Service simply does not happen – 2 weeks or not at all in many cases. Performance? 9 second load times for a WordPress site – Your customers are long gone.Solution? your own VPS. We moved to our own and are not seeing 2 second load times on the same WordPress sites!. The cost for a Managed service can easily run to $100 per month. We show you how to do it for $10-$20 per month!. To make it easy, we’ve written the book so it’s as easy as possible for you. Head over to Build your own vps

Build your own server book for sale on Jam88.com or buildyourownvps.com
Build your own server book for sale on Jam88.com or buildyourownvps.com

Beware of SiteLock – EIG’s latest scam

. They started offering a ‘service’ called SiteLock that is supposed to prevent you getting malware on your site and then help you remove any you get. They use levels from ‘Alert’ to ‘Repair’ and they charge hundreds of dollars. Sounds good until you look closely at the offer. What they offer is easily covered by free services, so no real value so far. Where it gets interesting is when they send you an alert. I received two on the weekend – one for each of two sites I own. I diligently checked the first site with WordFence and a malware scanner – All clean, so I asked for more info. Whilst waiting, I got another warning email for this site. VERY interesting. This site is not hosted at Hostgator (Used to be – months ago). The ‘site’ at Hostgator is am empty folder. How can you have malware in an empty folder? (Spoiler alert – You can’t). I asked for more info again. An image duly arrived of some random characters that were supposedly in my empty folder.

I have reported them to the ICCC (FBI and other Government agency website that investigates scams)

I did some research and discovered that SiteLock will infect your site with malware if you don’t comply.

So, if you know anybody hosting with an EIG company – warn them. They need to run away as fast as possible. Looks like I produced the ‘How to build my own Virtual Private Server’ book just in time.

SiteLock

In computing, virtualisation means to create a virtual version of a device or resource, such as a server, storage device, network or even an operating system where the framework divides the resource into one or more execution environments. Even something as simple as partitioning a hard drive is considered virtualisation because you take one drive and partition it to create two separate hard drives.

Devices, applications and human users are able to interact with the virtual resource as if it were a real single logical resource. The term virtualisation has become somewhat of a buzzword, and as a result the term is now associated with a number of computing technologies including the following :

  • storage virtualisation: the amalgamation of multiple network storage devices into what appears to be a single storage unit.
  • server virtualisation: the partitioning a physical server into smaller virtual servers.
  • operating system-level virtualisation: a type of server virtualisation technology which works at the operating system (kernel) layer.
  • network virtualisation: using network resources through a logical segmentation of a single physical network.
  • application virtualisation.

Personally, I use a Linux operating system but still need to use programmes like Photoshop occasionally. I use VirtualBox to create a virtual Windows operating system I can start and stop at will. It opens in a new window and so switching between operating systems is as simple as changing windows. VERY handy!!

File storage on one of my systems is a Western Digital MyBook Live – 2 drives in one case, attached to the network and accessible by all computers on the network. More virtualisation!.

Virtualisation is an extremely cost efficient way of sharing resources. Coupled with cloud technologies, it allows anyone to operate a very sophisticated and responsive enterprise on a low budget.

Obviously, I run a lot of sites, both for myself and my clients. Managing these used to take a loooong day every week. This overhead seriously affects earnings and, to be honest, is a major bore. Updating 30+ plugins on every site is not a money maker but, if you don’t do it or delay it to monthly, you are open to getting hacked (WordPress 2013 vulnerabilities ring a huge bell).

The answer I found was InfiniteWP’s brilliant programme. The usual plugin installation, combined with a simple installation on my server = A day of golf per week (Just kidding, I’m still here working!).

I update all my sites with one click every day. This FREE programe has saved me $30,000 a year – So what are you waiting for? (Oh, you have money and time to burn?) grab it quick before they want to charge for it. WordPress Issues.

A fellow Internet Citizen, Natalie Sisson, had a nasty experience with an external developer and lost her whole site, sadly, a frequent occurence when you don’t set up a robust backup system and learn how to restore it. “All was rosy and going sooo well. I was having one of my best financial weeks ever, especially since affiliate payouts come in the first week of the month……until Thursday happened.

I’d hired someone on oDesk to mobile optimize my site and was all set to tell you how it looked in this very email. Except it all went wrong and the guy somehow managed to screw up everything. I’d started noticing something was wrong on Sunday during the retreat when I checked and saw the site looking odd and content missing. Emails back and forth and promises of fixes from the contractor, and I carried on with my retreat, and then into a busy week.

More things were going wrong and I asked my friend to help with making a back-up of the site and see what he could do when I sensed this was all about to turn pear shaped. Then on Thursdy morning I woke up to find that I no longer had a website. I had a ˜forbidden request denied error message on a blank page.”

I had clients last year who got hacked due to the shortcomings of WordPress itself. It took less than 10 minutes to fully restore 2 whole sites due to having good backups. For WordPress I reccommend Updraft plus for backing up, UpdraftPlus is the highest-ranking backup plugin on rankwp.com (ranks in the top 50 out of 30,000 WordPress plugins for quality on rankwp.com and it’s free.

It simplifies backups (and restoration) by backing up to the cloud if you have your own Amazon S3 account, or Dropbox, Google Drive, Rackspace Cloud, DreamObjects, FTP, SFTP, SCP, WebDAV, OpenStack Swift, Bitcasa and email – yeah that’s a lot of options right there and restores with a single click. Backups of files and database can have separate schedules.

That’s why you need quality advice from professionals – We’re here to help you all the way. Cloud Storage and Backups. Do you do backups? Bet you don’t!! We all mean to backup our data but always seem to find other things more interesting to occupy our time. One day, the dreaded nightmare happens – a drive fails, your laptop or phone gets stolen! Yup, been there, done that (twice) myself.

Had a hard drive fail and lost all my emails when an ISP wiped them and denied doing so! The solution that suits a lazy (or busy!) person is to have a ‘set and forget’ solution. This is where a synchronised cloud storage solution is brilliant. I have a desktop folder I can drop items into for backup and can also set which individual folders on my system I want synchronised in the background (Documents, Photos etc.).

The advantages don’t stop there, I can access my files from an internet cafe or the library, from a phone

Someone asked me a question about RAID recovery options for an array they were going to set up. My advice was :

Use Raid 6, hot swap drives, SMART monitoring and ext4 format. Personally I don’t like raid 0 as it is a helluva job to recover (Happened twice to me). Yes, there is a speed advantage but speed is rarely needed for storage (For the OS and programs, mirror two ssd’s and back them up constantly).

I prefer mirroring drive to drive as you can recover a ‘standard’ drive more easily on it’s own, outside the array. I understand the speed advantage, but would use ssds (for a small array) or 64mb cache sata 6 5400rpm Western Digital Red drives. (Reds are best for enterprise work. Blues / Eco spin down frequently so fail early, Greens are ‘domestic’).

Faster spin speeds fail faster and are more delicate IMHO. I’ve never had a good run with Seagates. Basically, they are the only manufacturers in the game and relabel their products for others. Format? Ext4 (ZFS is better, though more exotic, but I doubt you would find a recovery program, THOUGH – see below). ZFS wil require you to become a master. Personally – few people use it.

Overall, I would go for hot swap mirrored drives (with a hot swap spare, making 3 drives – 2 in use, one on standby, mounted and ready to go) and just bypass the whole recovery issue. It will take up to 5 days to read a 4tb drive, then mark the files to recover, then recover them (another 5 days). Simply not practical and useless to the customer “Sorry, it’ll be 2-3 weeks to recover your data”.

I think recovery is a redundant concept as the drives are just too big these days. If you must: Recuva, Easus Paragon, Stellar Phoenix. Quick PS. The Seagate ‘recovery’ service they offer – Useless. It HAS to be recoverable with THEIR software. They couldn’t recover one drive but the guy tried Paragon and got it all but wasn’t allowed to use it to recover the files because the Seagate software is a franchise and you have to use the Seagate software on Seagate drives to get paid.

Despite my efforts to secure my websites outside of WordPress, I do run some plugins to enhance security. I use Wordfence set to :

  • Lock out after how many login failures = 3
  • Lock out after how many forgot password attempts = 3
  • Count failures over what time period = 5 or 10 mins.
  • Amount of time a user is locked out = 60 days.

I also use these plugins:

  • Anti-Malware and Brute-Force Security by ELI,
  • CloudFlare (Content delivery cache and helps because it stores ‘local’ copies in each country),
  • Exploit Scanner,
  • Injection Guard (This is new and should stop soaksoak)
  • Quttera Web Malware Scanner,
  • Sunny (Connecting CloudFlare and WordPress)
  • UpdraftPlus – Backup/Restore (store a copy on dropbox as well to be safe).

These have kept me safe on 55 sites over the last year (except for the Revslider ones attacked in the recent Soaksoak attacks).

Wordfence and Sucuri don’t find the files unfortunately the only possible plugin that would help is Anti-Malware and Brute-Force Security by ELI. I’ve toughened my .htaccess files which is the real solution. Not sure what you know and don’t know, so just ask if you’re not sure.

I assume you have cPanel access to the server. WordPress installations are identical across every site, EXCEPT for: The wp-content folder (Stuff you have uploaded like pics and movies (NOT posts/pages)). The wp-config.php file in the home/top directory.

The MySQL database (Hidden from your view on the server) So……… Go into cPanel and do a search (From the highest level) for: swfobject.js template-loader.php Delete them (They should all be in the wp-includes folders of each site) Download a new copy of WordPress from wordpress Upload it to a new folder on your server Unzip it.

Choose a site (Do all sites to be sure) Delete wp-includes and wp-admin folders. Delete all files in the home/top directory (Except wp-config.php) Go into the ‘new’ folder Copy everything (except the folder wp-content and file wp-config.php) to the site folder (Replacing files and folders)

Now, check EVERY wp-content folder for ANYTHING that is not .jpg, .gif etc. (I.E. Anything you didn’t upload. ANYTHING with .js or .php is likely malware. Delete the .htaccess files (They will regenerate automatically) Personally, I deleted every caching plugin and used the WordFence Falcon engine (under Performance). This also clears the rubbish stored on the server as there are bad pages stored and they will ‘phone home’ when delivered to a browser, thus repeating the cycle.

Also, clear the cache on your browser before viewing the results – EVERY time you view a page (of any of your sites)!! keep it clean fanatically until you have finished. I was using InfiniteWP with great success and still think it’s great, but I ran across MainWP to manage all my sites. MainWP does everything InfiniteWP does and a whole lot more.

With MainWP you can bulk install and activate plugins, and globally control almost every aspect of your sites. I often use it to post articles and install new plugins across many sites. I update all plugins, themes and WordPress updates on a daily basis to ensure I avoid malware and hacking attacks caused by outdated software.

 

I was using InfiniteWP with great success and still think it’s great, but I ran across MainWP to manage all my sites. MainWP does everything InfiniteWP does and a whole lot more. With MainWP you can bulk install and activate plugins, and globally control almost every aspect of your sites.

I often use it to post articles and install new plugins across many sites. I update all plugins, themes and WordPress updates on a daily basis to ensure I avoid malware and hacking attacks caused by outdated software.

A CDN is a Content Delivery Network. Cloudflare is the most popular and common tool used for this. CDN’s make a copy of your website and store it in many different countries so the visitors from that country can be served your content faster.

Instead of fetching it from your server in Australia, it is delivered from the CDN in the UK. This speeds up your website by reducing the server load. It also has a less well known advantage – It reduces hacking success because the hacker is served a ‘shadow’ of your site not the real thing from your server. Hard to hack a shadow!

Most CDN’s allow targetting. This allows you to provide your target market with content faster and more effectively. They also provide geo-blocking, which allows you to deny visitor requests fom any country you choose – a very useful tool in the war against hackers and malware.

Using a CDN has reduced hacking attempts massively, though unfortunately, one of the top 4 countries for hacking is the USA, so it’s hard to prevent completely if you sell into that market.

“I have an idea for a social media app, kind of complex and will need professionals. Should I hire an expensive company or freelancer?”

*Someone* has to design the functionality, user interface etc. and then build it. This person has to think of every ‘What if?’ (people pressing wrong buttons and the ‘flow’ from page 1 to the destination page and then design the software to do that. *someone* needs to define the NEED that that app will fulfil. The chances of finding all these skills in one person is zero. Zuckerberg did not write FB on his own.

A team of experts who have worked together before will be better able to cover: Functional design Graphic design UX design Software design – Multi platform compatible Software creation Testing and……Provide a guarantee and warranty period.

Never mind your vision – What is the NEED you are satisfying? You MUST meet a need or it will die. Digg is great, Pinterest is great but neither meet any of my needs so I don’t use them. So it’s a dance between vision, needs and marketing. That dance will lead to a refinement of the need (“What if it could do X as well?” – “WOW!, yes please”)

Define that, do market research and feedback sessions and LISTEN to what the buyer wants (as opposed to what you want to sell). Refine and retest, define the demographic. Remember too, that ‘Students and pensioners’ don’t have money to spend, so, if you are charging, target what the spenders want.

You may also uncover other versions targeted to different markets. E.G. a ‘Personal only’ FB for extended families, a ‘Business FB’ for individual companies. So now we have 3 marketable versions of FB – Private, Company and Public.

All different niches with different variations of the same product. Then go to the ‘Construction’ phase with a clear plan and the research in hand. (Research and development are not the same skillset, so use two specialists). Me on Quora