Archive for the ‘Web Designing’ Category
We all experienced that the Internet empowers people. And using the web to champion a good cause gives it a better chance to succeed. Since I am always in support of improving the lives of the Filipino Deaf through technology, I value people and groups who use IT and social media to promote their advocacy. Presenting….
According to their site,
We are an online local community advocation. goal Our goal to teach “Filipino Sign Language Online”, and we’re on our way. We promote “Deaf Community Empowerment” that value people with hearing disability, and committed to building an all-star, DEAF.PH TEAM.
Their first activity will be a Meet Up at the “Enchanted Kingdom” Theme Park in Sta. Rosa, Laguna. Dubbed, DEAFinitely Fabulous, the event will be on October 27, Saturday. Meeting place will be at Macdonalds Gateway, Cubao starting at 7am. For more information, you may contact:
Mark Joseph Quijano – DeafPH President at these numbers:09216635519 [SMART] and 09358981963 [GLOBE]
Let us support this website. Their community is still very new. But their future is very promising. Aside from offering Filipino Sign Language Online Courses, they will soon provide links and billboard postings about about job opportunities for the deaf, meetings, special announcements, laws, deaf success stories and many more exciting things. True to their cause, the group aims for awareness, appreciation and action.
We are just getting started. COME, LEARN, EXPERIENCE & HAVE FUN!
Come and join this wonderful community and make yourselves DEAFinitely Fabulous! 🙂
Let’s put off my deaf advocacy hat here temporarily and put on my web designing hat in order to give you the technical details of what happened. After arriving from an appointment the whole day last Monday (November 21), I was very much surprised when our Deaf Trainor Sir Jerome approached me and gave me the shocking news that our school’s official website “www.mccid.edu.ph” was hacked!
As he was demo-teaching Internet subject that morning and used our school’s site as his example, he clicked on a page link. He got stunned when a porno site appeared! His students were also surprised and resorted to teasing him assuming that he is fond of opening these sites. When he clicked on the back button, the home page appears unchanged. Again, when he tried to visit another internal link, same thing happened! That disgusting porn site appeared again and again! He felt so humiliated about it. But when he gave me the bad news, I took it as an emergency case.
I have experienced before having websites I designed being hacked by malicious people who have nothing more to do than take glory in destroying other people’s reputation. The first one was with a website I designed being defaced. The other was the Official Government Website being turned into an Middle Eastern Propaganda site. This is the third one .
I took things calmly and tried to make some sense out of the flimsy belief that WordPress sites are difficult to hack. Well these bastards have done it again! Here are the things I did.
- First I tried looking at the codes to see if they actually changed the href tag. They didn’t! WordPress uses php functions to control the links.
- Then I tried checking the site’s files/folders using ftp to see if there are suspicious files added. There weren’t.
- Probably there is a vulnerability in having an outdated WordPress version (3.1.1) so I updated to 3.2.1. Again, the site still redirects to a porn site.
- I tried checking on the Permalinks. On the left menu, I clicked on Permalinks under Settings group. Then I selected the default setting format. It worked! The posts went back to their original content although the permalink was changed. Also, the changes only affected the posts, but not the pages.
- So I looked for plugins that changes the Permalink settings by adding .html or .php on URL and not just the common one. I did find two; the .html on Pages and the Improved Page Permalinks. It didn’t work. It didn’t even change the sites in-links.
- I also tried the Exploit Scanner plugin to view some weak links. But it also produced negative result. I simply cannot find the culprit.
So my last resort is to do what I similarly did with the government website, I need to re-install WordPress. But I gave myself another crack at it. I noticed that when I used Filezilla to view the file directory, all of the WordPress files dates were modified on November 21, the day I updated the version, except for .htaccess file. My doubts became more apparent when I saw the date created was 11/19/2011, which was just fairly recent. That’s most likely the date the malicious person penetrated my site.
To erase my suspicion, I opened the .htaccess file and bam! The file content was compromised! Instead of 401 code File not Found, the malicious hacker changed it to his own porno site. According to Wikipedia,
A .htaccess (hypertext access) file is a directory-level configuration file supported by several web servers, that allows for decentralized management of web server configuration.
The original purpose of .htaccess – reflected in its name – was to allow per-directory access control, by for example requiring a password to access the content. Nowadays however, the .htaccess files can override many other configuration settings including content type and character set, CGI handlers, etc.
So this is the one that overridden our school’s website. When I opened the file, the porno site URL appears!
Now, how do we solve these problems from cropping up again? The answer is, NONE. So long as there are mischievous, good-for-nothing guys out there whose main goal is to destroy others business, the hacking remains. But you can help minimize the intrusion by doing these simple suggestions:
- BACK UP, BACK UP, BACK UP OFTEN – WordPress developers have created plugins to automatically backup your database. My favorite is WordPress Database Backup by Austin Matzko. But nothing beats the old ftp back up style which you all web developers are used to. In this case, I simply deleted the .htaccess file and re-copied the back up one.
- Don’t use .htaccess on your main server folder. Hackers usually look for this file as one of the common way to enter your fortress.
- Since WordPress makes good use of .htaccess file, make sure that the file attribute is set to 444. This means it can only be read but not written.
- Always update your WordPress CMS version. Remember that these malicious guys often attack softwares that are popular and has widespread use. Think about Windows OS as against Apple OS. WorPress is now the most used CMS in the world. Hackers often race themselves in how to crack its codes in order to make them feel satisfied in penetrating the top and the best. But I’m pretty sure the WordPress good guys are doing overtime to make our sites safe.
Consider this as a learning experience and a time for you to brush up your web designing skills. I have been pre-occupied lately by activities related to the deaf community so I don’t update my sites as often as I used to. So I took this situation as an opportunity to review my web design lessons. 🙂
- WordPress 3.3: The 11 Most Important New Features (mashable.com)
- Top 10 Ultimate WordPress Security Plugins (journalxtra.com)
I know that we have been very busy with our own work. But just to show to you that Philippine Web Accessibility Group has not been idle these past few months, I would like to announce that there will be a Web Accessibility Forum tomorrow, August 2, 2011 from 8:00 am to 12:00nn at the “Occupational Health and Safety Center in North Avenue, Diliman, Quezon City in front of Veterans Golf Club.
This activity is in line with the celebration of “White Cane Safety Week” slated from August 1 – 6. The forum will convene the webmasters/web designers of different government agencies as well as key non-government stakeholders in making their websites accessible to Persons with Disabilities called for in the UN Convention on the Rights of Persons With Disabilities.
Mr. Julius Serrano of ATRIEV will be giving short lectures on access of blind persons on the Internet while I will be giving a brief overview of laws and Philippine circular regarding web accessibility.
This forum is free. You may want to drop in to OHSC if you don’t have conflict with your schedules. See you there! 🙂
Good news to our Filipino deaf web designers! The Official Website of the National Council on Disability Affairs won in the Association/ Organization category of the 4th Digital Filipino Web Awards this year.
This is the first time NCDA site won the award given annually by the DigitalFilipino.com Club whose members judge the nominations from the public in over 40 categories. The site was designed by Ervin Reyes, an award winning Deaf web designer together with yours truly under MCCID College of Technology.
The Digital Filipino Web Awards were given last Friday, November 13 at the Hotel Intercontinental in Makati City. It was part of the Digital E-Commerce Summit, which started in Thursday.
The NCDA site award was received by Mr. Dandy Victa, Assistant Chief of Technical Cooperation Division. Yours truly gave the brief overview of the website. I also focused on the promotion of web accessibility.
The websites were reviewed and judged “for their ability to create a noticeable presence on the Internet—their ability to be seen and heard among all the noise and clutter of the Net,” said the award body.
“The DigitalFilipino.com Web Awards aims to advocate the use of Internet and e-commerce for business development, through the identification, promotion and highlighting of best e-commerce practices from various websites in the Philippines,” it said.
• Search engine readiness—title tags, keywords and page strengths.
• Content/organization—clear purpose, target audience clearly defined, citation of sources whenever used, freshness, originality and accuracy of information.
• Structure and navigation—opening page, content connection and transition, writing and conventions, ease of navigation and link usefulness.
• Design and functionality—overall layout, colors, background and text.
• Technical performance—page loading, browser flexibility and live links.
• Interactivity—audience involvement and overall experience
In behalf of the organizers of the Digital Filipino Web Awards, thank you very much for the honor you gave to us. To God be the Glory! 🙂
More than 400 attendees, way above the group’s goal, trooped to Asian Institute of Management (AIM) last July 10 to attend the very first Philippine Web Design Conference spearheaded by the newly formed Philippine Web Designers Organization (PWDO).
Who would have thought that an event as big as this would succeed? Although it was already planned as early as September 2008, it wasn’t until early April when everything starts to roll (thanks to the completion of registration at the Securities and Exchange Commission in March 31.). There were so many kinks to iron out. As late as July 6, the group was still having a problem opening a bank account at BDO due to a mile long requirements which includes the securing of the General Information Sheet (GIS) from SEC. And to top it all, even if more than 300 registered online, only two persons actually paid in cash!
Well, everything went great, way above our expectations! As part of the organizing team, I was aware about the group’s day-to-day developments. The bank account was successfully opened after I got the GIS from SEC. The Asian Institute of Management officials were very generous in giving the group a great venue, good food, free coffee and free wi-fi. The speakers were eloquent and knows their craft. The event started on time but ended quite late due to the Q and A part.
What I am really proud of is the successful holding of the “Disabled Friendly Website Awards” courtesy of the Philippine Web Accessibility Group and the National Council on Disability Affairs. Previous awarding rites were led by the government as part of their program of events. This time, I’m proud to say that it was done in a non-government affair and in front of “real” web designers, not just some government employees who attend government sponsored seminar-workshops with the sole purpose of escaping from work and getting the comforts of free hotels and travel.
I’m also doubly proud that all recipients of the awards were present. They were:
- www.philcecnet.ph – Official Philippine E-center Community Portal of the National Computer Center represented by Ms. Eloisa San Mateo (Government)
- www.blinding-light.com – Personal Website of Ms.Miko Reznor (Anna Monica Esguerra)
- www.lilianefoundationphil.org – Official Website of Liliane Foundation Philippines represented by Sis. Agnetia Naval, National Coordinator (Non-government Organization)
- webstandards.raquedan.com – Web Standards Website of Regnard Raquedan (Personal Website)
They all received a plaque of appreciation courtesy of the NCDA.
Regnard, PWDO’s President, on his interview by the Philippine Daily Inquirer said the group envisions third party certification for Web design in the Philippines. They also look to help train designers in developing their skills further and also to establish ethical and best practice guidelines.
“We’d like to make Filipino Web designers more reliable for an international market and make them more innovative.”
To all the awardees, thank you very much for promoting web accessibility in your websites! And to the PWDO group, you know who you are, kudos to all of us for a job well done! Let’s calendar July as the date when web design conference will always be held. 🙂