Blog

Category

WordPress

Home / WordPress
cPanel, General, WordPress

How To Increase Website Speed Without Any Cost!

Why is your website speed is so important?

A few extra seconds could have made a huge impact on your ability to stay your visitors from the bounce and make sales.

Studies show that from 2000 to 2018, the average waiting time has dropped from 12 seconds to 7 seconds. For 2018 onward, most of the website reader expected to see your website respond within 1 to 6 second. Your website should be showing some things instead of nothing to keep your visitors to stay on your page and keep reading. You have little time to show your reader and convince them to stay on your website.

This is the probability of bounce rate show by google

Source: Google/SOASTA Research, 2017.

Why my website loading speed is slow?

There are tons of factors that impact website loading speed/time. Most of the time, website loading are impacted by a few important criteria like: web page size, page HTTP requests, Images Sizes, files request, web hosting respond time and so on. There are many different steps you can take to increase your speed and improve the user experience.

Your loading speed is alwaysn affected by PAGE SIZE.

Page Size – Mainly images that aren’t optimized for your website. Those original photos can have huge file sizes. The file format and the compression ratio you choose in your editing software, you can decrease your image size by up to 8x. Which mean if your web page file size is 8MB, you can reduce it to 1MB. This could impact 70-80% of your website loading speed. Most of the time you can feel it on your own is because you keep browsing your website with your own computer, and the browser like chrome will store the web page cache and automatically prefetch when you browse your own website. However, a normal user who is visiting your website for the first time may not have the same experience.

What is the first step and where to get started?

You must have the tools to let you know, how many requests needed for your page load and the file size on every time you load on the web page and so on.For optimizing process, we recommend you to test your website speed using tools like PageSpeed InsightsGTmetrixPingdom.

1.Reduce Image Size – Optimize Images for Speed

Images affected your site speed. Original images often very large files, which can slow down web page load times. If you own an eCommerce website, you probably think of the images is very important for your website, there is no way to remove them or lower down the file size that will affect your visitors’ experience.

2. Minimize HTTP Requests

An HTTP request is made for each element, so the more on-page components, the longer it takes for the page to render. You can check the http request using the tools previously mentioned, such as GTMatrix or using Google Chrome Developer Tools to see how many HTTP requests your site makes.

3.Consider Minify and Combine Files

You can reduce this number by minifying and combining your files. This will reduce the total number of files and file size. Instead of access to 3 files, you website currently access to only 1 file.

Source: How to combine CSS, https://varvy.com/pagespeed

By doing this, we went from a webpage that required three CSS files to load to a webpage that only requires one CSS file to load. Hence, this will significantly increase the speed of access to your hosting web file and it will affect the final loading speed of your website.

If you are a WordPress user, you can just install a CSS / JavaScript that will help you optimize all of this work for you.

4.Choose The Right Hosting Plan

Most of the website owners choose the cheapest hosting to host their website. For the new website that serve few visitors, that is okay. If your website is serving up to thousands of visitors per days, we suggest you get to premium business hosting for better response and smoother respond for your visitors. This is the easiest way to manage a hosting with almost VPS respond of speed. It still depends on the content you are hosting, if the content is heavy with images, video, heavy css, it will slow down your website load time too.

WordPress

How to Fix the HTTP Image Upload Error in WordPress

This post aims to help solve the increasingly common error that occurs when users upload images to their WordPress Media Library. The process to overcome this issue is extremely frustrating and could be quite consuming.

Some Common Solutions:

****************Put this is your themes function.php****************

add_filter( ‘wp_image_editors’, ‘change_graphic_lib’ );

function change_graphic_lib($array) {
return array( ‘WP_Image_Editor_GD’, ‘WP_Image_Editor_Imagick’ );
}

********************************************************************

Default to GD

If you are afraid that you might mess up while making changes to functions.php then you can install the Default to GD plugin from here

To install the plugin, simply download the Folder and install it as any other plugin and then activate the plugin and it should do its work

Changing Permissions of your site’s “uploads” folder

The HTTP error can also arise due to not enough permissions on the “uploads” folder on your WordPress website’s server. To fix this issue what you can do is to change the permission of the uploads folder in the wp-contents folder (wp-contents/uploads) to “755“.

This can be done either by logging in to the cPanel of your WordPress blog and then going to File manager and changing permissions or by using some FTP client such as FileZilla.

 

I have listed almost all of the methods and fixes to remove the HTTP error that might be encountered by some users while uploading image to WordPress and I hope that the fixes work for you.

WordPress

Disable XML-RPC in WordPress

Hackers are using the XML-RPC function in WordPress for DDoS botnet attacks as well as Brute Force attacks.

What is XML-RPC?

The XML-RPC function was originally designed to be used an intranet notification system for WordPress users. But few use it anymore due to spam.

Now it is being used primarily as a way to remote post to WordPress from mobile.

Some plugins and third-party applications use XML-RPC to deliver content from their servers to your site.

 

Do I need WordPress XML-RPC?

Most users don’t need WordPress XML-RPC functionality, and it’s one of the most common causes for exploits.

Some clients such as the official WordPress Mobile Apps and Blogger use XML-RPC requests to function.

All of the WordPress XML-RPC requests are remote POST requests to the xmlrpc.php script.

A full list of the different requests that can be made via XML-RPC can be found at XML-RPC WordPress API

 

Block WordPress xmlrpc.php requests with Disable XML-RPC Plugin

This plugin disables XML-RPC API in WordPress 4.5+, which is enabled by default.

 

WordPress

How to Optimize WordPress website using plugins

WordPress is a very popular CMS used for creating websites. However, WordPress sites can be slow, which can harm conversions and search engine rankings. This article explores the most frequent performance issues with WordPress sites and offers some solutions.

To speed up your WordPress site you need to streamline everything: plugins, server, themes, content, etc. The idea is to minimize the use of plugins and external resources and use as much native WordPress functionality as possible.

Multiple plugins can slow down WordPress sites.Remove unused plugins and replace old ones with the latest versions (good for security as well). Ideally replicate the plugin functionality you want in native WordPress code or custom PHP. The fewer plugins you use on your site, the less chance there is of performance and upgrade issues. Plugins can also call external resources, which introduce uncertain delay by relying on external servers.

Lets see how to optimize the wordpress website with Plugins.

In this article we are going to use a couple of plugins which will help a WordPress website load faster.

Once you have your WordPress website developed and designed properly

1) Login to the wordpress admin area with http://yourwebsitename.com/admin ( this path may be difference as per the location of the admin folder )

2) Once you are logged in to the admin area of the website, on the your left hand side click on plugins and click on Add New.

  •  On your right hand side pane , Scroll down and in the Search Plugins window , search for “W3Total Cache Plugin” and press Enter

wp2

  • Now click on Install Button and wait for it to be installed.
  • After installation, on your left hand side pane you will now notice a new section in your admin sidebar called “Performance.”
  • Point to the Performance option with your mouse and click on General Settings.

wp3

 

wp6

  • Once done with making the changes ,Click on Save All Settings.

Note: If you make any changes to your WordPress plugins, the W3 Total Cache plugin may ask you to Empty the Cache. This is done to make sure the plugin doesn’t serve a cached version of any changed files.

  • On the next step , on the sidebar, click on the Minify sub-section. Under HTML & XML, check Enable in the HTML minify settings. You can also check the other options, but make sure to test your site to see if it breaks.

wp8

  • Again On the sidebar, click on the Browser Cache sub-section.
  • Under General, Cascading Style Sheets & JavaScript, HTML, and Media & Other Files headings enable the following:

    Set expires header
    Set cache control header
    Set entity tag (eTag)

wp8

  • Click on Save All Settings
  • The next step would be to install one more plugin that WP Smush it Plugin
  • Repeat the steps .. step no. 2 & 3 to install the plugin
  • This plugin will optimize every image you upload henceforth since you activated it.

wp9

  • There are no options for this plugin and nothing to set up!
  • In the newer version of WP Smush it, there is a Bulk Smush.it feature that can smush all of your uploaded images. It has worked for us on smaller media libraries and it is very convenient, however it is experimental (we’ve experienced some errors with it on larger media libraries). Have a look at the feedback forums if you are looking for support.
  • That’s it! You’re finished.
WordPress

5 WordPress Security Issues & How to Fix Them

Today WordPress powers nearly 78 million of the world’s websites. It is built and designed for web standards, aesthetics, as well as usability. This makes WordPress an Alpha CMS amongst Blogger, Drupal and Microsoft’s Share Point. However, with such mass usage, WordPress is also a popular target for cyber crooks.

We believe that half of the vulnerabilities in a WordPress website are at the users end. This makes them an easy target for the assailants. Out of the box, there are some best practices that can tighten the security of WordPress websites.

What can you do to secure your WordPress website? Here are the top 5 tips to keep your Websites Secure!

Number 1: Regular Updates

You will need to keep WordPress Core, Plug-ins, themes up to dated, which will help you in running a stable website.

Number 2: Don’t Use “Admin” As Your Username

By default, WordPress assigns the main administrative account under the name “admin.” It makes a lot of sense. In 2014, hackers volleyed a series of brute-force attacks at WordPress websites, repeatedly attempting to login by pairing the main account “admin” with common passwords. They were pretty successful. Even if you have a complicated, secure password, it’s still not a good idea to use a well-known username. There are two ways you can fix this: one involves creating a new account, and the other requires logging into your Cpanel and changing the username through PHPMyAdmin.

Number 3: Change Your Passwords Regularly

About 20% of WordPress sites are hacked due to a weak password. Use a combination of numbers, symbols and different case letters (upper and lower) or a password manager.

Even though most sites recommend using eight characters, try to keep your passwords above ten characters.

Number 4: Limit Login Attempts

It’s possible to block a single IP from trying to hack your website by limiting the amount of login attempts that can be made. This can be done with plugins, such as the Limit Login Attempts plugin. It automatically blocks an IP after it breaches the login limit, and allows you to specify how long that IP address remains locked out.

Number 5: Delete Any Plugins or Themes You’re Not Using 

Remove or delete any plugins and themes you are not using on your site. Unused or inactive themes and plug-ins possess a potential threat to users WordPress website; hence it is of utter importance that user assure no such extensions are in user WordPress database. This would also save user from any unnecessary updates required for them.

Bonus Tip: Some Great Security Plugins

Here’s a list of some useful security plugins that will help you secure your WordPress powered site.

 

WordPress

Why Is It So Important To Keep A WordPress Site Up to Date?

If you don’t update your WordPress site, it may be vulnerable to hackers.

Updating a WordPress site is one of those tedious tasks that has to be done, but doesn’t usually confer any obvious benefit. Sometimes you’ll get a new feature, but most of the time, you hit the update button, the site prints out a few lines of uninteresting verbiage, and nothing much happens except that the number on the update menu item disappears.

Some people like to update just because they get a sense of satisfaction from seeing that number disappear: the sort of people that get mildly stressed if their email inbox shows unread messages at the end of the day. Most of us aren’t like that, and because updating WordPress brings no obvious benefit. WordPress asks to be updated with a frequency that is off-putting to even the most solicitous site maintainer.

So, I understand why many WordPress users don’t bother to keep their installation up-to-date. But I also understand the result of not updating can be catastrophic for businesses, publishers, and others that rely on WordPress.

WordPress is a complicated piece of software made even more complicated by its ecosystem of thousands of plugins. As smart as humans, and especially developers, are, they aren’t so smart that they never screw up when building complicated things. Mistakes are made and those mistakes can create security vulnerabilities.

Security vulnerabilities that might allow a hacker to break into a WordPress site and install malware on it so that its users become infected. Or that dragoon the site into a botnet that carries out attacks on other sites.

Every content management system has the same problem—there’s no such thing as absolutely secure software.

When these problems are discovered, the WordPress developers and plugin developers get to work. They find out what went wrong and write new code that fixes it. The new code is called a patch. Patches are delivered to WordPress installations through updates.
If you don’t update your WordPress installation, then it’s very likely that your site is vulnerable to hackers. Although updating your WordPress site is tiresome, forgetting to update could mean the loss of your site and its data. It could mean your users get infected with malware.

You owe it to your business, your site, your users, and the wider web to make sure that you keep your site up-to-date — it’s part of being a good online citizen.

WordPress

Bruteforce Attack on WordPress Sites, Globally

There is Large Number of Brute Force Attack on WordPress Sites, At this moment, we highly recommend you log into any WordPress installation you have and change the password with upper and lowercase letters, at least eight characters long, and including “special” characters like (^%$#&@*).

To ensure that your websites are safeguarded from this attack, we recommend the following steps:

Step 1

Make sure you are running the latest version of WordPress and all the plugins and themes.

Step 2

Secure your WordPress Login page. To do this you can simply log into your cPanel/Plesk Panel and use the Password Protect Directory option and secure the wp-admin folder of your WordPress installation using a secure password generated via a Random Password Generator so that your password is not easily uncovered under brute-force attack.

Step 3

We highly recommend you to install these plugin to your WordPress:

1. Brute Force Login Protection

2. BruteProtect

3. Captcha

We’ll continue to monitor the details of the attack and publish details about what we learn.

Privacy Settings
We use cookies to enhance your experience while using our website. If you are using our Services via a browser you can restrict, block or remove cookies through your web browser settings. We also use content and scripts from third parties that may use tracking technologies. You can selectively provide your consent below to allow such third party embeds. For complete information about the cookies we use, data we collect and how we process them, please check our Privacy Policy
Youtube
Consent to display content from Youtube
Vimeo
Consent to display content from Vimeo
Google Maps
Consent to display content from Google
Spotify
Consent to display content from Spotify
Sound Cloud
Consent to display content from Sound