• Watch Out for Scam Emails

    Posted Apr 24th, 2012 By in General Information, Security With | No Comments

    I have written in the past about Scam email practices, specifically those who note that they can optimize your website for first page ranking on Google, etc.  As I’ve noted, in most every case the email promising to help your website with SEO isn’t professional, doesn’t provide a phone number, nor do they have a website, … which are clear indicators of a scam!

    Today I received a email from a company, with a website, which had signed me up for their email list (without my permission).  This company noted that they had visited my website and noted that I wasn’t using any “proactive controls to protect itself against Hacker Threats & virus infections”.  The purpose of the email was to get me to purchase their software. 

    Their actual email follows:

    Dear Business Owner
    Greetings from Hackers Locked , USA !  I discovered that your website is not using any proactive controls to protect itself against  Hacker Threats & virus infections .  Did you know that you may also be loosing on sales due to this ? Well you deserve better sales and profits and I would like to help you with that.  Hackers Locked Trustmark cost’s 399 USD but I would offer that to you for 99 USD !!  Please feel free to take advantage of our special offer and get protected today !

    Regards
    Sam- Chief Security Architect
    Hackers Locked INC
    (url removed to avoid linking to a scam website)

    I went to the website, and it looked legitimate, so I replied to the email and noted that since my website is XHTML, and my Blog is secure, in what way was my website not secure, especially considering that hacker threats and viruses (actually Trojans, a virus affects an operating system not a website database) need an unsecured database for access?

    The reply I received from “Sam” was:

    “I will be honest with you , the mail was an attempt to capture attention of some of the website owners that were shortlisted from our research . So in a way its just creating awareness , ofcourse I am happy if we grow our network of clients too. However its not my motivation specially when I offer my product at a throw away price of 99 USD :) Trust me on that one.”  Sam went on to reference how websites can distribute malware and get blacklisted in all major browsers, and how most virus infections take advantage of security problems in your website.  He concluded with the idea that their software allows one to do an ethical hack to see where vulnerabilities lie. 

    Ok, trust you, no, I don’t think so.  What Sam wrote had little to do with what I noted … shortlisted from our research (really?), and when a company starts off with a fraudulent claim that “I discovered that your website is not using any proactive controls to protect itself”, I find the email amusing at best. 

    The reality is, everyone loves to use fear tactics to get you to purchase something. The idea of ethical hacking to look for vulnerabilities of a website on a network is a good one, but as I had noted to Sam, a virus affecting one’s personal computer would not infiltrate to a network, well unless one used their own “personal” hosting server with direct access to their personal computer.  We live in an age where most people use good Virus Scan and Trojan removal software, and most hosting servers are extremely secure.  Assuming you do have a decent virus scan software, guess what, it will include test options to check for port vulnerabilities on your personal computer, email vulnerabilities if you use Outlook instead of Web Mail, and it will include a check for browser vulnerabilities, the ability to hide personal data, etc. 

    The long and short is security for one’s personal computer is handled by good virus scan software.  Security for your hosting server is provided for by the hosting server company.  And security for your XHTML website is not needed since it can’t be hacked (there is no database).  For those who use a CMS website such as Joomla and WordPress, there are frequent updates which are provided to improve the security of the application.  As for other CMS applications, such as the many shopping carts and other blogging applications, sure, some of these may get malware by way of a SQL Injection.  The important thing is to do some research before you install any CMS application to see if there have been security problems.  Next, be sure to read up on what is needed to secure it properly.  Typically this involves deleting the install file, creating a good password for the database and administrative area, securing the configuration files by changing file permissions, and removing personal data about the CMS application and version used where possible.  But again. these concerns have nothing to do with what the email noted. 

    In summation, it is important to have a secure computer, hosting network, and website, but before you pay for something, be sure that the application is legitimate (and needed), and not one seeking to prey on your fears of what could happen.

  • Facebook Timeline Apps

    Posted Apr 23rd, 2012 By in Facebook, Social Media With | 1 Comment

    If you use Facebook, and want to make it engaging for your business page, it can be challenging to know which Apps to use. I recently received an email from one of my clients who inquired about contest/sweepstakes Apps. Ok, so I’ve done some searching in the past, and thought this would be a good time to post about what to look for in an App, and where to find them.

    Firstly, if you do a search on Google you will find lots of Apps for Facebook. The problem with a global search is that many of the highly ranked FB Apps will not be current with the last FB “Timeline” version (Google ranking is based upon visits to an App page over time, not necessarily new content). My suggestion is to visit websites which feature a large number of FB Apps, and which provide reviews. You might try a search, something like “Best business timeline Apps for Facebook”, or “New Facebook Timeline Apps for business”, etc. The choice of words in a boolean search query is important to ensure that the App is compatible with Timeline and that the Apps are for business pages, not personal profiles; I noted compatible, since for one, the new timeline width dimension for the IFrame content is significantly wider than the previous version which was within the FB layout (navigation used to be on the left sidebar), and other older Apps just don’t work properly with the new FB.

    As you may know, in the past you were able to have custom tabs on the top or left sidebar, and by using an I-Frame you were able to link these tabs to custom content, or the rendered App content. With timeline, the tabs (now icons) are only shown on the top-right, just below the custom cover image. To make it even more challenging, the first two “photos” and “likes” are shown by default (so can’t be removed), and then only 4 icons are shown, with the rest hidden until the arrow is clicked. As a bit of testing, I went to the App settings for photos, and tried to remove it from visibility, sure, you can disable it, but yes, it’s still there.

    I note this since it makes it very challenging to get a visitor to actually view your App content. My suggestion is to create a graphical banner or Ad that provides a direct link to the App. When you add an image to Timeline, you have the ability to add a text description. Since the image itself isn’t linkable, include some text about the APP (promotion, newsletter, event, etc) with a link to the App. Next you “pin the App to the top” so that it stays in place at the top of your FB page even after new images or status messages are added. You do this by mousing over the new post and selecting the pencil icon (next to star) and choosing “pin to top”. Note that you can also feature a new message by selecting the “star” icon when you mouse-over it, and choosing to “highlight”.

    Ok, so going back to Apps, first you need to find some good ones which are compatible with Timeline. One place I often visit is AppBistro: http://appbistro.com/ On this site choose the option to “sort Apps by Newest”, which will help prevent outdated Apps from coming up. Next read the features list, the review from AppBistro, and the comments of visitors (I should note that I like the AppBistro reviews, but they are unquestionably biased since their purpose is to get people to install and/or pay for the App in some way). Next go to the App website, assuming there is a link to one, and read more. My suggestion, never install any App that doesn’t have a free option, and that doesn’t have a significant number of “likes”. In some cases the commercial Apps may be better, but always test drive the free option first to ensure that you do in fact like the functionality and that it is easy to use, and avoid monthly subscription Apps unless you have a big budget for such.

    Once you’ve found the App that you want, you’ll need to install it. If all this is new to you, when you choose to install an App, you will be asked for permission to access your Facebook. Assuming you do want to install it, and trust the source, then reply with a “yes”. After the App has been installed click on the “Admin Panel” at the top right column of your FB page screen. The admin panel opens, and at the very top is “Manage”. Click the arrow and select “Edit Page”. At the left column you will see the settings area. About midway down the listing you will see “Apps”, click on this. I note the Apps panel area in FB since in many cases you will want to edit the settings (configuration of the App will be on the App website, but this area is where you will be able customize some of how it will be viewed on your FB page). In most every App case, you will see the options of “Go to App”, “Edit Settings”, and “link to the Tab”. The go to App option will take you to the App page, which in “most” cases is where you will edit the settings, especially for IFrame apps where custom HTML content is added. The link to the tab option will provide you the URL of the App, which is handy (of course you could also get this from the address bar of the App page in your FB); and then we have the settings area. For the custom Apps, you will have the option to rename the App, and to remove the Tab (icon) from view on your page.

    Note that with FB, a few apps are added by default. If you disable/delete them, then will move to the bottom “Apps You May Like” section.

    Additional Resources:

    FaceBooks Timeline Apps Video
    http://www.facebook.com/help?faq=105925952849619

    Facebook Time Apps Listing
    http://www.facebook.com/about/timeline/apps

    The Best Facebook Timeline Apps
    http://oursocialtimes.com/index.php/2012/04/what-are-the-best-facebook-timeline-apps/

    The First 12 Apps You Need To Check Out For Facebook Timeline
    http://www.businessinsider.com/the-first-12-apps-to-install-for-facebook-timeline-2012-1

    Facebook Apps For Timeline: Social Network’s Top 17 Recommendations
    http://www.huffingtonpost.com/2012/03/26/facebook-apps-for-timeline_n_1381351.html

    10 Best Facebook Page Apps for Timeline
    http://socialmediasun.com/best-facebook-page-apps/

     

  • New Website or Full Redevelopment

    Posted Apr 21st, 2012 By in General Information, Resources, Web Development With | No Comments

    If you are interested in a new website, or a full redevelopment of an existing one you need to have your content ready to move forward. The problem is that most people aren’t prepared for what is needed (and often feel overwhelmed with the idea of getting everything together), and this lack of preparedness is the primary deterrent for most perspective clients, and the reason why many websites are quoted much higher than they need to be. If you need a website, yet don’t know where to start, this blog post is for you.

    Step 1: Define the type of website you need.

    What I mean here is that there are static websites and CMS (Content Management System) websites.

    A static website is best for people who want the freedom of customization across the pages, and the ability to incorporate diverse scripting. A static website is highly secure since it doesn’t require a database to store the page content and therefore can’t be hacked. Since static websites are not template based, they can be easily customized, and in most cases dynamic content can be incorporated into a static site as individual inclusions. The downside is that web design software is needed for the editing of the pages, so in most cases a designer will need to do the updates.

    A CMS website is best for people who need dynamic (database driven) content such as blogs, forums, event calendars, e-commerce, polls, etc. and who want to administer (make changes to) the content them self. CMS websites are template/theme based, meaning that each page is dynamically created, so the page/post content is rendered into a common template/theme. The downside is that there is less freedom of customization since each page type is defined by the template page that is assigned to it, and yes, most CMS websites can be hacked (known as a SQL Injection). CMS websites can be customized (similar to a static website) yet in most cases the customization is not a quick process since PHP (not HTML) is used as the coding, and so customization is rarely inexpensive. Finally, most CMS templates/themes provide only a few different page options.

    * On a side note, I have found that while many people initially like the idea of a CMS since they don’t want to pay a designer for making changes, most end up not making the changes them self since CMS websites are often complicated for the non-techy / designer type. In addition, most clients don’t have image editing software for resizing/cropping photos, and few find the time to really learn the program and design elements well enough to render the pages consistently over time.

    Step 2: Define the Scope of the project

    The Budget: If your budget is low (less than $1000) you will need to be realistic about your expectations. In many cases I will get a quote request where someone will want the “whole caboodle” yet only wants to pay $600. Ok, if this is you, then you need to go take some web design classes and learn how to create your own website. Any designer who only charges a few hundred dollars for a website is either very green and inexperienced, or is related to you. As a rule, most small to mid-sized websites will range is cost from $1000 to $4000. Industry level websites will be consistently more.

    Customization and Cost: When you require a high level of customization, the cost will typically go up. In many cases a perspective client will want a script to do something, and unless there is an open-source or commercial option that can provide this functionality, you are looking at the need to hire a custom coder (which most designers are not), and to hire someone for this won’t be cheap. Ask yourself, is there an option already available that provides most of what you want? If there is, and your budget is limited, go with the established option.

    Layout customization is another factor that can increase the cost. As you will see with a bit of searching, most websites have common page elements, ie header, navigation placement, primary content area, sidebar, footer, etc. When one deviates too much from a standard layout format, the cost will increase.

    Form customization is also a potential cost consideration. Most contact forms are pretty straight forward. If your form needs are many, such as multipart, conditional fields, tool-tips, captcha, etc, the cost will increase accordingly.

    Gallery development can also take a lot of time, so ask yourself if your need is simply some images on a page, or a entire gallery? Gallery option vary a lot, and the common choices are jQuery Lightbox or PrettyPhoto, and Flash. jQuery is definitely the best option since it ADA compliant, whereas Flash galleries are not.

    Step 3: Define the pages and their content

    When thinking of a new design, or a full redevelopment is necessary to brainstorm on exactly what you want. In this regard I suggest visiting several of your top ranked competition’s websites and taking notes about what you like. There are common pages across most websites which will include: home, about us, contact us, services, and testimonials. There are many other options as well, such as company directory, clients, faq, white pages, press, etc. As you browse your competition websites you will get a good idea about the type of pages you need and the type of content each page should have. Keep in mind how you want each page named and titled. If you need PDFs converted from Word Docs, need video streaming or embedded from YouTube or Vimeo, need a calendar or events manager, need a newsletter signup form, etc…then each of these need to be defined and noted to your designer. View our Free Quote page for a listing of the most common page types – http://www.ecurtisdesigns.com/free_quote.html

    Step 4: Define the Design look/feel

    In many cases you will have an existing logo, one often used for print marketing. It is important to retain a consistent look across media, so (assuming you like your existing logo) then you need to provide this as a high quality image, where possible, to your designer. A good designer will sample the color values, and consider the design styling, and then convey these in the new design. So for example, if you have a blue, red, white, grey, and black logo, then these colors should be used as the website colors where appropriate.

    Next, with consideration of the type of pages you will have, look at your competition, and other websites you like, and take notes about what you like for each. Here we look at the styling elements such as the navigation (look,  its placement, and functionality), the header design type/style, the use of animation, the layout (one column, two column, three column), the type of content added to the sidebars, differentiation of content across the pages, how the footer is used, etc. Again, the more specific you are, the better chance your getting what you want from the designer the first time, and with less revisions comes less frustration, and less cost.

    On our “Steps of Development page” we have provided the representative steps that we go through with each client. Step 2 is “Representative Model” which is followed by navigation and header design since these are important design considerations. You can view this page at http://www.ecurtisdesigns.com/steps-of-development.html

    Step 5: Social Media Integration

    For most websites, a key to effective marketing is social media integration. Most business will have a Facebook page, and many use Twitter, LinkedIn, and Google Plus. If you intend to use these then these should be incorporated effectively on the website. As with the layout look/feel, you may decide that you want the icons as small inclusions on the header and/or footer, or you may want something larger, such a button or banner, a Facebook “Like” box, a Twitter Feed inclusion, etc. If you need assistance with creating a social media presence, many designers will help you with this for a cost. My feeling though is that in most cases the business owner can adequately create, and administer their respective social media content.

    Step 6: Gathering Assets

    Once you’ve defined all the content you need, it needs to be provided to the designer in an orderly way. If you provide scanned documents and brochures to the designer, he/she will be required to type out your content. This takes time, so you will be charged for it. The best thing to do is provide text for the pages in “Notepad” (Programs/Accessories/Notepad). Notepad is better than MS Word since it doesn’t have any special formatting and can be copied/pasted into a web page without editing. PDF content is also a problem, since like Word, it will have its own formatting in place in most cases. My suggestion is to create a separate notepad text document for each page, and then name it based upon the defined page name. Add your content, and then save all the notepad text documents in a common folder. It is important to remember to proof your text, which means check for spelling, grammar, and logical flow. Copy writing and proofing is additional to the web design cost, so unless you want to pay to have someone else write/correct your content, you best do it yourself.

    After the text content is ready, you want to ensure that you have the images needed. If the images you have need editing, then indicate this to the designer. Editing might include cropping part of the picture, optimizing the contrast color, resizing, repairing, colorizing, etc. If your images are part of print marketing, such as a brochure/flyer, then it is best to have the designer scan them unless you have a good scanner. Note that the web uses 72 dpi, and most digital cameras will create an image at 200 or 300 dpi. You can provide them this way to the designer, but this will require them to lower the dpi to ensure that the images load fast. As for image formats, most designers can work with .JPG, .PNG, .Tiff, .EPS, .PSD, GIF, and .PDF. There are a variety of other programs that will output with their own native extension (such as Corel Draw), and in this case see if there is an export option of .Tiff or .JPG, (or .PNG if the image is on a transparent background).

    Next you want to group your PDFs, or Word Docs together if they need to be converted to PDF by the designer. If you have excel files, powerpoint presentations, video/s, or other document/file formats that need to be added have these ready as well.

    Finally, once you have all the content ready, group the content for each page in its own folder. For example. for the About Us page you would create a folder “About Us”. In this folder you would add your “About Us” notepad text document, any images, video, pdfs, etc that you want added to this page. Next you should create an additional page of instructions. On this you might say something like … Use large headings for titles, italicise quotes and have them in a dynamic scrollable box, add thumbnail images on right sidebar that open upon clicking to a full-sized image. Place video below third paragraph of text, and add the caption “Our Company Video, 2012″. Again, the more detailed and specific you are, the less time it will take to create your pages, and less edits will be required.  Once you have all of your folders created, group them in a new folder “Website” and ZIP it and email it.

    To learn more I encourage you to view our Web Design Layout page. This page provides general layout assessment information and examples, and provides detailed information on page dimensions, background styling, page colors, title bar, header design, navigation, body content, content elements, the footer section, and the sub footer. You can view this page at http://www.ecurtisdesigns.com/page-layout-options.html

    Step 7: SEO and Submission

    Once your pages are competed it is important to look at each page individually and ensure that the important “targeted” keywords are in evidence. These are provided for in a variety of ways which include the page titles, the headings, the keywords and description metatags, Alt (for iamges) and Title (for text links) tags. The important thing for you to do is make a list of the keywords you want noted for each page. Your designer can do some research (assuming they have SEO experience) and help you define which words need to be targeted, and the proper keyword density relationship. Once the list is together write up a brief, two to three sentence, description for each page. This will be added to the description tag.

    Submission of the final site can be done by you, or the designer. In most cases submitting to Google, Yahoo, and Bing is ample. Some will also submit to the popular directories such as DMOZ, Google Places, Merchant Circle, Yellow Pages.com, Bing Business Portal, etc. There are other submission options as well, often industry specific, but my advice is not to submit to a search engine or directory if they charge for submission, or have a low search engine ranking.

    Step 8: Choosing the Right Designer

    There are many designers, and most charge way too much for what they provide. The majority of my site redevelopments were created by designers who had little experience, so I encounter poor layout, image, and styling choices, content that isn’t proofed or organized, pages that aren’t optimized for the search engines, and code that is outdated and not ADA compliant. I have no doubt that these “designers” think they’re doing good work, but the difference between a good designer, and a bad designer is quickly evident in the quality of their portfolio, their ability to write effective, coherent text copy, and their ability to provide diverse scripting options, instead of a “one size fits all” approach as many do. If your need for customization is high, then yes, you will likely have to hire someone who specializes in custom scripting, but the problem here is that many “custom” jobs are for CMS websites, which other designers (having no experience in how it was created) won’t work on. 

    FINAL NOTES: As you can see, there are a lot of considerations when it comes to designing a website. It is always best for the client to spend time learning, both my browsing competition, and by learning about the script options available. If you have chosen a CMS website, consider which CMS platform you want to use, … Joomla, WordPress, Blogger, Drupal, etc, and then see what is available to extend the functionality. For Joomla for example, there is a large development community where you can find plugins and components of many types, but be sure to read the technical specifications and reviews since many components/plugins will only work with a certain “old” version, not the latest version, and the comments provided by users will often let you know if a script is worth using or not. Most also have demos, so be sure to view them where possible. And finally, know that there are many scripting languages used to create CMS websites. The most popular is PHP, but ASP is often used as well, which requires a Microsoft server. My suggestion, stick with PHP, hosting is cheaper, more designers code in it, and there are many more scripting options available for it.

  • Optimize Your Website With GZIP

    Posted Apr 4th, 2012 By in Resources With | No Comments

    If you have a website with lots of images, javaScript, Flash, video, and CSS, you may have noted a slower than ideal load time. I’ve written before about  adding a bit of code to the .htaccess file as cache-control for images, text content, pdf, flash, and video, but the reality is that this may not be enough to provide a page that is quick loading. In this regard, the best option (short of creating a simple, non-graphical website) is using compression. Note that GZIP compression is used on both Google and Yahoo, and is standard on all current browsers.

    The Details:

    When you set up compression, the browser and server need to know it’s ok to send a zipped file over. The agreement has two parts:

    • The browser sends a header telling the server it accepts compressed content (gzip and deflate are two compression schemes): Accept-Encoding: gzip, deflate
    • The server sends a response if the content is actually compressed: Content-Encoding: gzip

    If the server doesn’t send the content-encoding response header, it means the file is not compressed. The “Accept-encoding” header is a request by the browser, not a demand. If the server doesn’t want to send back compressed content, the browser will present the regular uncompressed content.

    Server Settings:

    The job is to configure the server so it returns zipped content if the browser can handle it, saving bandwidth and creating faster loading pages.

    For IIS, enable compression in the settings.

    In Apache, enabling output compression is fairly straightforward. Add the following to your .htaccess file:

    # compress text, html, javascript, css, xml:
AddOutputFilterByType DEFLATE text/plain
AddOutputFilterByType DEFLATE text/html
AddOutputFilterByType DEFLATE text/xml
AddOutputFilterByType DEFLATE text/css
AddOutputFilterByType DEFLATE application/xml
AddOutputFilterByType DEFLATE application/xhtml+xml
AddOutputFilterByType DEFLATE application/rss+xml
AddOutputFilterByType DEFLATE application/javascript
AddOutputFilterByType DEFLATE application/x-javascript
# Or, compress certain file types by extension:
<files *.html>
SetOutputFilter DEFLATE
</files>

    Deflate is quick and quite effective (reduced my website size by 70%), so I use it; mod_gzip is another option that is noted to be even faster, but is said to be harder to implement. As noted above, this is done by adding the code to the .htaccess file, but if you can’t change your .htaccess file, there is a PHP option as well to return compressed content. Give your HTML file a .php extension and add this code to the top:

    In PHP:

    <?php if (substr_count($_SERVER['HTTP_ACCEPT_ENCODING'], ‘gzip’)) ob_start(“ob_gzhandler”); else ob_start(); ?>

    Verify The Compression:

    Once you’ve configured your server, check to make sure you’re actually serving up compressed content.

    Online: Use the online gzip test to check whether your page is compressed. You can also use “Webmaster Tools” (IE Addon) or “Live HTTP Headers (Firefox Addon). 

    Potential Concern:

    While compression works in most all browsers, some still may have trouble with compressed content. If your site absolutely must work with Netscape 1.0 on Windows 95, you may not want to use HTTP Compression. Apache mod_deflate has some rules to avoid compression for older browsers.

  • Page 2 of 27«12345»1020...Last »

© 2002-2012 E.Curtis Designs. All Rights Reserved | CA Bus Lic #150552