The Dangers of WordPress with ZenCart

I've always warned folks that putting WordPress on the same hosting as ecommerce could be a hacker's dream. I hadn't seen any hacks in such a long time, I was beginning to wonder how correct I might be. Well, sorry, folks but a client just discovered her site was hacked and she does have a blog. A blog she was rarely ever posting on and certainly not checking her necessary updates in the WP admin. It does look like WP was used to gain access to the hosting… Read more

Upgrading to 1.5.5f?

The Final 1.5.5? 1.5.5f for Zen Cart was released 31 Dec 2017 but contained only a few bug fixes and one major addition of Square now being a built-in payment module. That's great news for sure; however, Square should not be a major factor in deciding whether to upgrade now or not. The good news is that 1.5.5f is supposed to be the final stable version. That's why I've started upgrading.  If your host changes the server PHP version to 7, well, then… Read more

.htaccess redirects for SEO

There has always been one redirect that is Google mandated for SEO. That is to standardize the use of www vs non-www. Allowing use of both on a website can appear as two different urls with the same content. In the long run, this really isn't very important but does tend to be the first step for SEO work. To avoid that penalty, one can use a redirect to make the visitor use one preferred url.  So what is the preferred code? Believe it or not, I got new instructions… Read more

Is It Time to Switch to HTTPS?

HTTPS has been a tiny bit of Google's ranking every since 2014 and as of April of last year, they are still saying that isn't in the plans to change the weight of that element. (source) What has changed that you need to be aware of is the browsers. Both Chrome and Firefox have announced that upcoming versions will start highlighting sites that are not using the HTTPS protocol. Even if you do not need it with a static or information only sites, this is… Read more

Do I have to pay for a Secure Certificate?

No, but you may want to still buy a secure certificate even if there are free ones available. The ability to offer free secure certficates has been established as a fact for cPanel servers. And I just turned it on for my clients – for  use on their static or wordpress websites. These cPanel-generated certificates do show the correct browser security of most users and are backed by GlobalSign. Now that the browsers are starting to note who doesn't have a secure certificate no… Read more