Save 40% on Web Hosting @ DreamHost. Offer ends September 21, 2017 3PM PDT

How to Increase Max Input Vars on GoDaddy Shared Hosting Account

When setup some of the WordPress themes, you may see Maximum Input Vars notification. It asks you to increase Max Input Vars in your host to be able to use the theme. After searching for help, you may find several options. But in my case for a WordPress installation on GoDaddy shared hosting account, only one works.

Continue Reading →

Disable WordPress Author Pages

Author page is part of WordPress by default. Without manual change, author page URL exposes user login username. From SEO point of view, it may also create duplicated content. For blog website, author page is useful when there are multiple authors. For non-blog site, especially for site without no blog post, it is good idea to disable the access to author page.

Continue Reading →

BackWPup: A backup job has started, but nothing happens

BackWPup is a very popular comprehensive WordPress backup plugin. I use this plugin on some of my websites, and really don’t have any major problems with it. Sometimes, there were bugs here and there, but were quickly taken care of by the development team. But just yesterday, I faced one very strange problem I never met before. After setup a new backup job and hit the “Run Now” button (link), nothing actually happens. Even a short description says, “Job (job name) has started”, no backup file can be found in the backup folder.

Continue Reading →

Troubleshooting WordPress: Disable All Plugins?

Troubleshooting a WordPress website is challenging. Troubleshooting a live site posses more challenges. You may have read a lot of advice on the Internet from somewhere, among which, “disable all plugins” is one that mentioned most.

Should you?

Continue Reading →

WooCommerce Template Customization: Mobile Responsive Product Quantity Input Template

Although WooCommerce default page templates are mobile responsive overall, further polish is required to match the theme for each specific project. In one of my latest projects, I ran into the problem with default WooCommerce product quantity input box. It is designed for desktop browser, using a mouse and / or keyboard as input device. On mobile device, especially smartphone, changing product quantity can be fussy.

Continue Reading →

How to Clean Up a Hacked WordPress Site

One of client’s WordPress site got hacked. The client can’t access the site, even admin dashboard at the back-end, because the site is always being redirected to a phishing site: http://www.indoforextrading.com/. If you run into exactly same problem, here is how I fixed it.

Continue Reading →

My Top 20 Most Popular WordPress Plugins 2014

I like listening to Matt Report podcast (A WordPress business podcast for entrepreneurs, startups and freelancers). One interesting question Matt asks his guests in the famous lightening round is, “What is the one plugin you can not live without?”. Interestingly, like myself, most guests vote “Gravity Forms” as their favorite plugin. I trust statistics more than personal feeling and know Gravityforms is my favorite. But curiosity drove me to dig deeper on this subject. I indeed conducted a study to gather statistics among WordPress sites I have access to the admin panel. The result is obvious, and also surprising.

Continue Reading →

Top 25 Worst Passwords of 2014

In previous post, I showed you how to possibly discover username on a WordPress site using WPScan. On a regular site without extra layer of security such as 2 factor authentication, username and password are all one needs to gain access to WordPress dashboard.

WPScan has “brute force” option which can brute force test (or say attack if you like) any WordPress site. To use this feature is easy, a valid username and a common password wordlist.

Continue Reading →