You are currently browsing posts tagged “php”

WordPress Brute Force Attacks on non-WordPress Sites

December 1, 2017 // Posted in Computer Tips, General, Main, Tips and Tricks (Tags: , , , , , , , , , , , , , , , , , , , , , , , , , , ) |  No Comments

There are more and more would-be hackers out there that are trying to attack WordPress Sites via a brute force attack on the wp-login.php file that is used on worpress sites to log in to the site.

The problem is that they do not know what are WordPress Sites and what are not so they try connecting to a wp-login.php file on almost every site. This can lead to hundreds of attempts on your non-wordpress by these hackers trying to find a wp-login.php file on your server. Check your server log and you will see all these attempts.

Now if as many people as possible added a wp-login.php to their non-wordpress site re-directing any call to that page back to the IP address that attempted to find it, then these idiots would perform a DOS attack on their own PC,
and stop them sending any more requests.

Here’s how to do it:

Create a file called wp-login.php in your non-wordpress site’s root folder with the following text in it (Your server must be php enabled):

 

 

 

 

Let’s hit back at these idiots together.
Steve

Its All About Position!

January 9, 2014 // Posted in Main, Tips and Tricks (Tags: , , , , , , , , , , , , , , , , , , , , , , , , , , , , , ) |  No Comments

triplepivotPosition is important in many things in life, work, football, cricket and even sex.

If you are not in the right position something will go wrong!

It is the same with code on your pages, particularly with jquery and jquery-ui.

How many times have you added an additional jquery widget to one of your pages only to find something else that used to work, no longer does.

I get many requests for help for exactly the same issue and see many posts on forums with the same problems. When you look at the responses that others have given, you will often see complicated modifications to javascript libraries, or lots of additional code or changes to code that are supposed to fix the issues, such as jquery noConflicts and the like. In some cases these do fix the immediate problem, but involve quite a bit of work and some require a reasonable knowledge of javascript coding.

In almost all of the situations I have been asked to help with, however, I have found the solution to be much simpler, it’s about position and what is loaded and when.

Before entering into any complicated code changes here is something to try first, it won’t  require any modifications to code or re-writing javascript libraries and even those with little or no javascript knowledge can make the changes.

Let’s imagine you have a javascript gallery on your page, this will require a jquery library, some code in the head of your page and some in the body, when using WebPlus these will be added automatically by the program and will not be moveable as WebPlus controls their location.  You now add a third party javascript add-on that tells you to add some code to the head of your page and some to the body, they will also tell you to include a jquery library and perhaps a jquery-ui library. Well first of all forget adding the jquery library if WebPlus has already added it’s own, as if there is two on the same page that will in itself cause conflicts.

Secondly if the code you added to the head for your third party contains $ signs to call functions in jquery etc then you will more than likely find that something will not work after you add it, either your javascript gallery or your new add-on.

Before you get into complicated modifications here is a tip when your new add-on causes issues with your currently working javascript add-on :

Firstly forget the old addage of ‘You must add your scripts to the head of your page’, that’s a load of twoddle.

Move the code that you added for your new add-on to the body of your page, firstly just after the body tag (in WebPlus paste it over the !– Page Body Start — tag), so that all your new code is below your original add-on’s code.

If that doesn’t get both working move your new code to just before the body end tag, (In WebPlus paste it over the — Page Body End — tag).

In most cases the above will fix the issue and both your add-ins will work happily together.

Sometimes you may have more than two add-ins on a page and one or another stops working when the additional ones are added. Play around with the position of each script on the page  until you get the right combination, and you will fix most conflicts with positions. Don’t forget to also check for duplicate libraries, and make sure that the libraries are loaded before any scripts that call them come into play, It’s all about position again.

As I said at the start I have found that most problems with javascript conflicts can be fixed with position of the scripts, so you can save yourself a lot of work by playing with positions before anything else.

I hope that this helps someone.

Steve

 

 

 

 

 

Do you need an on-line booking and managment system for a hotel?

January 2, 2014 // Posted in General, Main (Tags: , , , , , , , , , , , , , , , , , , , , , , , ) |  No Comments

Are you looking for an online booking system for a hotel?

 

Then why not take a look at Hotel-iBooker for WebPlus. This is not just a template, it is a complete hotel management system built in a single web plus document.

The latest versions use PHP and MySQL and there is now a new PLUS+ version too.

Here are just some of the features:

  • Unlimited Number of Rooms
  • Unlimited Room Types
  • Unlimited Seasons
  • NEW!  Automatic Single Occupancy Surcharges/Discounts
  • NEW!  Add Unlimited number of Date and Time Stamped Notes to orders.
  • NEW! Improved database performance.
  • NEW! Ultimate easy set-up – Just a few clicks and you are ready to go in just 5 minutes.
  • NEW! Select auto rounding Up/Down/None on seasonal factor calculations.
  • NEW! Enhanced graphical room view.
  • NEW! Improved PayPal interface and gateway.
  • NEW! Easy quick one click switching from PayPal Sandbox to Live Status.
  • NEW! New ‘Q’ Status for PayPal Pending and Incomplete transactions.
  • NEW! Locally raised orders now have option to email payment link to customer when paid order automatically updated to book and paid status.
  • NEW! New Management Functions:
  1. Optimise Database.
  2. Back Up Database.
  3. Download Back Up.
  4. Delete Backup File.
  5. Delete All ‘Q’ Status records.
  6. Change Database Settings.
  7. And more….
  • NEW!  Enhanced room blocking.
  • Auto Room Pricing: Set Factors for each Season to automatically change room prices. eg: If during Easter your Room Prices are 20% higher than Normal Season, enter a factor of 1.20 for Easter Season and Room Prices are automatically changed in room charge calculations.
  • Auto Discounts: Set Discounts based on number of Nights Booked. Eg: book for 2 to 4 nights get 5% discount, 5-8 get 10% etc. Discount automatically applied to qualifying bookings.
  • Auto Validation: When customer selects room type, date and nights, the system checks for availability and either validates the booking or says that no room available.
  • Room Disabling: Rooms can be disabled from booking online individually or by type. This means that if a room is out of service it cannot be booked, or the hotelier can reserve specific rooms for booking locally only and make them not available online.
  • Cross season bookings, are automatically calculated on relevant rates. eg: Customer books dates that mean that 2 nights fall in the normal season and 2 nights in the Easter season, the system charges two nights at normal rate and 2 at Easter Rate, and it applies the relevant multiple night discount percentage to the total cost if applicable.
  • Auto Email Confirmation: An email is sent immediately to the Hotel Owner, or other email and to the Customer to confirm booking and payment.
  • Auto PayPal Submission: The system automatically creates the necessary code for the customised PayPal Gateway and automatically generates the return URL’s for successful and unsuccessful payments.
  • Owner pages allow full administration online and can also be used for booking and managing rooms locally and are fully protected. If not logged in successfully the sub-menus in the navigation element are disabled and if a page is manually accessed no data can be displayed and a warning note replaces the usual data.
  • Many system parameters can be set in the Maintenance area avoiding the need to edit the code directly.
  • Pages can be customised to blend in with the Hotel site scheme.
  • Maintenance area includes deletion of un-needed records, table statistics and validation of set up data.
  • Unlimited number of local user accounts.
  • Graphical view of Room Status which is interactive with the Orders Page.
  • Owner can move bookings from date to date, change number of nights, and move booking to another room  amongst other changes. New room costs are automatically calculated and old booking details removed.
  • Rooms can be blocked from booking for selected dates whilst room is renovated etc.
  • Installation of Customer Booking into current Hotel Web Site takes less than 5 minutes.
  • Setting up the room details etc takes less than 20 minutes (if room details and season info etc.is readily available)
  • PHP and MySQL enabled server compatible (PHP 5.0 or later and MySQL 5.0 or later recommended).
  • FREE Support  & FREE Help with Set Up
  • Customisation available (may incur extra cost depending on the customisation complexity)
  • Can be installed using  http: or https: SSL to improve security and user confidence

And in the PLUS+ version:

  • Enhanced GUI.
  • Add additional charges to rooms such as Room Service, Telephone, Restaurant Bill, Newspapers etc.
  • Tag full customer address to order.
  • NEW RePOS, Hotel Reception screen to manage rooms, payments etc locally, includes:
  1.  Select Room
  2. Add Extra Charges
  3. Add Payments
  4. New Booking
  5. Change Booking
  6. Create Invoice
  7. Add Notes
  8. Add/Edit Address
  9. Cash Up
  10. Daily Room Status
  11. View Room Summary charges/payments
  12. And more…
  • New status code ‘Z’ used when room booking is complete, fully paid and vacated.
  • Cash Up allows you to select a Date (or range of dates) and the summary of the total payments received that period in each payment type is created so that cash, cheques etc can be reconciled.
  • Daily Room status provides a summary of all rooms that are active during that day and their current status, you could use this in conjunction with the ‘Z’ status to identify  which rooms are vacated and ready for cleaning etc.
  • The enhanced order summaries views have the option to go to the RePOS page and work with the selected room on the Orders Views.
  • Enhancements have been made to several original pages and views.

Fully hosted and WPP versions available.

More information and details here: Hotel-iBooker PHP

HTML5 and CSS3 OR NOT HTML5 and CSS3 Web Developer Dilemma

December 25, 2013 // Posted in Computer Tips, Main (Tags: , , , , , , , , , , , , , , , , , , , , , , , , , , ) |  No Comments

New Formats

New Formats

Dilemma for web site developers with HTML5 and CSS3.

 

As you are no doubt aware, HTML5, CSS3 and now a new version of jQuery that is aimed at HTML5 and CSS3 have been released and are now supported to some extent in the latest versions of major browsers. Also some Web authoring software has also been updated to use these, such as Serif WebPlus X7.

This is all well and good if you know that everyone that will use your web site has a browser that supports the latest HTML5 and CSS3 etc. But how can you determine that, the short answer is “You can’t”. This means that users with older browsers will not see your site as you intended it to look, and many, if you use the new CSS elements to identify form required fields etc, will not be able to use your forms for contact or submitting information. This is even more prevalent when it comes to mobile sites. How many mobile phone users do you know that update their phone software every time a new version is available?  I thought so, almost none! So they will still be using browsers equivalent to IE6 or 7, which have no support for the new html code.

There are also millions of PC users throughout the world that use IE6 and 7 browsers and other browsers that do not support HTML5 etc. So are you going to create a site that cannot be accessed by millions of potential visitors?  If your site is a retail business you could be losing a high percentage of your business.

Even the latest versions of all major browsers do not all support all of the new HTML5 and CSS3 functions, some support some and not other functions, and others support some different functions and not those that others do.

So which HTML5 and CSS3 features do you use? This is a question I cannot answer for you, you will have to make your own decision on this one.

And then there is the old IE thing, IE10 and IE11, although allegedly HTML5 and CSS3 compatible, has some major issues on formatting and extent of compliance, particularly with image compatibility on things like transparent pngs, text formatting, and JavaScript issues etc.

You you need to make some important decisions when you create your new web sites:

  • Do you target your sites at visitors with specific browsers? (IMO not a good idea.)
  • Do you create two sites, one for the new protocols and one that is compatible for the old protocols? (Also probably not a good idea unless the extra work involved is not a problem.)
  • If you choose the above, do you include a script that automatically detects the browser and switches accordingly, or do you ask the user to select a version?
  • Do you stick with the earlier versions of HTML and CSS3 code and stay compatible with most browsers? (Maybe a good choice for the time being until the percentage of users with later versions of browsers increases substantially)

The other issue is the latest jQuery, which has many changed functions and code. I did see a statement that said it was backward compatible with older versions, but trust me when I say that it is not. I have found this out after spending hours trying to find out why things that used to work fine have all of a sudden stopped working.

WebPlus X7, for example now uses the later version of jQuery, and if you have say, a webplus light box on your page the later version of jQuery is then added.

You then add features from jquery-ui 1.7,1.8 etc not adding jquery as WebPlus has already added it for the light box, and the jquery-ui functions no longer work. So you either have to use the later jquery-ui (which doesn’t allow some of the functions of the older versions – bah!) or manually add a different system for light boxes and the earlier jquery manually.

Other third party tools also present a similar issue as many were developed before the new version of jQuery was released.

So if you find that things suddenly do not work when you upgrade your site to HTML5, CSS3 and/or the Latest version of jQuery, perhaps now you will have an idea of where to start looking, and not have to spend hours trying to locate the issues as I have recently.

I hope that this post helps someone in some way.

 

Steve

 

 

 

Top 10 FREE Traction Building Ideas for a New Web Site

November 12, 2013 // Posted in Tips and Tricks (Tags: , , , , , , , , , , , , , , , , , , , , , , , , , , , , , ) |  No Comments

The dot com era proved that just building it isn’t enough. The chicken and the egg issue exists you need customers to get customers… and attempting to launch a web site, is that issue on steroids. So, how to get traction?

Here are Ten FREE Traction building Ideas we are trying:

1) Email Your Friends:
Find everyone you know that relates to your target market and introduce them to your website via email… as you know them, leverage every piece of emotional capital you have with them to encourage them to take a look at your new site and join.

2) Ask Your Friends to Refer Others:
If you send an email to people who are your target market, clearly articulate why it is valuable to ‘THEM’ (not just you) to join your site… and then ask and make it easy for them to refer people they know. Here’s an example of an email I wrote that asks for a referral –

“Please forward to anyone that may be interested… entrepreneurs, advisors, people with Blogs, press contacts etc! Even forwarding to four or five contacts will make a big difference for us!

Happy New Year and thanks!

++

I’ve just discovered a new web service bringing potential business advisors together with entrepreneurs and early stage businesses. For Advisors – It’s a great way to discover new deal flow and get involved in a hot new company. For Entrepreneurs – a great way to take your business to the next level in 2007!

The site is called Advisor Garage – http://www.AdvisorGarage.com and was recently featured in Business Week!

Please sign up and forward this email to great advisors and entrepreneurs.
++

After three or four weeks of steps 1 & 2 we found that we had begun to get a few people onboard… So now what?

3) Write a Press Release and get it OUT there…
I can almost hear a few folks swallowing and already considering looking for the next blog… it really isn’t that tough and it isn’t expensive. In fact, its FREE! Don’t believe me? Consider signing up to PR Leap (http://www.prleap.com/learn_more). Not only do they have some good articles which explain for dummies (like me!) how to write a press release but they also offer a free submission service to multiple channels such as Google News, Google Search, Yahoo! Search, Topix.net, Technorati, MSN, Ask News, Moreover, NewsNow and others. According to their website – PR Leap is the best way to send your news release(s) to all major search engines, newswires, and websites. And basic accounts are free!

So what happened with us? Well we signed up, created a one page press release (took about 30 minutes), submitted it and it was approved earlier today. It will appear tomorrow. If you are interested, the link to the press release is: http://www.prleap.com/pr/61185/

The basic plan (read… Free) comes with stats, so I’ll let you know in a few days if the press release was actually read by anyone and if it was picked up by any sites, bloggers, press etc. Let’s see how good PR Leap and our press release writing skills are!

4) A Personalized Toolbar:
A great startup called Conduit (http://www.Conduit.com) offers people the opportunity to create their own, personalized toolbar for FREE. Conduit has a wizard embedded within their website which takes you through the setup process step-by-step. It took about twenty minutes and once you’re done, they create a link to your toolbar download site which you can then share through an email signature or through a click through download on your new networking site. There are a number of cool ways to tailor the toolbar… your branded search, create links to particular pages on your own site, add weather, a radio and so on to make sure its a value download for your customers.

5) Design Your Site with the Customer In Mind and Make Inviting Others Easy
If, like us, your marketing budget is measured by the quarters rattling around in your pocket, then do your site a favor and design it so the ‘Invite Others’ button is never far away. No matter what page the users happen to be on. Bold it, make it big, underline it if you have to but referrals from happy customers are always easier to get than attracting new customers.

6) Friends & Contacts revisited:
Do any of your friends know anyone in the press or people who have blogs ? Well you won’t know until you ask… ASK!

7) Join Linked In (http://www.linkedin.com)
If you haven’t already, consider joining linked in. Yes, its another networking site, and you could consider them the competition (In your dreams!)… but after joining you can search through the directory and find people that may either a) be interested in joining your site or b) encouraging others to do so. If you aren’t a member already, take a look

8) Groups & Forums:
Are there Yahoo (http://groups.yahoo.com) or Google Groups (http://groups.google.com) or other online forums that include the types of people you want to attract to your new networking site? If so, join them but beware… most groups want members to contribute to the discussions and no groups appreciate spam. So find the best forums for your target customers, join and spend some time getting to know what subjects are being discussed. Give it a week or two then jump in and add some value… and make sure that your post includes your email and perhaps the web address. If it is valuable, then members may check out your new site…

One last thing, if there aren’t any good groups with your target customers… consider creating your own… and make it it feeds your new networking site. Here’s one I started and yes… I know it only has a few members… but its more links in the internet for your website which appears in your google or Alexa results: http://groups.google.com/group/Harvard_Entrepreneurs_Startups?lnk=oa&hl=en

9) Write to your Existing Members:
Do you have a few members? If so, email them occasionally (Not every day!) and remind them of the value of your site… perhaps highlight a particularly useful tool or feature of your website. Maybe reach out to some of the individual members and ask them if you can write about them joining the site, a person feature if you will. At the bottom of each of these emails… give them a few sentences (above for example) to send on to others they know. Stress how much you would appreciate their help and how important they are to you and your young business.

10) Drum roll… .badda badda badda… .Create a Blog!
Here’s hoping that a blog is the tenth and most valuable means of getting the message out there about a new networking site. (WordPress.com is FREE)

Originally posted by : Andrew D. Ive

CloudFlare and Your Web Site

July 12, 2013 // Posted in Main, Tips and Tricks (Tags: , , , , , , , , , , , , , , , , , , , , , , , , , , , , ) |  No Comments

CloudFlare

CloudFlare *
and your Web Site

Have you been given the option by your host to install CloudFlare Security on your WebSpace?

 

 

Are you now getting problems with javascripts not working, or some php pages not working correctly?
If the answer to the above questions is Yes, then it appears that the problem with your scripts not working or your php pages not working correctly may be down to CloudFlare.
While trying to solve the same issues for a friend on her site, it was identified that there was nothing wrong with the php code or javascript code as the same pages worked fine on other servers.
Further investigation revealed that something was affecting the headers being processed by the php engine. Some php code requires that the php pages code is the first thing processed by the php engine, and on looking at error logs on the server, the error was ‘cannot send header code on page xxx.php, header already sent’.
The obvious reasons for this were checked, code was correct and in the right place as the first line in the php page, the file had was not saved as utf-8 with BOM, so something else was affecting the page headers.
CloudFlare was switched off and everything started working fine again. It appears that CloudFlare may be adding it’s own headers to pages before they are processed by the php engine and that was what was causing the pages not to perform correctly.

* CloudFlare orange cloud logo is a trademark of CloudFlare, Inc and is acknowledged as such.

 

%d bloggers like this: