Author Archive

Nur

I am a Wordpress, Website Developer and Designer, creator @ WP Arena, Provide Free WordPress consultation and can help to install WordPress in a secure way to small businesses and bloggers.

How to add a Notification Bar Strip on WordPress Powered Website

Most of of the Website owners display ads or run a promotional campaign on the top or at the bottom of the Website. Such kind of notification must be stick on top of the content without disturbing them but if you are using WordPress, its very easy to manage Notification bar by using WordPress plugins, I will provide the best WordPress plugins for Ad bar, as well If you don’t like WordPress plugin to distract your site, you can still run a Ad or Notification bar by using the following piece of code and instruction from “Put a Floating Ad Bar Strip on Your WordPress Site“. Although with Hello Bar you can drive more attention to your most important website content with the cost of Hello Bar promotion same as with other WordPress Plugins. But with premium Plugin like Fading Menu with Notification Bar and Social Icons, You can set the text manually (with a simple text editor that will allow you to add links and change color on the fly), or set it to always show your latest tweet, facebook notification and important content. This will allow you to always have an up to date notification bar with your latest news.

Adding a Floating Notification Bar 

In case, if you don’t like WordPress Plugin, you can add the following snippet after the </head> tag. Go to Appearance > Edit and select your header.php file and add the following piece of code above the <body> tag:

<div id="notification-bar">
<a href="http://www.wparena.com/">Drive more attention to your most important website content </a>
</div>

Style Your Notification Bar

< /hr>
You must give some style to your ad strip, otherwise  it will not float properly when the site visitors scroll down the page and it will display as a text link, so it is very important to give a style to it as follow, open your theme style sheet file(style.css) and add the div class into it and save the file:

#notification-bar {
  position:fixed;
  top: 0;
  left: 0;
  width: 100%;
  height: 20px;
  margin-bottom:15px;
  background-color: ##FFF9B8;
  color: #333;
  border-bottom: solid #000000;
  padding: 5px 0 5px 0;
  text-align: center;
  font-size: 12px;
  font-family: Georgia, "Times New Roman;
  font-weight: bold;
}

If you have activated admin bar for yourself and user, better to disable it, so it will not disturb your important content on ad strip. If you have different user roles on your site and want to manage their layout for Admin bar, than you can use WP Custom Admin Bar: This gives you options to change who sees the Admin Bar based on their user role, change or override the default styling or remove the Admin Bar altogether.

 WordPress Header / Footer Notification Bar Plugins

Fading Menu with Notification Bar and Social Icons

Fading Menu with notification Bar is a WordPress Plugin that will allow you to add your navigational menu (main menu or custom menu defined by you) along with notification bar at the top of your browser. Simply scroll down your browser a bit to see it in live action!

Live preview | Detail

uAnnounce – Premium Announcements for WordPress

uAnnounce is a Premium Announcement plugin for WordPress. The announcements are thin colored stripes that contain a message and appear at the top of the page. uAnnounce allows you to schedule announcements to appear on your blog, you can use this to draw your visitors’ attention to an important message you may have. It supports a wide range of conditions that influence on which pages, blog posts and/or to users with which particular browsers the announcement should be displayed. It also features multiple skins to cover the basic announcement types, such as Alert, Error, Warning, Info.

Live preview | Detail

Foobar – WordPress Notification Bars

The Foobar is a plugin for WordPress that allows you to add a highly customizable bar to the top of your blog or website. You can display different notifications on different pages and define a default bar that will display on all your pages.

Live preview | Detail

attentionGrabber: WordPress Notification Bar

attentionGrabber is a plugin for WordPress that allows you to add a notification bar to your website.
With this plugin you can easily display custom texts, Twitter posts and Feeds RSS . Also, the huge list of features lets you fully customize the notifications look.

Live preview | Detail

Widgetized Stickybar

Widgetized Stickybar is a plugin for WordPress that allows you to add a highly customizable widget bar to your blog or website. As it is said in the title, bar contains widget areas, where you can place any widgets available in your WordPress dashboard. As an administrator you decide where to stick the bar: top, bottom, right or left edge. You also can customize size, colors, opacity, number of columns and other parameters of the bar. Widgetized Stickybar is a perfect way to extend functionality of your website.

Live preview | Detail

Free WordPress Header / Footer Notification Bar Plugins

Easy Heads Up Bar

This plugin adds an easy to use notification bar to the top of your WordPress website with a linked call to action

General Display Options

  • Your Heads Up Bar appears on the top of the websites page
  • No Limit! You can create as many Heads Up Bars as you need
  • If you have multiple Bars they will show randomly
  • The Bar can be limited to just the Home Page, Interior Pages OR the can be displayed on all pages

Detail

WP-TopBar

http://wordpress.org/extend/plugins/wp-topbar/

Creates a TopBar that will be shown at the top (or bottom) of your website. Customizable and easy to change the color, text, image, and link. Live preview to see your TopBar from the Options page.

Detail

Quick Notice Bar

This plugin will help the admin to publish highlighted notice on WordPress site header. Any message like offline notice, update notice, tweets, special offers, latest post can be set to attract visitors in 1st sight.

Detail

ViperBar

ViperBar adds an attractive bar to your site header, which you can use to increase blog or newsletter subscribers. It includes built in styling, Aweber & Feedburner integration, conversion rate tracking, split-testing, themes, and much more. ViperChill, a blog on Viral Marketing, is the creator of this plugin. If you want to take your blog to the next level, you should read this post on WordPress SEO.

Detail

Notification Toolbar

This is a toolbar placed on the footer of your blog and it will show your custom notifications on it. This plugin is developed based on the Static Toolbar plugin.

Detail

WP Attention Boxes

Sometimes you just want to call out attention to a particular important message, or quote, or a collection of links, in a bright yellow box, or similar, in a Blog post. And you might do this a lot in your blog entries.

Detail

Foobar Lite Notification Bars

The Foobar is a cool notification / alert bar that sits at the top of the page and draws in the visitor’s attention.

features

  • A cool notification bar at the top of your site that draws the attention of the visitor
  • Options to set the message text, height and speed of the Foobar
  • Options to customize the background,text and link colors to match your theme
  • See a preview of the Foobar within the admin
  • Advanced options to help troubleshoot issues

Live preview | Detail

How to embed media to WordPress Responsive Themes

There are lots of Free and Premium Responsive WordPress themes, but  with some responsive themes, it is very important to make sure   that the embedded media properly display on all devices,  And you don’t want that your responsive theme on your client site show unresponsive result for media files.  There are excellent Responsive Themes like Awesome WordPress Responsive themes from Themify (buy any theme, get any second theme for FREE!), Alyeska Responsive WordPress Theme and Qualeb: Responsive Premium WordPress Theme, although you can find more excellent Responsive themes on Best Responsive WordPress Themes for All Devices and Screen Resolutions.

If you still not satisfied with your Responsive Theme, there is a new WordPress Plugin “Responsive Video Embeds”  it will automatically resize your media file and has auto-embed features.

Responsive Video Embeds

This plugin will automatically resize your WordPress auto-embeds, including video and other iframes, in a responsive fashion. It currently supports the following providers:

  • YouTube
  • Vimeo
  • DailyMotion
  • Blip.tv
  • Viddler
  • hulu.com
  • Revision 3
  • Funny or Die
  • WordPress.tv
  • Scribd

Live Example

Visit the test page where you can resize the browser and watch the videos automatically scale to fit the resolution.

About WordPress Auto-embeds

WordPress has a nifty auto-embed feature, allowing authors to automatically turn a link to a video embed into a video player when a post is viewed. To turn this feature on check theAuto-embeds check box in Administration > Settings > Media SubPanel.

Under the hood

Please note that this plugins modifies the output of modify_embed_output filter, adding HTML & CSS to make the magic happen.

Credit for the method used in this plugin goes to Anders M. Andersen for crafting the method used to gracefully resize the embeds.

Multisite Compatibility

The Responsive Video Embeds plugin is compatibly with WordPress Multisite, just use theNetwork Activate feature to enable responsive video resizing embed on every site. If you only want responsive video resizing to happen on a specific site, activate the plugin for that site only.

Detail

How to Managing Your WordPress Multi Sites
How to enable Multi Site feature in WordPress 3.0?
How to do Domain Mapping in WordPress Multiste Network
WordPress plugins for multisite network management
How to do Domain Mapping Without a Plugin in MultiSite Network
Free Download Plugins and Themes From WordPress Multi Site User (WPMU)

Content Access Control Management System on WordPress Powered Sites

WordPress has become the biggest and powerful platform for  Content Management System (CMS) having blogging capabilities. For any kind of Website, You can build a blog, a website for all kind of online business, or represent your business page on web by using WordPress. There are lots of reasons to use WordPress for multi-user website and you can get full control over the content of your users and can management them on a single platform from your Dashboard.

First of all WordPress is a FREE AND provides excellent Search Engine Optimization (SEO), WordPress SEO by Yoast is one the best WordPress SEO plugin that help to get traffic and boost up search engine rank.

WordPress is very user friendly, and help you to mange content without  knowing programming language and using developers tools like Dreamweaver. On top of that you can extend your website features without hiring a web developer by implementing different themes and Plugins. If you want to extend your website,  you can get WordPress Developers support on line because there are lots of blogs provide Free tutorials and support online, all you have to Search on Google. Even Hosting companies like provide free help and support on WordPress powered sites.


[Resource: why-use-wordpress-to-power-your-small-business-website]

Today I am trying to compile a list of Plugins that help you to manage and have a powerful access control system by using WordPress, Although Drupal and Joomla provide you these features but now you can implement these features on your WordPress powered website.

On the following list of articles you can find how to create Multisite and manage your Network on WordPress.

WordPress Premium Content
Professional domain mapping
Open Source Training teaches people how to use Joomla, Drupal and WordPress.

Access Control in WordPress with Plugins


There are different WordPress Plugins that help you to have a control over your users and their contents. I am going to provide the best WordPress plugins for Access control to manage Content and users roles:

Advanced Access Manager

Advanced Access Manager is very powerful and flexible Access Control tool for your WordPress website. It supports Single WordPress installation and Multisite setup.

Detail

White Label Branding for WordPress

Are you a WordPress developer or a Web Designer who uses WordPress to develop websites for your clients? Have you ever wished that it was easier to customize the menu’s and logo’s in WordPress and to decide which menu’s the users have access to? With White Label Branding for WordPress you can do exactly this. Take full control over the branding in wp-admin and decide who has access to what features. With the latest version of White Label Branding you have the ultimate tool for customizing WordPress admin and your login screen.

Live preview | Detail

Userbase Access Control

Adds user access control via admin defined user groups on a per page level.

Features include:

  • Access group creation
  • User group assigning
  • Redirect un-logged in user to defined login page
  • Redirect public users to login page.
  • Redirect Logged in users to Access denied/upgrade notice page

Detail By David CramerOne to Many Relationship Tutorial in DB-Toolkit

WordPress Access Control

WordPress Access Control is a plugin designed to integrate into membership sites where certain pages, posts and custom post types should only be available to members of the site. The plugin offers fine tuned features for this purpose, including the ability to set site wide defaults and override these on a per-page basis.

Detail By Brandon Wamboldt

Private! WordPress Access Control Manager

The configuration is as simple as powerful and the best of all: It’s incredible fast – you will not notice any differences from your standard installation to running a fully protected blog. It does not modify your roles, capabilities and it does not need new tables or adds queries to your normal pages.

Detail By Oliver Sperke

Simple Access Control

This plugin allows authors to restrict the users’s access to individual pages, posts and menu items based on the user’s logged in status.

Features for Authors

  • You can restrict pages and posts while editing by using the “Simple Access Control” widget.
  • You can set the message displayed when a visitor accesses a locked page using the “Simple Access Control” item in the Settings menu
  • The locked status is shown in the admin page and post lists
  • a “Loggedin Text” widget is available that only displays text to logged in users
  • You can set a flag causing the menu to display even when filtered

Detail By Peter Wooster

User Access Manager

With the “User Access Manager”-plugin you can manage the access to your posts, pages and files. You only create a user group, put registered users to this and set up the rights for this group. From now on the post/page is only accessible and writable for the specified group. This plugin is useful if you need a member area or a private section at your blog or you want that other people can write at your blog but not everywhere.

Detail By Alexander Schneider

Microthemer – WordPress Visual Design Plugin

Microthemer is a visual design plugin that gives non-technical WordPress users a way to customize the appearance of their WordPress theme. Microthemer is intended for WordPress users who demand near full design control but don’t necessarily have any knowledge of CSS .

Live preview | Detail

Further Readings

WordPress: Roles and Capabilities: WordPress explanation on how blog owner can control the ability of assigning roles to a user.
WordPress: Author Templates: This article explains how to change what happens when the blog viewer is visiting one of your site’s author pages.
Creating an “About this Author” for Multiple Authors: How to insert About this Author at the end of every blog post.

The Benefits Of Using VideoPress On Your WordPress Blog

The internet was once the place where society digitized the written (and spoken) word. We had online newspapers and articles, chat rooms and message boards, journals and encyclopedias. But now, with the increased penetration of broadband and the popularity of services such as Netflix and Hulu, not to mention Youtube, the internet more and more often centers its identity around another medium: video.

The blogging world is no exception to this trend. Once almost solely delivered in written form, blogs these days are just as likely to incorporate photos, audio, and, yes, video as well. And, if you have a WordPress blog, adding video to your mix isn’t just the popular thing to do – now, with VideoPress, it’s extremely easy and straightforward as well.

You can download the plugin from the VideoPress website, and for the price of only $60/year it will help you upload, organize, and present your video content. All this is done free of ads and for any number of videos that are less than 1 GB in size. Instead of hosting your video on an outside platform, you can instead keep it – and its viewers – firmly grounded on your site.

But why would a blogger even want video in the first place? What advantages can it confer? Let’s take a look at some of the key benefits:

Diversify your offerings


The incorporation of video can quickly turn a text-heavy site into a more diversified one. This can help your blog appeal to a different type of reader. It can also give you a new outlet for communicating your thoughts, arguments, and advice.

Lower your bounce rate.


Visitors to a blog, especially those of the first-time variety, are especially prone to skimming content rather than fully reading it. This results in lower bounce rates. With video, you can help counter this problem because the medium is harder to skim and, consequently, people are likely to watch it for longer periods of time.

Improve your SEO.


Video brings with it numerous SEO benefits, chief among them that video results are fifty times more likely to appear on the first page of a Google search. Other benefits can be realized by using tags, keywords, and dedicated video libraries.

Prevent against writer’s block.


Any writer or blogger will occasionally experience a period when writing feels like an arduous and impossible task. During these times it is often nice to have another option – ie video – through which you can convey your arguments without having to type them out.

Bring in more advertising money.


Online advertisers have fully embraced video in the past year, whether through text ads that appear on a streaming feature or commercial-like advertisements that precede or follow a video. These ads can bring in far more money for the blogger than can standard banner campaigns.

These are just a few of the many advantages that come with video blogging. While video posts are not appropriate for every blog and should not be incorporated without thought, when used correctly they are a great tool and a great way to bring in some more traffic.

How to Find, Remove and Protect WordPress Site from Malware

WordPress powered websites are hit list on the crackers, they are using Maleware (a malicious software) for attacking your WordPress site. There are different form of Malware, like viruses, Trojan horse, spyware, hijackers, crimeware, adware, dialers, keyloggers, worms, rootkits and similar programs. Detail about different types of Malware have explained by James D. Nardell on “Different Types Malware“. Latest news about Types of Malware and all other security threats can be found at Panda Security website which provide and present Collective Intelligence Monitor about all threats, as they said ” The best way to defeat your enemy is to understand him.”  I have written step by step guide on How to Identifying removing and preventing malware WordPress site when one of my friend blog xponent4 was effected and I cleaned it up. Now its running okay without Malware but still on threat because of shared hosting on Servage, although they provide the good support but I recommend the best hosting like Hosgator.

If your site is infected, I cab help and assist you with removing Malware from your server and can clean up your WordPress site (Request at Wparena’s Facebook page and like it ). Even we can do basic penetration test free of cost to tell you about Valnurabilities in your WordPress powered Website.

Identifying Malware on WordPress Powered Website


There are different ways that can help you to identify Malware on your website. If you see any issue with Malware  on your site, first of all change your FTP, Admin, and database password and than try to use some online tools like Sucuri, Stop Badware and antiphishing to know more about latest threats and Malware.

Google Safe Browsing Diagnostics tool can help you to check vulnerabilities in your site and provide you the next step about protecting your site, detail you can read on  How to Identifying removing and preventing malware WordPress site.

Next you can use WordPress plugins to check about Malwares on your website, but before using these plugins do foolowing steps to make it more secure. Update all your installed Plugins, Test all Links on your site to make sure that your site not linking to site which contain Malware. All these checking you should don on Virtual Machine, so your actually Machine not be infected during any test. If you are not sure how to do that ask on  Wparena’s Facebook page or you can request in Comment to do it for you.

Timthumb Vulnerability Scanner

Timthumb Vulnerability Scanner is an excellent tool to check any Vulnerability in your site. The recent Timthumb.php vulnerability (discussed here) has left scores of unsuspecting bloggers hacked. It’s the perfect combination of not so easy to fix for the technically disinclined, and easy to find and exploit for the malicious – resulting in a disastrous number of compromised sites.

Regina Smola from wpsecuritylock, has explained about this Plugin and Timthumb Vulnerability Scanner plugin will scan your entire wp-content directory for instances of any outdated and insecure version of the timthumb script, and give you the option to automatically upgrade them with a single click. Doing so will protect you from hackers looking to exploit this particular vulnerability.

As well Elegant Themes authors provide a security patch and updates in their themes which use image re-sizing script called Timthumb, so their themes are more secure now. Woo Themes authors also update and mention the Security Flaw in their themes.

Detail

Exploit Scanner

Search the files and database of your WordPress install for signs that may indicate that it has fallen victim to malicious hackers. This plugin searches the files on your website, and the posts and comments tables of your database for anything suspicious. It also examines your list of active plugins for unusual filenames. It does not remove anything. That is left to the user to do. How To Detect Malware in WordPress Using Exploit Scanner.

Detail

There is a huge list of Security Plugins to Protect Your WordPress Site, but few best one are complied by Jules on Quertime Editorial and inspired by Techlila. More Secure Plugins for WordPress: Security Ninja

Reversing engineering to a malware wordpress theme

Removing Malware from WordPress website


Make a COMPLETE and CLOSE review of your ENTIRE content and replace suspect files with fresh ones from trusted sources. Always keep 3rd party Plugins and theme up to date to minimize the risk of security issues as good as possible. Regularly check your content so you might notice unauthorized modifications pretty soon yourself because when notes of this type get overhand we will charge an admin fee for our additional work.

After finding any suspicious and malware infected ads, links, Posts or piece of code in your file, image or in script, remove all of them. If you are sure that your site has been hacked, Follow the steps provided by Go Daddy to get back it online:

  • Take the site offline to avoid putting site visitors and customers at risk.
  • Remove all offending code. This is only effective long-term in conjunction prevention.
  • Fix underlying security vulnerabilities to prevent future attacks.
  • Check for and remove “back doors” left by the hacker. A back door allows the hacker future access even after you secure the site.
  • Check for and install updates, and research the software you are using to find out if other users have been affected.

[identifying-removing-and-preventing-malware-on-your-hosting-server]

Other Resources:

Beginners Guide on How to Remove Malware Scripts and Files
How to Remove malware from website
How to Identifying removing and preventing malware WordPress site

In case if you Machine is infected with Malware you can get help from Different approaches to removing malware.

Protect Website from Malware


Finally all you have to protect your site for further attack and the best tool is the prevention. Try to keep upto date all your Plugins, Theme and Core WordPress and use scanners that can detect vulnerabilities. Before putting any ad or link on your site make sure its not distributing any  Malware and monitor them regularly. As well make sure user generated contents are no containing exploit links to Malware and they are clean for visitors without any suspicious link and executable files.

For maximum security please ensure your account password is secure (at least 6 mixed numbers and letters) and that it is changed regularly. Ensure that permissions for your folders are set to 755 and for files it is set as 644. Also check that no folders have insecure permissions such as 777.

For a password to be strong, it should:

  •  Be at least seven characters long. Because of the way passwords are encrypted, the most secure passwords are 6-12characters long.
  •  Have at least one symbol character in the second through sixth positions.
  • Be significantly different from prior passwords.
  • Not contain your name or user name.
  • Not be a common word or name.

Other Resources:

Tips for Cleaning & Securing Your Website
How do I protect my website from malware
How to Protect a Website From Malware
How to get rid of code injected Malware on your website
How to Protect Your Website from Malware and Virus Attacks
How to Identifying removing and preventing malware WordPress site
5 Powerful Anti-Malware WordPress Tools

If you have any issue with your WordPress powered Website ask us on Wparena’s Facebook page.

How to Protect the wp-config.php File – WordPress Powered WebSites

Like other Content management systems on the web, WordPress is keep updating files to make it more secure. The WP-Config.php file is one of the most important files in the WordPress file system. It is essential that it be protected for vulnerabilities. WordPress team are trying hard to improve the system security at their own end but you should try to keep up to date with latest version of WordPress and keep hide your WordPress version from crackers and you should take additional security steps to make it more secure.

I already mention the steps about securing your wp-config file in my previous post, but today will trying to give you some more suggestions about it.  As mentioned, place following code in in an .htaccess file and both file must be in a in the same that contains your wp-config.php file.

<Files wp-config.php> Order Allow,Deny Deny from all </Files>

Generate & Store Strong Passwords

The wp-config.php file contain Database credentials, so make them secure as more as you can, keep in mind following tips for secure and strong password:

1. Must be at least 15 characters
2. Must be a combination of upper and lower case letters, must include number and symbols if your hosting company do allow to do that for mySQL database
3. Must be unique and not included names or dictionary passwords
4. You can use Strong Password Generator:  Use this strong password generator to generate secure, random passwords. It’s free. But I recommend to create your own password
5. Must be be same as your FTP, cPanel, wp-admin, database, email or similar to any other social media account like Facebook  and Twitter.
6. Try to change your password frequently.
7. For security porpose never save or write your password on piece of paper, make it secure as much as you can.  There are some tools and applications like Roboform, where you can manage all your login detail.

WordPress Security Keys and Salts

It is very important to add the unique keys and salts for security reason. There is an online secret-key service for automatic key-generation. Visit this link and refresh the page and copy the keys and past them into your wp-config.php file. For more Security and Tips to secure your WordPress powered Website, you can read Digging Into WordPress.

 

Free & Professional WordPress Security Service Free & Professional WordPress Security Service

We Love WordPress. WordPress Arena is a place for WordPress Developers and Designers, providing Tips, tricks, tools and resources to build a website or blog on WordPress. We also present The WordPress Showcase for all kind of WordPress Powered Websites.


Copyright © 2014 WP Arena All Rights Reserved

Divi WordPress Theme