Wordpress Themes – Theme Killer http://themekiller.me/ Fri, 13 May 2022 19:35:27 +0000 en-US hourly 1 https://wordpress.org/?v=5.9.3 https://themekiller.me/wp-content/uploads/2021/04/default.png Wordpress Themes – Theme Killer http://themekiller.me/ 32 32 WordSesh 2022 kicks off Monday, May 16, with a lineup of world-class speakers and hands-on workshops – WP Tavern https://themekiller.me/wordsesh-2022-kicks-off-monday-may-16-with-a-lineup-of-world-class-speakers-and-hands-on-workshops-wp-tavern/ Fri, 13 May 2022 19:35:27 +0000 https://themekiller.me/wordsesh-2022-kicks-off-monday-may-16-with-a-lineup-of-world-class-speakers-and-hands-on-workshops-wp-tavern/ WordSesh 2022, the live virtual conference for WordPress professionals, is fast approaching. The event runs from May 16-20, 2022. While previous WordSesh events have always been high quality, this particular edition is filled with a diverse selection of industry experts – many of whom have built projects at strong impact with WordPress for years. A […]]]>

WordSesh 2022, the live virtual conference for WordPress professionals, is fast approaching. The event runs from May 16-20, 2022. While previous WordSesh events have always been high quality, this particular edition is filled with a diverse selection of industry experts – many of whom have built projects at strong impact with WordPress for years.

A sample of the speakers for WordSesh 2022

This year’s WordSesh will include 20 sessions, 3 keynotes and two in-depth workshops. On May 19 at 8:00 PM EDT, frontend developer Ellen Bauer of Elma Studio will walk users through a workshop on how to “convert a classic theme to a block theme.” If you’re a theme developer who hasn’t taken the plunge into block themes, this workshop will help you get started:

Together, we’ll set up the header and footer in a block theme, learn how to work with templates and template parts, configure page content, and dive into how styles work.

Throughout the workshop, we’ll discuss which website projects can benefit the most from FSE’s new features, the limitations we still face, and the future of WordPress themes.

The second workshop will be given by Tiffany Bridge, Product Manager at Nexcess, on May 20. It will give attendees insight into how to prepare their web properties for a high traffic event.

One of the most exciting sessions on the program is the May 19 keynote. The team that rebuilt WhiteHouse.gov on WordPress in just six months will join the event to talk about the project. Other topics on the program include custom block development, headless WordPress, hacking, customer services, performance, accessibility, and user experience.

In 2021, Brian Richards, founder of WPSessions.com and organizer of WordSesh, transitioned the event to be more inclusive of time zones around the world. This year’s event will take place over four days, with time differences to suit a global audience. The first block of sessions is optimally scheduled for participants from across Asia and the Pacific. Day 2 is designed for participants from Europe, the Middle East and Africa, and Day 3 will be for participants from the Americas, Iceland and Greenland.

“In 2019 and 2020 I ran entirely separate events for each region, but in 2021 I’ve combined them into one event,” Richards said. “I found it much easier to get people excited and paying attention to a big WordSesh event.

“It feels more inclusive this way, although the separate events were also open to attendees from around the world. I think it’s mainly because there are Something which is conveniently programmed for someone no matter where they live. And with just one event, watching the recordings is more like catching up on the bits you missed rather than trying to watch talks for an event that was made for someone else.

The schedule changes seem to be working, as the last event in 2021 had 3,600 attendees, making WordSesh the second largest WordPress community event behind WCEU 2020.

Richards continues to curate a list of high-quality speakers year after year, with the help of attendee surveys, which reveal where people spend their time, attention and money. WordSesh pays its speakers and Richards also invests time in personal outreach. Thanks to this combination, he said the schedule was filling up quickly.

“I think paying speakers certainly helps bring in such amazing presenters, but I guess that’s more the icing on the cake for most speakers,” Richards said. “The biggest draw is probably the WordSesh story (it’s the 9th year and 12th event, officially), aided by the ever-growing reach of my own personal network.”

Until 2021, Richards ran events entirely by himself. Last year, he hired a part-time assistant and also started outsourcing video editing, which helped him run the event more efficiently. It’s quite an achievement to have hosted WordSesh for so many consecutive years when many comparable virtual WordCamps of this caliber often rely on a large team of volunteers and organizers.

Registration for WordSesh is still open and it is free for anyone to attend. The event will be captioned live by real people and all sessions will be recorded for later purchase on WPSessions.

]]>
Hackers Exploit WordPress Themes, Plugins for Hawk Scams https://themekiller.me/hackers-exploit-wordpress-themes-plugins-for-hawk-scams/ Fri, 13 May 2022 10:05:00 +0000 https://themekiller.me/hackers-exploit-wordpress-themes-plugins-for-hawk-scams/ Thousands of WordPress sites have been hacked through known vulnerabilities in recent months, according to security firm Sucuri.Photo: Jack Guez/AFP (Getty Images) If you visited a websiteit these last days and summer randomly redirected to the same pages with sketchy “resources” or unwanted advertisements, it is likely the site in question was 1) built with […]]]>

The photo shows a magnifying glass on a screen with a computer code.

Thousands of WordPress sites have been hacked through known vulnerabilities in recent months, according to security firm Sucuri.
Photo: Jack Guez/AFP (Getty Images)

If you visited a websiteit these last days and summer randomly redirected to the same pages with sketchy “resources” or unwanted advertisements, it is likely the site in question was 1) built with WordPress tools and 2) pirate.

Researchers from Sucuri, a security provider owned by GoDaddy, unveiled on Wednesday that the hackers behind a months-long campaign focused on injecting malicious scripts into WordPress themes and plugins with known security flaws were at work again.

It is important to note that these hacks are related to themes and plugins created by thousands of third-party developers using open source WordPress software, not WordPress.comwho offers hosting and tools for create websites. Automattic, the parent company of WordPress.com, is a major contributor to the software but does not own it.

According to Sucuri, there are 322 WordPress sites with plugins and themes that were affected by this new exploit, although “the actual number of impacted websites is likely much higher.”

In April alone, hackers used this tactic to infect nearly 6,000 sites, said Sucuri malware analyst Krasimir Konov.

Sucuri noticed the pirates trespassing last monday when investigating WordPress sites that have complained about unwanted redirects. All the websites shared a common problem, Konov explained; they contained malicious JavaScript hidden in their files and databases.

The JavaScript creates redirects that lead users to a range of poison apples, including phishing pages and malware, the researcher explained. Worse, visitors might not even notice they are going down the internet version of a dark and dangerous alley, because the redirect landing page looks innocent enough.

“This page tricks unsuspecting users into subscribing to push notifications from the malicious site. If they click on the fake CAPTCHA, they will be chosen to receive unwanted ads even when the site is not open – and the ads will appear to come from the operating system, not a browser,” Konov wrote.

If that wasn’t enough, Konov said push notification activation maneuvers are one of the most common ways for hackers to run tech support scams. These are annoying pop-ups that pop up out of nowhere telling you that your computer is infected and you need to call a phone number to get it fixed. Don’t do this. The Federal Trade Commission, experts in detecting scams, pointed out that real safety messages and warnings won’t tell you to call a phone number for technical help.

WordPress.com told Gizmodo on Thursday that plugins and themes are written and maintained independently outside of the core WordPress software. Regarding Sucuri’s report, the company said that any plugin or theme hosted on WordPress.org, the software’s website, “is regularly scanned for vulnerabilities.”

“If security issues are identified, plugin and theme authors are notified immediately. Specific to Sucuri’s report, any plugin that was not fixed was either shut down or not hosted on WordPress.org. WordPress.org also provides security resources for theme developers and plugin developers,” said a WordPress.com spokesperson. “For self-hosted sites, WordPress users are advised and encouraged to update the core software, plugins and default themes.”

Sites hosted on WordPress.com are also offered services that patch vulnerabilities like those referenced in the report, the spokesperson added.

]]>
Massive WordPress JavaScript Injection Campaign Redirects to Ads https://themekiller.me/massive-wordpress-javascript-injection-campaign-redirects-to-ads/ Wed, 11 May 2022 21:59:08 +0000 https://themekiller.me/massive-wordpress-javascript-injection-campaign-redirects-to-ads/ Our remediation and research teams regularly find malicious redirects on client sites. These infections automatically redirect site visitors to third party websites with malicious resources, scam pages or commercial websites with the aim to generate illegitimate traffic. As detailed in our latest Hacked Websites Report, we have been tracking a long-running campaign responsible for injecting […]]]>

Our remediation and research teams regularly find malicious redirects on client sites. These infections automatically redirect site visitors to third party websites with malicious resources, scam pages or commercial websites with the aim to generate illegitimate traffic.

As detailed in our latest Hacked Websites Report, we have been tracking a long-running campaign responsible for injecting malicious scripts into compromised WordPress websites. This campaign exploits known vulnerabilities in WordPress themes and plugins and has impacted a huge number of websites over the year – for example, according to PublicWWW, the April wave of this campaign was responsible for nearly 6 000 infected web pages alone.

Since these PublicWWW results only show detections for simple script injections, we can assume the scope is considerably greater.

Investigate obfuscated JavaScript in WordPress sites

We recently received a number of clients complaining about unwanted redirects on their WordPress websites. Interestingly enough, they turned out to be linked to a new wave of this massive campaign and sent website visitors through a series of website redirects to serve them unwanted advertisements.

The customers all shared a common problem: malicious JavaScript had been injected into their website files and database, including legitimate WordPress core files such as:

  • ./wp-includes/js/jquery/jquery.min.js
  • ./wp-includes/js/jquery/jquery-migrate.min.js

Once the website was compromised, the attackers attempted to automatically infect .js files with jQuery in names. They injected code that starts with “/* trackmyposs*/eval(String.fromCharCode…”

However, it was clear that the attackers took some steps to evade detection and obfuscated their malicious JavaScript with CharCodeas seen below.

Malicious JavaScript injection hidden by CharCode

Once unobfuscated, the true injection behavior emerged.

Deobfuscated malicious JavaScript redirects site visitors on page load
Deobfuscated malicious JavaScript redirects site visitors on page load

This JavaScript was added under the current script or under the page header where it was triggered on every page load, redirecting site visitors to the attacker’s destination.

Malicious chain of redirects

To accomplish these redirects, the malicious injection creates a new script element with the legendary table[.]com domain as source.

The code of the legendary table[.]com domain then calls a second external domain — local[.]follow the drake[.]com — who calls from connections[.]follow the drake[.]com, redirect the site visitor to one of many different domains, including:

  • bluestringline[.]com
  • browntouchmysky[.]com
  • redstringline[.]com
  • whitetouchmysky[.]com
  • gregoryfavorite[.]space
  • gregoryfavorite[.]High
  • push now[.]report/

At this point, it’s free for everyone. Domains at the end of the redirect chain can be used to load advertisements, phishing pages, malware, or even more redirects.

From the site visitor’s perspective, they will simply see the next malware page before landing on the final destination.

Malicious redirect landing page
Malicious redirect landing page

This page tricks unsuspecting users into subscribing to push notifications from the malicious site. If they click on the fake CAPTCHA, they will be chosen to receive unwanted ads even when the site is not open – and the ads will appear to come from the operating system, not a browser.

These sneaky push notification activation maneuvers are also one of the most common ways for attackers to display “tech support” scams, which inform users that their computer is infected or slow and that they should call a toll-free number to resolve the problem.

Malicious JavaScript detection via SiteCheck

Client-side redirects are initiated by site visitors’ browser once the infected web page has been loaded. Since this particular infection is on the client side, remote website scanners such as SiteCheck can help scan a website and identify this malware.

Here is an example of a SiteCheck results page for this specific campaign.

SiteCheck results for malicious JavaScript injection
SiteCheck results for malicious JavaScript injection

At the time of writing, PublicWWW has reported 322 websites affected by this new wave of malware. follow the drake[.]com domain. Since this number does not include obfuscated malware or sites that have not yet been scanned by PublicWWW, the actual number of websites affected is likely much higher.

Conclusion and Mitigation Steps

Our team has seen an influx of complaints for this specific wave of the massive campaign targeting WordPress sites starting May 9, 2022, which has already affected hundreds of websites at the time of writing.

The attackers were found to target several vulnerabilities in WordPress plugins and themes to compromise the website and inject their malicious scripts. We expect hackers to continue registering new domains for this ongoing campaign as soon as existing ones are blacklisted.

If you suspect that your website has been infected with malicious JavaScript or if you have found unwanted spam redirects or advertisements on your site, you can use our free remote website scanner to detect the malware.

Website owners who have identified malware on their website can take advantage of the instructions in our hacked WordPress cleanup guide – and, as always, we’re happy to help clean up an infection if you need help. a hand.

]]>
How to Fight Brute Force Blogging Attacks – News is My Business https://themekiller.me/how-to-fight-brute-force-blogging-attacks-news-is-my-business/ Tue, 10 May 2022 09:10:12 +0000 https://themekiller.me/how-to-fight-brute-force-blogging-attacks-news-is-my-business/ WordPress is one of the most popular page building platforms on the internet. (Credit: StickerGiant) WordPress is one of the most popular page building platforms in the world, mainly because it’s free, open source for website building, and intuitive for non-technical bloggers. In non-geek parlance, WordPress is the easiest and most powerful blog and website […]]]>

WordPress is one of the most popular page building platforms on the internet. (Credit: StickerGiant)

WordPress is one of the most popular page building platforms in the world, mainly because it’s free, open source for website building, and intuitive for non-technical bloggers. In non-geek parlance, WordPress is the easiest and most powerful blog and website builder to date.

On a more mechanical level, WordPress is a content management system (CMS) written in the PHP coding language that uses deep database algorithms in its design. It offers hundreds of ready-to-use designs ranging from blogs to e-commerce to corporate and portfolio websites, whether for large or small websites.

WP allows admins to add multiple authors and other user roles, which can be a security concern. See ithemes.com for a detailed description of the platform’s many features.

USERS — An administrator is the primary manager role in WordPress. When a user installs WordPress, they create a new user with the username and password set during installation. Any first user is assigned the role of administrator to perform all actions on a WordPress website and have all the features. You can add 35 users to your private blog and later purchase the unlimited private users upgrade if you want to add more. If you refer to a public blog, there is no limit to the number of official users you can add.

Web content expert Andrew Mathew asks: My WordPress website has never been hacked. Do I still need security? Yes.

TIPS — Statistics reveal that 50,000 websites are hacked every day due to WordPress plugin vulnerabilities. Plugins are software that you can upload to your website to add more functionality. Attackers use automated tools to try hundreds of username-password combinations. Then they keep trying until they get the correct credentials. If successful, they can access all password-protected information.

Although no website platform is 100% secure, WordPress continues to improve with a team of developers and core users pushing out security patches. Research suggests that WordPress plugins cause 90% of vulnerabilities; 4% belong to core WordPress files and the remaining 6% to WordPress themes. WordPress security issues are usually due to user error, rather than the software itself. Many website administrators do not realize that their portals have already been hacked, a situation that can lead to irreparable loss, damage to your reputation and decrease your income. Then Google marks your website as unsafe. That’s when WPScan and other security platforms come in to help.

SCANNERS — One of the main types of attacks is denial of service (DoS). Hackers overload the server with traffic demands by constantly asking for resources which results in server crash. When this happens, even authorized users cannot access the website. The WPScan CLI tool is a free, non-commercial use WordPress security scanner designed for security professionals and bloggers to test the security of a website.

You can use it to scan your WordPress website for known vulnerabilities in WordPress core and popular WordPress plugins and themes. Since it is a WordPress black box scanner, it mimics a real attacker. Other security plugins for WordPress are Sucuri, Jetpack Security, Wordfence, BulletProof Security, All In One WP Security & Firewall, and Google Authenticator. This site explains it in more detail.

Mathews recommends WP users focus on two basic scenarios to stay above any vulnerabilities.

GUARANTEES — One hosts. Where a user places their website is crucial for security. Good web hosting should take some basic steps to keep your website secure, including firewalls to block any malicious traffic.

They will also keep an eye on the entire network as a well-organized system instantly detects any suspicious activity and takes appropriate action to prevent further attacks. Another guarantee is updating. The user must ensure that everything is up to date. This includes server software, PHP versions, hardware, disaster recovery and crash plans. Otherwise, hackers can easily exploit old security vulnerabilities.

Fortunately, WordPress providers maintain and update the platform regularly. The system automatically performs minor updates after each major release. But the WordPress webmaster should also update to the latest versions of plugins and themes as they are required to deal with vulnerabilities. The update contains the cures for new viruses and malware. Carefully, a good administrator also changes the default username frequently.

Author Rafael Matos is a veteran journalist, professor of digital storytelling, and academic mentor. He can be contacted at cccrafael@gmail.com.

]]>
Updated Astra WordPress Theme Offers Better Performance https://themekiller.me/updated-astra-wordpress-theme-offers-better-performance/ Fri, 06 May 2022 09:45:38 +0000 https://themekiller.me/updated-astra-wordpress-theme-offers-better-performance/ The popular free Astra WordPress theme has just been updated to version 3.8.0, delivering faster performance on both backend and frontend, improving workflow to make it easier and faster to design a website while making design commands more intuitive and powerful. Free Astra WordPress Theme Astra is a free WordPress theme that has a rare […]]]>

The popular free Astra WordPress theme has just been updated to version 3.8.0, delivering faster performance on both backend and frontend, improving workflow to make it easier and faster to design a website while making design commands more intuitive and powerful.

Free Astra WordPress Theme

Astra is a free WordPress theme that has a rare five-star rating on the official WordPress theme website.

According to the Astra theme homepage, it is trusted by organizations like Stanford University and NASA and used by over 1.6 million websites.

Its popularity is due to the ease of design while being light on code to improve performance.

It’s designed to be SEO-ready right out of the box, including Schema.org’s structured data code built into the theme itself.

Astra also works well with all major page builders like Elementor, Beaver Builder, Divi, Visual Composer, SiteOrigin, WooCommerce and many more.

One of the main reasons for its popularity is the ability to import ready-made starer templates that suit different industries and uses.

The free version of the Astra theme has been updated to version 3.8.0.

There is also a paid pro version of the theme and it has been updated to version 3.6.8.

Simplified design flow

The revamped Astra theme now features a simpler design flow that helps editors and designers make websites faster.

Thoughtful improvements to the Latest Posts block automate design features so they look right without having to worry about small design details.

Headers, link colors, and fonts all come with default states based on theme style settings.

The Pull Quote block and Quote block have also been improved, fixing a styling issue that kept text left-aligned even when the text in the quote was centered.

Astra’s announcement explained:

“Previously, when you moved the quote to the middle-centered or right-centered position, it always showed as left-aligned. This has now been changed and looks much better.”

More control over design elements

In addition to making certain style elements automatic, Astra now provides more freedom to change the appearance of the page design.

For example, the recently updated theme lets users change link colors, makes it easier to change margins and padding, and adds more control over borders so they can be styled based on width, the color and even the radius preferred by users.

Astra added the ability to disable the header area at the top of the page on a global/site-wide basis.

Design controls have been updated to make them more intuitive and easy to use. For example, drop-down controls are now available through button selection controls.

There is also a new way for publishers to adjust the default content width to the desired size by adding a filter to the child theme.

Astra noted:

“…you now have better control over the sidebar and content layout with visual layout designs to choose from right in the block editor.

Page elements where the number of toggles have been reduced or will appear conditionally, which will load the page faster. »

Performance improvement

Astra continues to focus on creating its theme faster than before. While the performance improvements may seem small, even small improvements can lead to more sales, conversions, and pageviews. It is therefore a step in the right direction.

The improvements made concern the backend for users who design and also the frontend where site visitors will have a better experience.

According to Astra:

“A study indicates that the use of CSS on your website is directly proportional to the speed of your website. The more CSS you use, the slower your website will load.

Since website speed is one of the main ranking factors, it is very important to minimize the use of CSS.

That’s what we did with the block editor. We used WordPress built-in CSS and reduced the use of CSS in the theme.

Back-end improvements

On the backend, Dynamic CSS has been reduced from 21.4 KB to 7 KB. Static CSS is reduced from 21 KB to 15 KB, and page size on the backend is reduced from 588 KB to 547 KB.

Interface improvements

On the frontend, the CSS has been reduced from 9.77 KB to 4.44 KB and the page size has been reduced from 111 KB to 106 KB.

Other backend changes include moving font customization controls to React JS to make it faster to use.

Astra theme keeps getting better

The free Astra theme is trusted by nearly two million websites worldwide as it makes website design easy, especially with the built-in template importer.

With improvements in site performance and design features, Astra continues to earn the position of being one of the most popular WordPress themes in the world.

Quotes

Read the official Astra theme changelog

Changelog for Astra Free Version 3.8.0

Read details of theme improvements

Improved block editor experience with Astra

Official Astra WordPress Theme Page

Astra by Brainstorm Force

]]>
8 Side Hustles to Earn Extra Money – Review Geek https://themekiller.me/8-side-hustles-to-earn-extra-money-review-geek/ Thu, 05 May 2022 13:00:00 +0000 https://themekiller.me/8-side-hustles-to-earn-extra-money-review-geek/ Thamyris Salgueiro/Shutterstock.com In today’s economic environment, everyone could use a little extra cash. The good news is that there are plenty of income opportunities to pursue. Whether it’s driving people, selling goods, telling books, or becoming a teacher, your skills are in demand. Read on for the possibilities. Drive for more dough Image Party/Shutterstock.com If […]]]>
Thamyris Salgueiro/Shutterstock.com

In today’s economic environment, everyone could use a little extra cash. The good news is that there are plenty of income opportunities to pursue. Whether it’s driving people, selling goods, telling books, or becoming a teacher, your skills are in demand. Read on for the possibilities.

Drive for more dough

A car with Lyft and Uber stickers on the windshield
Image Party/Shutterstock.com

If you enjoy driving, listening to your favorite music and meeting new people, carpooling may be a good option for you. Services like Uber and Lyft have revolutionized the transportation industry by allowing almost anyone with a driver’s license to earn money by getting people where they need to go. Carpooling is a great side hustle because it’s easy to sign up, you choose your hours, and you can get paid the same day you work.

Carpool sister makes deliveries. Most people associate delivery driving with food delivery services like DoorDash, UberEats, and Grubhub. But there are more options than just dropping McDonald’s on someone’s doorstep. There are also services like Instacart that allow you to shop for groceries for someone in your area and have it delivered to their doorstep. Additionally, Amazon Flex is a viable option for carrying packages in your spare time.

However, you will have to spend money on fuel, car maintenance, and various other expenses that arise along the way. Additionally, the amount you earn varies depending on where you live, when you decide to work, and how many hours you put in. You can find various driver income estimates online, but suffice it to say, you won’t know. on your unique situation until you try it yourself.

Pretty pictures for pennies (lots of them)

If you love photography, you can sell that passion to the world. And with the fantastic quality of our smartphone cameras, you don’t even need expensive photographic equipment to be successful (although that’s a plus). Sites like Shutterstock and GettyImages allow you to earn a commission each time someone licenses your work. There are also an abundance of sites that allow you to sell your photos directly to clients.

Of course, you will need to research what people are licensing and buying from these sites to maximize your earnings. Additionally, stock photography is a highly competitive market, so you will need to hone your skills to stand out from other photographers.

read for money

A desk full of audio recording equipment
Thomas Bethge/Shutterstock.com

Reading is one of life’s great joys, and if you have a great voice, you might just have what it takes to make money by becoming an audiobook narrator. ACX is a service that connects audiobook readers to authors who need their services.

If you pass the audition, you and the author work together to set a deadline for completing the audiobook. You will also need to agree on what you will earn for your efforts. You can opt for a simple royalty share, where you get nothing upfront, but make a percentage of audiobook sales. There is also an option to get prepaid for your services.

Keep in mind that producing an audiobook takes a lot of time, effort, and investment in equipment. If you want quality narration, you need to invest in a decent microphone, headphones, recording software, and a sound editing program.

Graphic design dollars

Having even minimal graphic design skills can bring in some extra cash. Services like Redbubble, Designhill, and CafePress let you upload your designs to print on clothing, stickers, phone cases, homewares, bags, mugs, and more. And you get paid every time someone buys an item with your design.

More advanced designers can find work creating things like fonts, logos, vectors, WordPress themes, and even video game assets. A great site to sell these works is Evantomarket.

Content creates money

A microphone in front of a Twitch stream
Devon Deth/Shutterstock.com

If you have a knack for writing, making videos, or even speaking at length, you’re a good candidate to start a blog, video channel, podcast, or even become a social media influencer. However, creating this type of content takes time and requires skills in multiple areas of media production. Also, it takes a long time to build an audience. So you will need to learn how to market yourself and your content.

Still, if you put in the time and effort to find your audience, you can monetize your content in a number of ways. Sites like YouTube, Twitch, and Rumble offer revenue sharing for ads shown on your videos. You can also solicit your audience for direct donations. Another option is to partner with brands to promote their products. Again, these options won’t be available to you right away, so make a long-term plan if you want to go this route.

Your opinion counts for a prize

The easiest way to earn a few extra bucks in your spare time is to take online surveys. Companies pay a lot of money for market research. Services like Branded Surveys, Survey Junkie, and Swagbucks pair companies with people to complete their surveys. And they all have great apps, so you can take a survey whenever you have some downtime to fill.

Completing a survey usually pays $0.30 to $5.00. So it’s not money to quit your job. Compared to what you can earn with some of the other options in this article, that’s small change. But in these uncertain economic times, every little bit counts.

Put your skills to work

A close up of a Sawstop table saw and its fence
Josh Hendrickson

If you have a professional skill, chances are you can find a platform that allows you to make money from it. Freelance sites like Fiverr, Upwork, and Freelancer offer a wide range of career categories, from graphic design and writing to web development and marketing. These sites match your skills with someone who needs a project completed. You negotiate your prices and set a schedule that works for you and your customer.

And even if you don’t have a skill that can be sold digitally, there are independent options. Sites like TaskRabbit connect you with people in your area who need manual labor. Tasks such as assembling furniture, mounting TVs, repairing toilets, installing lighting, and other DIY jobs need to be done all over your city. And if you have the skills to do them, it’s a great way to earn some extra cash.

Share your knowledge

If you use your Marketable Skills in your 9 a.m. to 5 p.m. job and don’t feel like using them outside of work hours, you can always teach them to others. Services such as Superprof, Udemy and Teachable allow qualified professionals to create courses or become tutors in their trade. Of course, there is a learning curve for creating courses and interacting with students. But, if you’re passionate about the knowledge you’ve gained and want to share it with newcomers, this could be a very satisfying side hustle.

]]>
New WordPress 6.0 Details Reveal Major Improvements https://themekiller.me/new-wordpress-6-0-details-reveal-major-improvements/ Wed, 04 May 2022 09:45:39 +0000 https://themekiller.me/new-wordpress-6-0-details-reveal-major-improvements/ WordPress has released a long list of upcoming improvements for WordPress 6.0. This article focuses on important changes to the block editor that will make designing web pages and websites not only much easier, but also inspiring. In many ways, WordPress 6.0 delivers what Gutenberg’s block-based editor promises. How? By finally providing a user interface […]]]>

WordPress has released a long list of upcoming improvements for WordPress 6.0. This article focuses on important changes to the block editor that will make designing web pages and websites not only much easier, but also inspiring.

In many ways, WordPress 6.0 delivers what Gutenberg’s block-based editor promises.

How?

By finally providing a user interface that allows users to easily design web pages and edit text.

A WordPress design team member and core contributor commented in a recent official WordPress podcast:

“I think some of the features released in 6.0 will absolutely empower this end user.

Especially in terms of improvements around design tools and some quality of life improvements.

For example, partially selecting several blocks and being able to partially select texts there.

It’s the kind of thing that really brings the writing experience in the editor up to par with how you’d expect a text editing experience to work.

WordPress Gutenberg Blocks

The WordPress blocking system has in the past been the subject of complaints from people who felt it was not ready.

WordPress 6.0 features notable improvements that bring it in line with what many expect from a supposedly easy-to-use visual website builder.

The main improvements are a new intuitive user interface that allows users to easily create content and design a website.

Many of these improvements depend on theme designers to adapt to the changes. Specifically, they should offer theme.json configuration files that give users a way to easily switch between different types of templates and page styles.

While WordPress 6.0 isn’t the end goal WordPress is headed towards (there are more improvements to come), it does represent a significant milestone.

Page Builder Templates in WordPress 6.0

WordPress 6.0 introduces page templates, a way for users to choose from a series of templates to help them get started designing their web pages. For example, users can select suitable page templates for contact page, about us page, article page, etc.

Page templates do not come with WordPress core.

Page templates are a feature now available for theme designers.

The page templates feature will work for non-Gutenberg themes as well as Gutenberg block themes.

(Learn more about page builder templates)

Global Style Selector

With WordPress 6.0, theme developers can now include multiple style presets that can instantly change the look of a web page.

This is arguably one of the biggest changes to WordPress.

The global style switcher is an essential feature for WordPress. It offers theme designers a way to make it very easy for WordPress users to change the look of their websites and then make them unique.

In a recent official WordPress Briefing podcast, Episode 30: A Preview of WordPress 6.0, a member of the WordPress Design Team explained why the Style Switcher is a big step forward for WordPress 6.0.

Channing Ritter, Design Director at Automattic, explained in the podcast mentioned above how the style selector will have a positive impact.

“I’m very excited about the style selector in the global styles panel.

Um, so if people still don’t know what I’m talking about there, it’s the ability to switch between different variations of the theme.json without switching themes.

So it’s a way to get a radically different look on your site with just one click.

And I see it as a really fun place to experiment and get inspiration from the different ways your site could look without ever having to switch themes.

But now, with 6.0, I think even more that it’s starting to show the true power of block themes and what can actually be done with them.

And style variations are a huge first step into this new world of block themes and start to really open up the possibilities and all the flexibility you have out there.

Configuration files (called Theme.json) control colors, fonts, custom CSS, page width, and other factors that create the look of a web page.

These custom JSON files allow users to switch between different design options to find an attractive look.

Code improvements for image, quote, list and group blocks

Among the improvements was the removal of a DIV tag that surrounds each image. It makes the code a bit lighter and less code is always better.

The old way:

<div class="wp-block-image alignleft"><figure><img src="https://www.searchenginejournal.com/new-details-of-wordpress-6-0-reveal-major-changes/448508/someimage.jpg" alt="" width="100" height="100"/></figure></div>

The new way:

<figure class="wp-block-image alignleft"><img src="https://www.searchenginejournal.com/new-details-of-wordpress-6-0-reveal-major-changes/448508/someimage.jpg" alt="" width="100" height="100"/></figure>

This change only happens for themes that support the new theme.json file.

Another change is the removal of html elements called “divs” that were automatically added to all blocks that had alignments applied.

There are more improvements

WordPress 6.0 deserves to be called a major release

The above changes are just a few of the upgrades that will be introduced with WordPress 6.0. There are also WordPress accessibility improvements, Bootstrap/Load performance improvements, cache API, media handling performance improvements, and a total of 97 improvements and 131 fixes. bugs.

WordPress 6.0 is released on May 24, 2022.

Quote

Read the WordPress announcement

WordPress 6.0 Field Guide

]]>
How To Fix ‘502 Bad Gateway Error’ 2022 Tip https://themekiller.me/how-to-fix-502-bad-gateway-error-2022-tip/ Tue, 26 Apr 2022 09:05:44 +0000 https://themekiller.me/how-to-fix-502-bad-gateway-error-2022-tip/ This tutorial is about how to resolve the ‘502 Bad Gateway Error’ error. We will do our best for you to understand this guide. I hope you will like this blog How to Fix ‘502 Bad Gateway Error’ Issue. If your answer is yes, please share after reading this.Contents Check how to fix ‘502 Bad […]]]>

This tutorial is about how to resolve the ‘502 Bad Gateway Error’ error. We will do our best for you to understand this guide. I hope you will like this blog How to Fix ‘502 Bad Gateway Error’ Issue. If your answer is yes, please share after reading this.
Contents

Check how to fix ‘502 Bad Gateway Error’

A 502 bad gateway error means that the web server you are connected to is acting as a proxy to pass information from another server, but received an incorrect response from that other server. The error is called 502 because it is the HTTP status code used by the web server to describe this type of error. It is possible that the server is overloaded or there are network problems between the two servers and it is only a temporary problem. It is also possible that there is a misconfigured firewall or a programming error, and the issue will not be resolved until these issues are resolved.

As with 404 errors, web designers can customize the appearance of a 502 error. As a result, you may see different 502 pages on different websites. In the vast majority of cases, this is a server-side error that you can’t do anything about. Sometimes it’s a temporary bug, but sometimes it’s not. Still, there are a few things you can try for yourself.

Fixed ‘502 Bad Gateway Error’ issue

Refresh the page

The first solution is quite simple: wait a minute or two and refresh the page you are on. In many cases, the error stems from a sudden increase in traffic. So a simple page refresh will usually do the trick. For a shortcut, Windows users can press F5 or CTRL+F5, while Mac users can press CMD+R.

You can also try to check if the website is offline using an online tool, such as Website Planet or Host Tracker. This will help identify if a server or client side issue is causing the error.

Clear browser cache

If the error persists, your browser’s cache may have stored outdated and corrupted files. In this case, clearing the browser cache can fix an HTTP 502 Bad Gateway error.

Please note that by clearing the cache, you may lose important browser data, including bookmarks and configuration preferences. To avoid this, simply export your data from the browser and import it later.

Try in private browsing mode

Accessing the website in incognito mode is also a good idea, as this helps determine if you are getting the http 502 error message due to a browser-related issue. To open an incognito window, click the three dots button on your browser screen and select New incognito window.

If the error does not occur in incognito mode, the problem may be caused by a browser extension. With that in mind, try phasing out your plugins or extensions. Once you remove the one causing the error, you should be able to access the website.

If disabling extensions doesn’t help, try opening another browser. For example, if you’re currently on Google Chrome, try using Mozilla Firefox. When the page loads normally in the new browser, your old browser may be causing the error. To fix the problem, try removing and reinstalling your faulty browser.

Flush DNS

The 502 Bad Gateway error can also occur due to DNS issues such as bad IP addresses and unresponsive DNS servers. In this case, clearing your DNS cache may be the solution. This method works the same way as clearing your browser’s cache. It will delete bad files from your DNS server.

Temporarily changing your DNS servers is another step you can take. By default, your DNS servers are assigned by your ISP. However, you can always replace it with a third-party server, like Google Public DNS.

Try on another device

If none of the solutions above fixed the HTTP 502 error, try connecting on another computer or mobile device, preferably connected to another network.

Try restarting your PC and other network equipment. To do this, turn off your computer and unplug your wireless router. Wait a moment and reconnect them. This step helps you decide if the error is related to your network equipment or if the problem lies elsewhere.

Check error log

When you encounter a 502 Bad Gateway error after a particular change or update, the fault may lie with your own server. The best approach to solving this problem is to check your error log. Your hosting service usually provides access to enable website error logging through an admin panel. You can also enable error logging on your WordPress site by adding the following lines to wp-config.php:

set(‘WP_DEBUG’, true); set(‘WP_DEBUG_LOG’, true); set(‘WP_DEBUG_DISPLAY’, false);

Any errors generated will appear in the wp-contents/debug.log file, allowing you to spot which ones are causing a 502 Bad Gateway error.

Check plugins and themes

Sometimes faulty plugins or themes can be one of the reasons for a 502 Bad Gateway error. This is because poorly coded plugins and themes can conflict with each other. When this happens, your server stops all scripts and requests to your website, making it inaccessible.

For some websites, the problem usually stems from caching or security plugins. Chances are that these plugins are blocking communication between servers, which will cause the error to persist. If you haven’t installed any caching or security plugins, but you are still getting an HTTP 502 error, it’s best to disable your plugins and re-enable them one by one. To do this, go to Plugins and simply click on Disable in the Bulk Actions menu.

Then activate each plugin while updating your WordPress site after each. Once the 502 error reappears, you have found the problematic plugin. However, if you cannot access your WordPress control panel, you can try disabling them from your hosting panel or FTP program. Navigate to the wp-content directory and rename the plugins directory, for example plugins-disable. If you’re using Hostinger, go to your hPanel and click Files. From there go to File Manager -> public_html -> wp-content.

Once your site is up and running after disabling all plugins, you can rename the folder to plugins. Then try to activate the plugins one by one to determine which caused the error first. If the website still isn’t working, follow the same steps with your WordPress themes.

Check the status of the site

If the 502 error persists despite trying most methods so far, the origin server may be down. Fortunately, there are plenty of tools on the web to check if a site is down, including Down for Everyone or Just Me and IsItDown. Just enter your URL and check your website status.

Final Words: How to Fix “502 Bad Gateway Error”

I hope you understand this article How to Fix ‘502 Bad Gateway Error’ Issue, if your answer is no, you can ask anything via the contact forum section linked to this article. And if your answer is yes, share this article with your family and friends.

]]>
WP Engine makes Atlas available https://themekiller.me/wp-engine-makes-atlas-available/ Mon, 25 Apr 2022 13:28:16 +0000 https://themekiller.me/wp-engine-makes-atlas-available/ PHOTO: BalanceFormCreative WP Engine, a WordPress technology company, announced the availability of Atlas, a WordPress headless solution. Developers can develop their sites on Atlas. Prices range from $49 to $499, and there’s Atlas Blueprints, which offers free, professionally designed starter sites that allow anyone to get started and run headless with WordPress. Jason Cohen, Founder […]]]>

PHOTO: BalanceFormCreative

WP Engine, a WordPress technology company, announced the availability of Atlas, a WordPress headless solution. Developers can develop their sites on Atlas. Prices range from $49 to $499, and there’s Atlas Blueprints, which offers free, professionally designed starter sites that allow anyone to get started and run headless with WordPress.

Jason Cohen, Founder and CTO at WP Engine, told CMSWire that WP Engine has seen a flood of interest in Headless WordPress with the release of Atlas in 2021. Many established WordPress developers wanted to know more about headless, but they needed a simple on-ramp to get started and build modest sites quickly, he added. There was also a wide variety of demands, so they designed new Atlas plans to accommodate this range, supporting brands and agencies around the world.

Atlas can help marketers and developers

Developers benefit directly from Atlas, according to Cohen. Developers are enthusiasts and architects who are always pushing boundaries and discovering new ways to harness the potential of WordPress, whether they work as freelancers, agencies, or in-house at a corporate brand, he said. he adds.

“WP Engine is a WordPress technology company that provides developer-centric WordPress products for businesses and agencies of all sizes, including Managed WordPress Hosting, Enterprise WordPress, Headless WordPress, Flywheel, Local and Genesis . They serve 150 countries,” Cohen said.

Most developers using Atlas have extensive WordPress and PHP experience and are looking to grow in API-centric headless web engineering. Together with the Atlas, Atlas Blueprints and Atlas Sandbox plans, they allow marketers to use the WordPress CMS they have come to know, while allowing developers to use modern Javascript-based front-ends to build secure sites. and develop them.

According to Cohen, many of today’s fantastic innovations in digital experiences emerge from headless architectures, and many developers were excited about headless but didn’t know where to start. The release is a direct result of consumer feedback, market gaps and business innovation.

“Customer-inspired is one of WP Engine’s core values ​​and something we strive for in all the work we do, from product to marketing,” Cohen said. “This announcement came directly from customer feedback and monitoring of our space and the WordPress community. .”

Related article: Web3 and Metaverse Glossary: ​​Every Term You Need to Know

Atlas offers an API for scalable content

The two main differentiators of Atlas are that it’s both comprehensive and highly functional, Cohen said. He added that Atlas controls all layers of construction sites and it is a WP Engine headless solution where front-end and back-end work in harmony.

Atlas is comprehensive because it leverages WP Engine’s existing CDN and provides the scalable content API between the front-end and WordPress, he added.

Related Article: Uniform Acquires Headless Creator

What’s next for WP Engine?

Continuing the theme of completeness, WP Engine will add an integrated Content Search API so customers don’t need to purchase, configure, and manage a separate search provider. They will also extend the capabilities provided in minutes with Blueprints, with more themes and deeper functionality in each theme.

“Our most recent product release was the Atlas Content Modeler, a free WordPress plugin for creating custom post types and fields for headless WordPress sites,” Cohen said. “ACM integrates seamlessly with WPGraphQL, replacing the need for three separate plugins needed to create content templates for headless sites.”

Atlas, Atlas Blueprints, and Sandbox account are now accessible.

]]>
WordPress 6.0 features many accessibility improvements https://themekiller.me/wordpress-6-0-features-many-accessibility-improvements/ Mon, 25 Apr 2022 09:17:25 +0000 https://themekiller.me/wordpress-6-0-features-many-accessibility-improvements/ WordPress recently announced that version 6.0, scheduled for May 24, 2022, will feature a significant number of accessibility improvements that will make WordPress easier for users to use and bring it closer to WCAG 2.0 AA compliance. WordPress Accessibility WordPress maintains inclusiveness and accessibility as a primary goal”as much as possible” for all versions of […]]]>

WordPress recently announced that version 6.0, scheduled for May 24, 2022, will feature a significant number of accessibility improvements that will make WordPress easier for users to use and bring it closer to WCAG 2.0 AA compliance.

WordPress Accessibility

WordPress maintains inclusiveness and accessibility as a primary goal”as much as possible” for all versions of WordPress.

In order to achieve this goal, WordPress has an in-house team that focuses on accessibility.

The WordPress accessibility statement notes:

“The WordPress community and the WordPress open source project are committed to being as inclusive and accessible as possible.

We want users, regardless of device or ability, to be able to post content and maintain a website or app built with WordPress.

Accessibility improvements in WordPress 6.0

WordPress previewed the many improvements coming to WordPress 6.0, currently scheduled for May 24, 2022.

Alternate text

An enhancement to the alt text used on the featured image is to use the post title as alt text when the featured image is linked to the post.

Tab improvements

WordPress noted an addition that allows tabbing in a block placeholder.

The GitHub pull request describes this fix:

“When the focus is on a block with a placeholder (e.g. an Image or Columns block) and we’re in Edit mode, we should be able to tab into the placeholder controls.

This makes the placeholder controls keyboard accessible when the “Contain text cursor inside block” preference is enabled (arrow key navigation into or out of a block does not work with this preference).

It also allows you to tab into a block that only contains an insert block, such as an empty group block.

Screen reader improvements

A number of improvements are aimed at making it easier for editors who use screen readers to navigate blocks and get things done.

A particularly interesting fix is ​​this: no error message is provided when typing incompletely in the tags administration screen. It was discovered during an accessibility audit that when a user leaves a required name field blank in the “tags” edit section, there is a color visual notice of an error but no actual error message was generated. This is fixed in WordPress version 6.0.

Another useful fix involves a flaw in how the toolbar works in iOS and a lack of text labels.

According to the GitHub pull request:

“When using VoiceOver on iOS, the link to open the ‘New’ drop-down menu in the toolbar reads as ‘post new.php’.

Accessibility fixes related to Aria for WordPress 6.0

RichText: reverse disableLineBreaks to determine aria-multiline state.

Remove role attributes on SVGs intended for “decoration”.
This is an improvement that one WordPress contributor called a small change that resulted in a big improvement. This is to add a role=”img” tag but without adding an aria tag to the SVGs. So they removed the role attribute, which solved the problem.

Navigation Block Improvements

The improvements to the navigation block are going to be welcomed by many.

For example, several of the fixes make it easier for screen reader users to understand situations where there are multiple navigation menu blocks, such as a top-level site navigation menu and a second-level menu for categories. , as well as improve UI feedback for screen readers when creating a new menu.

There are additional improvements to various other blocks, including adding an aria tag to the search button.

WordPress List View Improvements

The list view is a user interface for navigating through sections of content.

The list view interface is available via an icon at the top of the page in the WordPress toolbar.

Screenshot of the list view toggle button

Activating the icon via the toggle button reveals the drop-down menu which remains open during use.

WordPress has announced eight list view UI improvements which, among other things, improve the ability to select specific blocks, improve aria tags, improve keyboard controls and announcements while navigating in the list view and other improvements.

Media handling improvements

WordPress also introduces improvements in media management.

According to WordPress:

  • “Preserve attachment properties when cropping custom logo. This means that an image’s alt text, title, description, and caption will migrate to the cropped copy of the image after cropping.
  • Stop arrow keys from changing media if URL is targeted.
  • Add a “Copy URL to clipboard” function to the list table view.
  • Set a keyword on a sample permalink so that the full permalink is visible on mobile devices in posts, media, and comments.
  • Remove target empty attribute from media uploader edit links.
  • Remove target=”_blank” from the link to change the permalink structures and edit the link text to clarify the purpose of the link. »

Additional accessibility improvements

WordPress 6.0 also improves screen reader and keyboard functionality in quick/bulk edit, fixes issues with login and register buttons to add autocomplete values, but in a way which is not a security issue since the values ​​are stored in the browser (more here).

Finally, various accessibility improvements have been made to the official WordPress themes:

  • “Twenty Nineteen: Override flexible order as comment.
  • Twenty Twenty: Turn search into a dialog role and fix aria-expanded handling to sync mobile and desktop buttons.
  • Twenty Twenty-One: Reverse logic for reduced motion preferred media queries.
  • Use the cursor pointer when hovering over the theme details button to ensure consistency with the theme map. »

WordPress 6.0 Accessibility

The WordPress Accessibility Team has put a lot of effort into making WordPress 6.0 accessible and inclusive, in line with its stated goal of making WordPress WCAG 2.0 AA compliant as much as possible.

Quote

Read the official WordPress announcement

WordPress 6.0 Accessibility Improvements

]]>