Guest Post

[Guest Post] WordPress Promises More Blog Traffic With The New Follow Button

This is a guest post written by Joel Newman. If you would like to write for WebGuide4U, check out guest posting guidelines here.

WordPress has just launched a new follow button for all WordPress blogs as a means to drive more traffic to a personal or business blog. WordPress has developed this follow button to improve page views and increase visitor retention on a blog.

Anyone who isn’t logged into WordPress can visit a blog and find the follow button at the bottom right corner. When the user clicks on this follow button, they will be prompted to enter their e-mail address so that they can be notified whenever a blogger adds a new post to their blog.

This follow button is similar to an e-mail subscription, yet WordPress believes that users are more likely to click on the follow button as opposed to a “subscribe” button to track a blog day-to-day. Many users shy away from the word “subscribe” since they feel that they may have to pay for a subscription or will be signed up unwillingly for e-mail spam.

Thanks to the world of social media, a follow button has a friendly association. Most Internet users follow their favorite brands or celebrities on websites like Twitter and Facebook. However, this WordPress follow button is not to be confused with social media; the purpose of the follow button is to provide a blog visitor with an e-mail subscription to receive updates on new blogs that are posted.

If a blogger doesn’t want to display the follow button on their WordPress blog, they can shut off the feature automatically by going to their dashboard, clicking on settings, clicking on reading, and clicking on e-mail. The button will only show up for users who aren’t logged into WordPress. If a user is already logged into WordPress, a follow button is located on the admin bar at the top of the screen.

So what are the advantages of the new follow button by WordPress? This button is going to cater to users who are not logged into WordPress and are interested in following a blog regularly. WordPress has added this feature so that bloggers can gather more traffic by encouraging visitors to subscribe to their blog feed.

Time will tell if other subscription features on WordPress will have the same name change. WordPress is continuing to study the impact of names and wording on all of their features; WordPress has only changed from “subscribe” to “follow” in this example because they believe that it will benefit bloggers by making visitors feel more comfortable in subscribing to a blog feed.

Author

Bethany Ramos is a full-time freelance writer that co-owns her own e-commerce website, The Coffee Bump. The Coffee Bump specializes in a wide variety of Bunn coffee makers and assorted coffee and espresso products.

[Guest Post] Your Company’s Web Apps Are Actually Gaping Security Holes

This is a guest post written by Joel Newman. If you would like to write for WebGuide4U, check out guest posting guidelines here.

According to the recent Web Application Attack Report (WAAR), released by pioneers in data security solutions, web applications remain vulnerable to attack. Most of the recent data breaches have been done using botnets on web apps like data systems and email. As large-scale web applications take more time to patch vulnerabilities, hackers get ample opportunities to hack web applications even more. Moreover, this kind of automated attacks using botnets makes it even more difficult to trace the source of the attack.

The most prevalent attacks have been SQL injection, cross-site scripting, directory traversal, and remote file include. Most of the attacks on web applications using botnets are done in two steps: scans the target system using cross-site scripting and directory traversal, and then attack it using SQL injection. Given the huge amount of data handled by web applications, this makes a sensible approach; otherwise, the botnets have to spend more time to scoop out all the data.

In a web application, a request flows from a web client to a web server through HTTP either as a SOAP request or in other XML form. In all web applications, the design of security module plays an important role and it varies from one organization to another. If an attack can pass through a security module by creating fake privileges and authenticated sessions, then the attack can easily pass through other layers.

Depending on a server’s resources, an attacker can create a buffer overflow to gain access to a web application. In this case, an attacker typically constructs an XML request, and makes it call upon itself recursively until it is overblown and causes a memory overflow error. Every web server has a limit to handle the size of an incoming request. Therefore, when the server receives a very large incoming request, it crashes with an error message, which reveals some information about the web application to the hacker.

Even though SQL injection can easily be prevented, it remains one of the widely used methods by hackers to extract data from web applications. If a web application does not validate the incoming data, then the hackers can manipulate SOAP messages with malicious data and get them executed in the database. A hacker achieves this by attacking XML Schema files. An XML schema is like a grammar file that contains preprocessor instructions to validate an XML file. If an attacker can damage or manipulate XML schema files to permit malicious XML request to get through, then false SOAP messages can easily pass through the application to inject commands or query the database.

Some enterprise applications have different layers of privileges and security modules assigned for every user. This kind of design checks a user’s privileges and security rights at every phase of execution. In such cases, hackers look for ways to hijack a session of an authenticated user. Session hijacking is a method to gain illegal access to a valid user’s session state. As a user’s session details are sent back and forth while accessing a web application, a hacker can sniff the SOAP message and can hijack the session id. Depending on the privileges associated with a hijacked user, a hacker can penetrate to that level in a web application.

A huge enterprise web application connecting various departments handles large volumes of critical data on a daily basis. In that case, a small level of data breach typically goes unnoticed and can lead to large data theft. Moreover, some web applications continue with minor security flaws as fixing security patches or redesigning would take more time, and from hackers point, these minor loopholes turn out to be advantageous for them.

Author

Rebecca is a blogger by profession. She loves to write on technology and lifestyle. Beside this she is fond of gadgets.

[Guest Post] Top 25 jQuery WordPress Plugins

This is a guest post written by Joel Newman. If you would like to write for WebGuide4U, check out guest posting guidelines here.

jQuery has gained recent popularity due to its open source, free JavaScript library. jQuery is advanced, powerful, and easy to use and works best when combined with jQuery plugins. These plugins are used by a number of designers and programmers to enhance the design and animation of a website. The plugins can also be used for creating customized web apps for better visitor interaction. [Read more…] about [Guest Post] Top 25 jQuery WordPress Plugins

[Guest Post] Is Google Being Anti-Competitive?

This is a guest post written by Rebecca. If you would like to write for WebGuide4U, check out guest posting guidelines here.

Google has always tried to position itself as the champion of the open web. In spite of repeatedly claiming to be the antithesis of the evil corporation, the recent anti-trust inquiries in the European Union and the United States have brought the Google monopoly issue out into public focus. The question of whether Google is being anti-competitive needs to be looked at in perspective.

The problem is that there are two different perspectives – that of regulatory bodies and the competition themselves, and that of Google and the users of Google’s varied web services. Both these perspectives are sound by themselves, especially from a business point of view.

What is not so sound, though, is the high moral ground that all parties in this debate have been claiming when contrasted against their actions.

The war against restrictive practices in the computing and web services industry dates back to when Microsoft was taken to task over bundling Internet Explorer with Windows. Sadly, the so-called protagonist of that particular battle, Netscape, has been buried by history. Microsoft continues to retain its position as an industry leader even in a scenario where many of its solutions are fast becoming obsolete as computing itself undergoes a revolution.

Google entered the picture at the same time, offering open web solutions whose only possible claim to restrictive practice, at least at that time, was that they were far superior to other available services. Over the years, Google became the new protagonist, initially by garnering the pole position in the search war.

This gave them an edge over other players in terms of advertising revenue. They followed up by introducing a host of other web and computing services including operating systems, codecs, and a browser. Their latest forays into the Android OS for mobile devices and Chrome-books further consolidated their position.

Somewhere along this journey, they have ended up looking more and more like monopolists, at least to their competition, and recently, to regulators as well. Google defends this by claiming that it is their broad footprint in the web services segment that leads to this perception. Official say that it is their endeavor to provide the best-in-class user experience that results in their products and services leaving the competition behind.

Google users have also their own logic of accepting practices like adopting the proprietary Adobe Flash player, or developing an alternative to JavaScript. They point out how Google’s applications and services have actually helped loosen the monopolistic stranglehold of the industry giants. Cloud computing is a case in point. Google introduced its cloud-based document storage and processing services as an “alternative” to Microsoft’s Office suite, the longstanding staple of business computing.

This, however, was followed up by the launch of the Chrome browser, and the Chrome OS for net-books, and then Chrome-books. With most new features in their services being released as Chrome-only, this can be seen as an anti-competitive stance. The reason that many observers will not agree with Google as being monopolistic is in the fact that in the field of web services, the competition is merely a click away, and in no way prevented from attracting the user base.

Many will point out that, were it not for the Google Docs service, Microsoft might never have come out with a similar version of their Office products. Both Google Docs and the cloud based Microsoft offering have come as a major blessing for users who for years have had to cough up the dollars for every Office upgrade.

However, in the haze of claims and counter claims, one thing stands out clearly. Over the last 13 years, Google has made strategic decisions that are inconsistent with its self declared role of guardian of the open web. How this pans out in terms of fair play practices in the corporate world is something that remains to be seen.

About the author:

Rebecca is a blogger by profession. She likes writing articles on gizmos, technology and travel. These days she is busy in writing her new article on hacking tools on internet.

[Guest Post] Top 5 Free WordPress Themes

This is a guest post written by Sathish. If you would like to write for WebGuide4U, check out guest posting guidelines here.

WordPress is a popularly used Content Management System (CMS) for blogging. It comes with various themes, some of which require payment but there is no shortage of free WordPress themes. Like with any product, or software, in the market, you will find quality of all sorts and so it is with WordPress themes. As such, even though what you are going for is free, it is still important to ensure that what you get is of good quality and will be efficient for the kind of blog you intend to create. Some of the top free WordPress themes include:

01. Copyblogger theme

Created by Chris Pearson, this WordPress theme has gone through a few modifications where now users can choose to either have two or three columns. Copyblogger is also said to be SEO friendly so you might want to consider this Open Source Candy WordPress theme.

02. Elements of SEO

The purpose of a blog is to communicate a message and incite a comment or reaction. For people to get to the blog the page needs to be appealing and this free theme is known to elicit exactly that. With professional looking themes, most businesses can benefit from this theme and it is easily compatible with any adjustments or additions that may come about.

03. ProSense

This is an easy theme to work with as it is effortlessly customizable and comes already integrated with Google Adsense. It is simple to create themes using ProSense and it has the added advantage of being SEO tailored. Use it to create your niche blog without worrying about content placement.

04. Arras Theme

A WordPress theme need not only be free but appealing as well and Arras theme is jus that. This theme has three columns which can highlight images and text. Interesting aspect of this theme is that it has a slide feature thus it’s convenient to use for magazine or news blogs. The glide feature makes the theme attractive as alternating images can glide one after the other.

05. JournalCrunch

This theme is easy to set up and is good for portfolios as well as magazines. It’s a WordPress 3.0 theme.

Like these themes? If you are using any of them, let me know via comments and do not forget to follow WebGuide4U on Twitter for more updates on WordPress Themes.

Author Bio

Sathishkumar is a Blogger and Internet Marketer from India. He now works for Pixloo, a free Virtual Tour services company.