting from my Dashboard. Cool.

Notes: The category menu is a bit awkward, since there doesn’t seem to be any particular order of the categories. And the font used in the text box is a bit small for my eyes. I don’t like that there is no spellcheck, but heck, for a quick post, it’ll do in a pinch!

Update: After publishing this post, I noticed the post categories (I chose “wordpress” and “mac software”) were completely different. Somehow it posted to “CSS” and “Ramblings” – I think I will just use it for drafts at this point.

WordPress Quicktag Buttons

June 9, 2007 by debbie T | WordPress

While searching for solutions for my WordPress/Firefox keyboard shortcut issue, I stumbled upon a terrific tutorial to customize the Quicktag menu bar. I have always wanted to add tags like <p> and <h3> to the menu, but couldn’t find the answer at WordPress.org.

This tutorial even discusses the option for adding a Quicktag button for &lt; to insert a < for easy code insertion into your posts.

http://www.tamba2.org.uk/wordpress/quicktags/

I will have to make time to read the other tutorials on this site. Looks like a real treasure.