“How to create strong password”
Hello Everybody,
Here is introducing myself "blog@riyad" as a new blogger with new ideas!
Xeon's official blog is really a good place for the blogger's who wants to share there ideas specially related to "e"!
I mean internet,information technology and so many more...
Now a days,we all have to create many types of account to log in in many site,and for this reason Individual's user name & password is very much important thing to remember.In case of mailboxes or social communicating sites,we all have very important mails,important data and many more.So it is very important to create a strong password so that anyone can't access our account and get all important information of us! So i like to give some tips to all so that we can make our account info's safe & secure!
- First of all, we have to think a password that is easy to remember but strong to break by others.Cause if we just think only to make it strong and make it critical,then there is a chance to forget it!
- Password should contain more then 8 characters cause many sites requirement is this.
- Password should be a perfect combination of both letters and numbers cause it is difficult to guess by others.
- Password should not related to anyone's personal matters! Cause it is easy to find the password by others who knows about u!
- Password can be related to old memories so u can remember it easily !
- Password should be a word which is structured backward.example,"hsedalgnab"(original word=bangladesh).
- Password should not match the user name or full copy of it.
- Password should not contain hyphen,full stop,comma,or any other punctuation marks.
- Password should not saved by the browser of a PC which is use by many users.
- Password should not be same of other accounts of a user who uses many account.
That is all I have to say to all who wants to make a strong password and keep their account safe & secure!!
Take care.
Give less and Get more
It is our pleasure to have some talented customers/partners with us in these days of hardship and scarcity.
We all know a proverb that “Survival for the fittest”, yes in these days those will survive who are fit and able to keep their existence on earth with full dignity and boldness as well as on internet world same words echo.
We are happy to invite our customers/partners in our first client participation program called “Give less and Get more” which is actually an idea sharing program in our official blog. It is very much easy that you just register yourself in our blog, post article in a continuous flow through three months and you will win many attractive prizes. The terms are very simple that we are mentioning in the following:
- Your article should be relevant to our services (Domain, Hosting, Server, IP, SSL, E-Commerce, Web Design) and some other relevant categories article you can submit are related to Technology, Programming Language, Latest Software or IT services.
- Do not spam and do not post warez link otherwise you will be banned.
- Do not copy and paste from other article that may violate the copyright laws and result you banned forever.
- We will track all users’ articles posting and verify it by human. Three (3) selected article writer will be rewarded by exclusive prizes.
- After 3 months all the blog post will analyzed and winners name (1st, 2nd, 3rd) will announced. Judgment will made upon quality of post, usability of the post, most read post, useful comment on the post, search engine impression upon the post etc. For making the judgement process transparent we'll invite some of our experts client/partners to take this responsibility.
Some tips that may help you:
- Do not stumble upon the flow of your article posting and keep a rhythm.
- Use wiki reference and research on internet before posting article.
- Make SEO friendly article that will help you to be in the top position on the program.
- Search our blog before posting an article because duplicate article may cause harm.
- More you'll post more opportunity you'll get to become a winner.
That is all for this moment from us. If you have any question related to this program than feel free to comment on this blog post. We will fulfill your thirst.
Hope this program for you will be able to give you a extra excitement and also help you to enrich your knowledge as well as our every blog readers.
Custom PHP configuration using php.ini
We don’t allow php.ini access from shared hosting/reseller hosting servers. You can enable or disable various php.ini functions from .htaccess of your account, you can also enable/disable safe mode, register globals, sessions and many other functions from .htaccess.
We have a couple of shared web hosting servers running PHPSuExec reserved for clients who need access to edit php.ini file. Clients whose accounts are setup on one of these servers can create a custom file named “php.ini” and put whatever configuration settings you need to change in it, in the usual php.ini form.
If any one need php.ini access for some other reason then you can also consider our VPS Hosting plans or Managed Web Hosting Plan as you will get full root access on your VPS/Managed Web Hosting Plan along with a dedicated hosting environment to work with.
For Shared/Reseller Hosting account holder:
You may also want to make other changes to allow larger file uploads through php scripts, to set your own sessions directory for better security, to set a temp upload directory, or to change any number of other settings.
You can check your current php settings using the phpinfo() function. Make a .php file that has this one line:
<?php
phpinfo()
?>
If you want to use a custom php.ini file, there are two things to remember:
- Placement of the custom php.ini file is important. If you want to have the php.ini file work for just one directory (say for testing), then place it in that directory. If you want the custom php.ini file to work for the entire site, then add this line to your .htaccess file in your public_html directory: SuPHP_ConfigPath /home/username/directory/
You can place this file anywhere you wish, even above the public_html directory so it is not web accessible. - You will want to make the changes to the XeonBD already customized version of the php.ini file (XeonBD's default php.ini file).
Do not make a custom php.ini file with only the values you want to change or you will lose all the XeonBD's default modifications.
Note: you can find the location of the default php.ini file on your server (to put in the script) by using the phpinfo() function (discussed above).
XeonBD does not make frequent changes to the standard php.ini file, but you still may want to repeat the process once in a while. You could set the scripts to run via cron every night, then you would know you always have the latest revisions.
Little about PhP-Based Hacker’s Malicious code, Exploits
Hackers have been trying new tricks to obfuscate their malicious code and sneak it surreptitiously into benign websites. This trend is ever increasing as websites are now the weakest link in the entire malware chain. Hackers discover vulnerabilities in websites, exploit them to inject malicious bad code and voila – you have at your disposal a “trusted” website – lots of web surfers will drop by, and in turn get infected with the hacker’s malicious code. This vicious cycle of malware has become a very attractive modus operandi for the dark figures of the Internet.
There is more information about these two exploits. It is not just limited to php-based blogs and forums – larger sites, have been hit with this exploit, along with over 2,300 other websites. The average internet surfer will discover that their machine is infected with this virus when they realize their Google search results in Internet Explorer and Firefox have been hijacked – clicking on the result you want will take you to some other site. The virus will also go one step further and look for any FTP credentials on your machine in order to inject the script onto more websites. Some sites have reported that the script can also modify the permissions of specific directories to give them access to write in the files within.
What does this mean to website owners?
- Up to an hour (or more, depending on size) of cleaning up and rebuilding each site infected.
- Visitors receiving warning messages through their browser or security software that your site is dangerous.
- Possibility of being de-listed by Google to prevent spreading the virus.
So how do you protect yourself, the average internet surfer?
- Update your Adobe Reader to the latest version, and under the Edit menu > Preferences, uncheck the Enable JavaScript option.
- Update your Flash Player to the latest version.
- Update your security software and scan for spyware / viruses.
How do you clean your infected WordPress site?
- First, protect your machine as listed above. Uploading files onto your website from an infected machine will just lead to more injections of the script later.
- For the previous exploit, simply cleaning the PHP files and JavaScript’s within your WordPress installation, themes, and plugins was seemingly enough. But the new exploit will go further and add the injected script to JavaScript and HTML files anywhere on your site, down to the simple readme.html files that come with themes, plugins, etc.
- The newer scripts also add an images.php and/or gifimg.php file with the malicious code to many or all of your images directories, from the main one down to image directories in themes, plugin folders, and so on.
- If you have to go in and remove the malicious code manually, you will find it in the top of PHP files, near the bottom of JavaScript files, and in the head area of HTML files between script tags. Also in the injected images.php and/or gifimg.php files in image directories. The code can vary from site to site, even page to page.
How do you protect your website from further attacks?
- For WordPress, apply recommended security measures.
- Do not save/remember your FTP credentials or administrative logins to your websites. Also, be sure to use a secure FTP client.
- Keep a clean backup of the latest changes you have made to your site. The better your backup, the faster your rebuild process if this happens to you.
Easy Step To Move WordPress Site in a New Hosting Server
Hi dears,
Today I am going to tell you about an very easy guide on how to move or transfer a wordpress site into a new web hosting server. It is very easy and won't cause you any loss. Please read through my steps and you will be done very smoothly.
1) Upgrade your WordPress
Upgrade your WordPress installation. This is important if you want to use Fantastico to install WordPress script in your new web hosting later as they tend to provide the latest version of the script for automatic installation.
2) Backup needed files and database
a) Backup your wp-content folder that usually contains your uploaded files and images, plugins, and themes files. Backup also other personal files you wish to transfer to the new host. A good FTP program that let us do this quick is FileZilla since it’s free and easy to use. Keep the files properly in your hard disk.
b) Identify the database name that your WordPress blog is currently using and then backup it using phpMyadmin. How you are able to do that has been explained briefly by WordPress team here. Backup several copies for safety. If you plan to download the database using Firefox browser, don’t opt to get the file in .gz archive as Firefox might corrupt it later.
note: What you should have now in hands are: database + any files you wish to transfer + folders and files in /wp-content folder. If you got all the items, then proceed to the next step.
3) Change your domain’s name servers
Change the nameserver of your domain to the name servers provided by your new web hosting company using your domain registrar control panel. As example, for XeonBD change to: ns1.xeonbd.com, ns2.xeonbd.com, ns3.xeonbd.net .
Usually, DNS propagation will take some time to complete so while waiting, turn to the next step. Make sure that you can access your FTP server (where you can upload files) in your new web hosting using FTP program first. (Refer to your new web hosting’s documentation in FTP section)
3) Install WordPress (fresh install) in your new web hosting.
After you have verified that the FTP program can connect correctly, using Fantastico or any other script installation service in the cPanel, do a fresh installation of WordPress blog in your new web hosting. After that, delete its database.
4) Upload needed files and database to the installation folder
a) Using the FTP program again, upload files in /wp-content folder just now to the same folder in your new installation. Choose overwriting when the FTP program ask you what to do with the file with the same name.
b) After finished uploading, upload your previous blog’s database to your web hosting using phpMyAdmin. If your database file is larger than 8mb, then e-mail your new web hosting company technical support to import it for you: upload the database in your old web host + email them the download link and your account details.
5) Connect your WordPress to the database
Connect your fresh installation of WordPress just now to the database imported by editing required database information in wp-config.php file in the root folder of the installation (where you can find index.php in), according to your imported database name, user name, password, and host name (usually localhost).
6) Congratulation!
The steps mentioned above if done properly than your recently moved wordpress site will be working properly without any hassle.