How to Defend Your Site Against a Brute Force Attack

by Beth Alexander
April 26th, 2013

Brute Force AttackBy now many of you have heard about the brute force attack being used to create a giant botnet from Hell.  Most news stories are focusing on WordPress sites, but any PHP-based web publishing platform is susceptible,  including Joomla and Drupal.

Highlights of What You Need to Know:

  • This is not a WordPress specific attack
  • A strong password and username are your first line of defense.  Do not use “admin” as your username. Ensure all usernames and passwords are alphanumeric and complex enough and can’t easily be guessed (upper and lower case, numbers, symbols, no word found in a dictionary at least 10 characters).  I recommend using a random password generator.
  • Do not share your username and password with anyone.
  • When accessing your accounts over a public network or computer be PARANOID.  In these settings, do not access accounts with sensitive information like your website admin, bank accounts, credit cards, etc. unless you are using a strong password management tool with two-way encryption.  Even then, I don’t login to sensitive accounts on public network unless necessary.
  • Use a password management program.  Gone are the days when you can combine your pet’s name and date of birth for ALL your login accounts.  You aren’t still doing that are you?  Many people have dozens if not hundreds of online accounts these days.  You should not use the same password across sites.  If one site is compromised it can open the doors to all the others. I recommend LastPass, but there are other programs available like 1Password.  Do your research and choose a program with a good reputation.
  • Change your passwords regularly.  Implement a schedule to change the passwords on your most sensitive accounts on a regular basis, at least once per year but every 6 months would be better.
  • If your site or blog is hosted on WordPress.com your site is secure, but your password may not be.  Consider changing your password and using two-step authentication.
  • This article on the WordPress Codex gives more tips for protecting your WordPress site against a Brut Force attack.  It includes a list of plugins that can limit the number of login attempts
Categories Web/Tech
Comments (0)

Screenshots on the iPad

by Beth Alexander
April 16th, 2013

I’m a long time Windows user and was even a Microsoft Certified Professional back in the day when I worked in IT for a medium-sized company.  While I like Mac products, and even occasionally provide support for Mac systems to my clients, I haven’t owned any Mac hardware other than a hand-me-down first generation iPod mini.  That all changed over the holidays.  Thanks to a couple of my awesome clients, I am now the proud owner of a shiny new iPad.  I will be sharing some  iPad tips as I learn the ins and outs of using my new iPad for work and pleasure.

First up is taking a screenshot on the iPad.

Step 1:  Press and hold the menu button ( located centered below the screen, if holding in portrait orientation)

Step 2:  While holding the menu button find the power/lock button (if holding in portrait orientation with the camera at the top, the power/lock button is on the top right edge of the device)

You will see your screen flash white for a second and if your volume is turned up you will hear a camera shutter noise.  Congratulations you just took your first screen grab on your iPad.

To find your screenshot, go to the default Photos app that came loaded on your device.  Look in the Camera Roll album and you will find your screenshots.  From here you can share or email the image.

How to take screenshot on the iPad

Categories iPad, Web/Tech
Comments (0)

Virus Alert – Dorkbot explodes on Skype Instant Messaging

by Beth Alexander
October 16th, 2012

botnetA new worm targeting Windows systems is making its way across the Internet through Skype Instant Messaging, as reported by Mashable.  Unsuspecting users will see a shortened link with a message “LOL is this your new profile pic” or something to that effect.  Clicking the link downloads a zip file to your computer.  When the file is unzipped a trojan is copied to the hard drive opening a backdoor and loading malware known as Dorkbot.  Once the worm loads, your system is co-opted into a botnet — a group of computers infected with malicious code that put the computers under the command of remote operators without the users’ knowledge.  This worm also has the potential to lock you out of your own computer holding your files for ransom.  The Skype support community reports the malware takes advantage of Skype’s programming interface to automatically blast the malicious link to all of the compromised accounts’ contacts,  so the link may seem to come from a trusted source.

What can you do about it?  

  • Always click links with caution, particularly shortened links.  While shortened links are very handy for sharing cumbersome URLs, you can’t tell where they will take you.
  •  If you see a link pop up in an Instant Messaging window on Skype, Facebook or elsewhere, ask the person you are chatting with if they just sent you a link.
  • Don’t click on links sent to you from someone you just met online, no matter how enticing they are
  • Install a good virus checker on your system and keep it up-to-date
Categories Web/Tech
Comments (0)

New Artwork Available on FineArtAmerica.com

by Beth Alexander
September 16th, 2012

I’m happy to announce that my painting titled: “Peaceful Pond” is now available for purchase on FineArtAmerica.com.

Pink Lotus Digital Painting ©2011 Beth L. Alexander

Pink Lotus Blossom ©2011 All Rights Reserved Do not use without written permission by the artist

Be sure to check out  more lotus framed prints from other talented artists.

Categories My Artwork
Comments (0)

How Many 301 Redirects Are Too Many?

by Beth Alexander
July 28th, 2012

According to Matt Cutts of Google, there are no limits to the number of 301 redirects you can use when moving a site.  Chaining 301 redirects, however, is another story.  Towards the beginning of the video Matt mentions that over at the Google Webmaster Help Channel they have produced over 375 videos to answer questions from Webmasters.  Matt says it’s now time to go back to the beginning and “do a little more tutorial, sort of informative videos to sort of, you know, make sure that the people understand all of the really important things that matter, but that are also sometimes a little more basic…”   So if you are a newbie webmaster, or just want to review the basics, keep your eye on the Webmaster Help Channel.

Categories SEO, Web/Tech
Comments (2)

Google’s New Privacy Policy – How Does it Affect You?

by Beth Alexander
February 27th, 2012

Eye through keyhole ©Beth AlexanderBeginning this Thursday, March 1st, Google will consolidate the privacy policies across all 60 of the products, services and websites offered by Google Inc. or its subsidiaries or affiliated companies except Postini. At first glance it sounds like a reasonable move on Google’s part.  The kicker is in the unified policy that will allow Google to share information across its entire growing online empire of programs and services.  According to this Washington Post Article ; Google says that a primary goal of its approach is to simplify and enhance the Google experience, including by matching users with ads that should be of greater interest to them.  In other words they will have more data to work with by combining users’ history across all Google products. Do you really want Google tracking your every move online and through your Android mobile devices so they can increase the value of the ads they sell thereby increasing their bottom line?

This is a mandatory policy you either take it or leave it. While individuals can’t currently opt out of the new policy, Google does offer a way to pause the online browser tracking used to expose you to targeted ads.

  • Log into your  Google Dashboard to review and control the information stored in your Google Account
  • Click “settings” in the upper right corner
  • On the settings page locate the “Services” section,
  • Click on “Go to web history”, found next to “View, enable, or disable web history”
  • On the web history page you can click on Remove all web history”  this will pause tracking your web searches

The new policy states: “We may use the name you provide for your Google Profile across all of the services we offer that require a Google Account. In addition, we may replace past names associated with your Google Account so that you are represented consistently across all our services”.

A Google+ account requires a real name from its users, while a YouTube account does not. As of March 1, your real name could appear across all Google’s products.

Attorneys General from 36 states and territories have come together to collectively express concern over Google’s planned changes to its privacy policies.  In a letter drafted this week by the National Association of Attorneys General addressed to Google Chief Executive Officer Larry Page, Google’s privacy policy changes were strongly criticized.  I urge you to read the full letter.

 

Categories Web/Tech
Comments (0)

Learn How Google Handles Paid Directories

by Beth Alexander
February 24th, 2012

Paid Directories Seem Like a Good Idea to Help Generate Traffic for Your New Web Site but…

Not all paid directories are equal in the eyes of search engine giant, Google.

You have just launched your shiny new web site, now all you need is some traffic. Before you pay to have your website listed in as many directories as you can find, stop for a  moment and  consider how these paid listings could adversely effect your SEO results.  In the video below Matt Cutts of Google explains how they handle paid directories

Categories SEO
Comments (0)

Changes to Google’s Search Page Design

by Beth Alexander
February 20th, 2012

Cha-Cha-Cha-Changes…

Notice anything different today about Google’s patented search page design?  A new Google+  Share button now appears in the top right corner.  If you don’t yet see the button, have no fear it is being rolled out to all users this week.  While this may seem like a minor update, it is the first time the Google homepage itself has included any functionality other than search.

Personally having the Google+ share button on the search homepage doesn’t make sense to me from a user perspective.  Why would I go to the search homepage to share something with my Google+ network?

Google Plus Share Button Introduced

And that’s not the only design change in the works. In November of  last year Google announced plans to roll out a complete makeover of the Google Bar as seen in the video below.  But they quickly reverted back to the old design.  Clearly they are still searching for ways to get more traction for Google+ and improve accessibility for users.

On February 09, 2012 Google posted the following on the official Google Blog:

Two months ago, we announced our plans to roll out a new design for the Google bar. Our goal was to create a beautifully simple and intuitive experience across Google. Based on your feedback, we realized there were some elements of the new bar that we could improve, and with that in mind, we’re introducing an updated version that we believe will provide a better experience.

The new design retains many of the feature changes we made in November that proved popular, including a unified search box and Google+ sharing and notifications across Google. The biggest change is that we’ve replaced the drop-down Google menu with a consistent and expanded set of links running across the top of the page.

This redesign is slated to roll out “over the next few weeks”.  You can read more about the new Google bar here on the Google Help site.

Categories Web/Tech
Comments (0)
Next Page »

I Highly Recommend the Following:

Backup WordPress Easily WordPress Themes PluginBuddy Mobile Awesome WordPress theme framework: iThemes Builder Bluehost-Highly recommended for WordPress Sites HostGator Recommended for WordPress Sites Build Your Own Affiliate Program with WP Affiliate Program Quality, Affordable Stock Photos Imagine if every person made compassionate life-affirming choices on the knowing that all life is interconnected and interdependent. All in One SEO Pack Pro version
Follow Me on Pinterest
  Subscribe in a reader

  Subscribe by Email