Dublicator

How to improve security on WordPress and what are Security Keys? If your website has ever been hacked, you probably have changed passwords and access names, but have you ever thought of changing your WP Security keys?

Without going into technicalities, just know, that WP comes with security keys. Defaults are loaded in the database. Additional keys can be edited in the wp-config.php file.

By default the wp-config.php contains:

define('AUTH_KEY', 'put your unique phrase here');
define('SECURE_AUTH_KEY', 'put your unique phrase here');
define('LOGGED_IN_KEY', 'put your unique phrase here');
define('NONCE_KEY', 'put your unique phrase here');

When installing WP, the so-called Salts are often created automatically. If they are not there, you are invited to create your own unique pass phrases.

To keep it simple, you may use the automated key generator from WordPress, click HERE

When clicking on the above link you may get something like this (don’t use the below keys, get your own and keep them secret!):

define('AUTH_KEY', ',Z9!M|Lccf;Y]]@gD{ G^.CI~koampO,Rc{Uev+E)nOdoB~E<+;J|svK=}/!i4}J');
define('SECURE_AUTH_KEY', 'V}jovPJ6BXCD0C (.t[wf7-h^MSO.tCTE`|1jVw^J#^%~3@ZuoWHfCy[+zpFogM#');
define('LOGGED_IN_KEY', 'JU+Nh5|hAz-J6&}Trgkg`vn-$cjPV3S3<^ZTk{<vD_|P^L>w+[=q5ovK*p450E9`');
define('NONCE_KEY', 'C!w3rs.=K^y2dx,YX]*-$z=hP+=WFa3cl?18VxF0?VD.dtR&R0xK*$&+IJ&QKB)J');
define('AUTH_SALT', '&Ry7_ueekL-DO0s*DBeCw7+NPZ6^AcGbTrre@]^6NjnFtWu$FMK{$UGkTxC<;71J');
define('SECURE_AUTH_SALT', '3bd~/> k1]kjOf|)Q^Mi%-36TOmSt>-Z$1QuF*<Z|1NfY3Yz[W1/;H/yvL~0sz0V');
define('LOGGED_IN_SALT', '+&%:*T^5FN5[j6A9?Oq25QoE?sI<6u)(GAa4>8`o#jt3Yd0m}xg@iBA}+;.lb|*U');
define('NONCE_SALT', 'fr28HY1.]Jb3;L{{RmUj{j_}6r]p0[M<d8|+[}$%j#?cGJcC vMX-|;Loph.-bLV');

Replace the above defaults or your existing keys with the new keys from the generator (change a few digits if you really are paranoiac). Just overwrite the existing lines in your wp-config.php and save to server.

Change these keys once in a while, namely after a hack.

If you need further help, please comment below or contact me through support.

To increase security and to better organize files and folders on the server, you may want to move the WP core files into its own folder. Here is how to proceed.

By default many users install their WordPress core in the root directory. The resulting default URL of the site and of WP is http;//myblog.com

You want to move WP while keeping the same URL as before, not just for the home page but also for your posts, pages and other links (media for example).

The name of the new folder, where WP core will be hosted can be anything. For the purpose of this exercise I will call it: ‘myscripts’

Before you start, backup your Database and files.

1. Deactivate all plugins and empty cache if applicable.

2. In your Dashboard go Settings > General and change the WordPress Address (URL) to http://myblog.com/myscripts

You will now get an error or a messed up site, but don’t worry, we will fix this right away.

3. Access your server via FTP or from your cPanel.

4. Create a new directory under the root directory named ‘myscripts’

5. Cut and Paste all WP files and folders into the new folder

6. Make a copy of WP index.php and of  .htaccess file and place them back into the root directory (from where you have moved the WP core files).

7. Edit index.php from the root directory (do not change the files you have moved).

Line 17 reads:

require('./wp-blog-header.php');

Change it to:

require('./myscripts/wp-blog-header.php');

8. Login to your dashboard and reactivate your plugins, you are ready to go.

Your blog is back up and running, but you may have an issue with your image links. By default your media were stored in the uploads directory:

http://myblog.com/wp-content/uploads/

Now they have moved to:

http://myblog.com/myscripts/wp-content/uploads/

1. Download and install the Plugin called: Search and Replace from the Plugins tab in your Dashboard.

2. Go settings and Search for: http://myblog.com/wp-content/uploads/

and Replace with: http://myblog.com/myscripts/wp-content/uploads/

All links are corrected and your media display properly.

If your posts are syndicated to other websites where their content is displayed, all the image links will be broken since you have changed the location of the uploads (image) folder.

Here is how to remedy:

1. Access server via FTP and edit .htaccess in the root folder and in the folder ‘myscripts’

2. Add the line:

RedirectMatch 301 ^/wp-content/uploads/([0-9]{4})/([0-9]{2})/(.*)$ /myscripts/wp-content/uploads/$1/$2/$3

Done, now all links to the old uploads folder will be permanently redirected to your new uploads folder and images will be displayed properly.

I hope this helps.

When Adobe announced the exclusive creative cloud subscription model, yours truly felt like shouting against it during the daily call.

In fact, Adobe’s arrogance will cost a heck of a lot of money: to the company, the shareholders, and to users who will get less for more money.

Amarinthos Greece

While signing the petition against Adobe’s most recent move ( here is the link: http://www.change.org/petitions/adobe-systems-incorporated-eliminate-the-mandatory-creative-cloud-subscription-model?utm_campaign=signature_receipt&utm_medium=email&utm_source=share_petition ) may put some pressure on the company, I guess posting about your indignation on your blog, social networks and wherever you have access to will have a solid impact on Adobe’s online reputation.

Finally, we are the consumers and what Adobe and others have not yet understood: we, the consumers decide over life or death of companies, mainly arrogant ones such as Adobe.

Today just a few shots taken this morning when the full-moon was just illuminating Vouliagmeni from the west.

Once more, the fascination of the full moon drove me out early taking just my point and shoot camera along to see what is possible with low end tools in a high end scenario.

This first shot is right out of the window shot as follows with the point and shoot
Leica V-Lux 20:

f/4.9
300 mm equivalent on 35 mm
1/80 of a second, handheld
ISO 200

You can vaguely see the neighbors roof top on the lower part of the image, meaning that I needed to get out of bed for a better position.

Also, a few minutes later, the daylight would start to kick in and I just wanted to get a view of the Vouliagmeni Bay under that beautiful light of the moon.

Just to give you an idea about the situation: my neighbor, then the Vouliagmeni Bay and on the other side, Astir Beach and the Astir Hotel complex, then the sea and in the very background the island of Aegina. Note on the horizon the big ferry boat driving in from the left towards Piraeus Port which is at about 35 km north from here.

Same camera shot at  6:04 am:

f/3.6
35 mm equivalent on 35 mm
1/5 of a second, handheld
ISO 800

Now it’s just about waiting and hoping for the right light when the day meets the full moon:

This is about as good as I could get the shot with the help of Photoshop and the Perfectly Clear plugin.

f/4.4
11mm on 35 mm equivalent
1/3 of a second, handheld
ISO 200

Luckily the passenger ship is still in the frame as well as a second, red painted transporter.

Once more we see: even a point and shoot camera can come home with nice shots in difficult light. Note that the last shot was just taken in Automatic mode (!) while the previous ones were taken with manual settings.

Of course one could work the image in Photoshop to make it more attractive by intervening on the foreground, the temperature and more; however, this is where we reach quickly the limits of the files. These pictures are just not good enough for heavy manipulation in Photoshop, the more that we cannot get rich RAW files from that camera.

I like them anyway :-).

This post discusses three ways of customizing the new XR Theme for WordPress in view of the upcoming Ycademy Online Seminar:

1. Theme Options
2. Custom CSS
3. Child Themes
4. More Options

Before we customize a WordPress theme, we need to clearly define our project and goals we want to achieve in order to decide at which level we need to intervene.

Also, the project will define the workflow and importance of the intervention.

First let’s start by checking out the native theme options; XR theme options allow to implement basic branding options, such as colors, fonts, logo as well as to define layout elements and display of the frontpage.

XR Theme Options

XO comes with quite a lot of built-in ready to use options. With a few clicks, your site changes face and adapts to most any need.

Most users will be satisfied by just using just Theme Options.

These Theme Options are found from the dashboard under ‘Appearance’.

Other Theme related options are built in shortcodes; these add editing features such as buttons, tabs or others as specified on the shortcode page.

XR Shortcodes

If Theme Options are not sufficient to tweak the theme to needs, then the next step to consider is the Style sheet. CSS customizations can easilybe added right from the dashboard, using the Custom CSS tab under ‘Appearance’ or directly from the top menu bar.

The built in CSS editor helps writing clean code; the code added is stored in the data base and injected into the header script.

For minor modifications, the custom style sheet comes in handy. However, the disadvantage consists in the fact that the custom styles are injected into the header of the theme (check it out from the source code as per below):

Custom CSS in source code

This inconvenience can be taken care of by custom optimizing the theme once the design customization is done with.

Alternatively and for more important custom styling, I would rather use a child theme wrapping up the style sheet properly as external style.css file.

Child themes are used for advanced customization, namely when there is a need for tweaks going beyond pure style and design elements.

While most design changes can be handled from Theme Option settings and Custom CSS, functional tweaks and structural changes are done by creating a Child Theme, adding namely elements to functions.php as well as template files.

XR Child

Once you have explored the above 3 levels of intervention, there is still room for more, namely when it comes to add functionality to the site. In many cases this can be achieved by adding plugins.

XR is designed for easy customization. Most users will find the Theme Optimization tools provided in the dashboard sufficient to implement all necessary modifications.

Advanced tweaking is possible, even from the dashboard, whereas I prefer to embed such advanced hacks into a child theme.

XR’s architecture is set to serve most any purpose, making it a truly universal multi-purpose theme. Developers need only one theme as a base for unlimited applications of any purpose, including media and eCommerce.

Semiomantics is releasing its new flagship theme, the XR for WordPress. The time is right to move on and to take advantage of the most recent WordPress and browser developments.

Influenced by the broad acceptance of HTML5 and CSS3, boilerplate developments and bootstrap as well as easy outsourcing of javascript libraries, fonts and images, I have developed the XR for high performance, smashing loks and unlimited potential for development.

The XR Theme for WordPress will be released in two distinct editions:

1. XR Professional
2. XR Developer

The Professional edition will satisfy most end users right out of the box. The fully responsive XR Theme switches automatically to its mobile versions when the site is viewed from a mobile device, tablet or phone or phablet.

A homepage slider, multiple media publishing features, shortcodes, built in Fontawesome icons, and many more features provide great tools to build exceptional websites. Also, the theme customizer provides unlimited looks with just a few clicks.

Don’t forget, XR is built for high performance and excellent publishing: the sky is the limit, starting with efficient Google indexing and ranking.

The Developer Edition is aiming to satisfy two kind of needs:

1. Advanced Editing
2. Advanced Customization

The XR Developer Edition comes with an advanced built in page and post editor which allows users to created page layouts by just pulling in boxes, graphics, media and to place them at will to create smashing layouts and looks.

Also we have added to the XR Developer Edition some features which require access to the script via FTP or from the dashboard, some knowledge of HTML and CSS as well as some understanding of SEO for best performance and advanced customization.

XR can change face with just a few clicks. That’s true for the Pro Edition. With XR Developer you impact on the sou of your website!

While you may be reading this post, I will convert my Semiomantics XO powered site to XR … with just a few clicks :-).

Yorgo Nestoridis

XO has been created back in 2008 by Semiomantics and it has been developed to its latest version. The development has reached its ultimate limit with the experimental 3.5 version which has been abandoned. It is time to move on and to base Semiomantics’ new flagship theme on a new base, the XR.

Back when it was released, the XO was one of the best themes out there to gain Search Engine Visibility with most any content. The combination of a clean coded theme with Semiomantics Optimization lead to astonishing results for all users, irrespective of content and target.

Semiomantics XO Licenses were not the cheapest in the market, but definitely they were the best value for the money. If we are abandoning the good old XO framework and theme, it is because we are convinced that the most recent WordPress developments as well as the more general acceptance of  HTML5 and CSS3 open new possibilities and challenges to develop and optimize websites and their content.

XO was great right out of the box and it provided unlimited possibilities to configure and style the site without messing up the optimization. XO was revolutionary in as much as it promoted first of all the framework with its target keywords and then only the content. This lead to spectacular results and what we called excellent publishing.

Semiomantics XO

While XO development on the present base will stop, we are working on a new generation of XO: the new version will be released later this year and it will not constitute an upgrade of the existing XO but it will be a completely new XO Theme with exceptional features aiming mainly developers and taking into account a minimalist approach to development, leaving developers and designers utmost freedom of expression on a extremely flexible base. A Semiomantics Optimization Pack for that new framework is under development as well and will complete the new XO.

For the record: The existing XO version 3.4.x remains a great theme and I am sure it has still some great times to come, however, I would not anymore sell it as a modern high performance theme, namely if it is set up without the Semiomantics Optimization Pack.

I expect the new XO to be ready for release not before the second half of 2013. Existing license terms will apply, for new Licenses a new Pricing model will be applied.

The new universal theme developed by Semiomantics and virtually replacing the present XO at this stage is the XR, whereas the letter R stands for responsive. XR is a completely different story than XO, it is built on the base of some developments of Boilerplate, Bootstrap, new Semiomantics stuff and more last cry professional scripts.

XR is a truly universal theme as was XO and it adapts to most any purpose users may formulate.

More about XR shortly.

Please notice: this is the last post published on this site on the XO theme – rise the curtain for XR!

In order to take advantage of XR, this site will experience some structural changes and modifications during the next few days. Sorry for any inconvenience this may case and thanks for any comment relating to problems you may encounter.