Kwatog & Co » WordPress

Remove WordPress Maintenance Mode

admin — Sat, 03 Mar 2012 16:22:39 +0000

Sometimes, upgrades fail at some point for some reason. That will leave your site in maintenance mode and unusable. That’s the “Briefly Unavailable for Scheduled Maintenance” that we see while the upgrade is on-going or if it fails. So how do we get out of the maintenance mode?

The Fix

The fix is as simple as deleting the file named .maintenance in the root folder of the site. You can delete the file via your favorite ftp or ssh client.

The Reason

During upgrade, WordPress creates a .maintenance file in the root folder. This file is removed after the upgrade is finished.

Source:
WordPress Codex

How To Turn Off eShop Test Mode

admin — Tue, 31 Jan 2012 06:27:55 +0000

If you are using the latest WordPress version (which you should!!!), you’ll notice that eShop plugin will be perpetually set to Test Mode and there’s no way to turn it off. There’s quite a number of suggestions in the official forum at quirm.net but as it turns out, the option is inadvertently hidden. All you have to do is to activate the two column mode of the dashboard and you’ll be able to see the dropdown option.

To be clear, here’s the screenshot on how to do it.
Step 1 : click on 2 in the Number of Columns Screen options.

Step 2 : Update the status to Live and click on Save.

For those looking for it, I know how you feel. I just felt too stupid to not thinking about it. Admittedly, it’s probably one of the many plugins affected by the latest WordPress enhancements. I bet once rich updated the plugin to conform with the new standard, then it won’t be a problem anymore.

Source:

http://quirm.net/forum/topic.php?id=4716

Apache Cannot Allocate Memory Problem

admin — Sat, 23 Jul 2011 16:42:14 +0000

For the past month, I have been encountering some problems with my WordPress installation. I keep getting the Error 500. I checked the log files and here’s what I found.
(12)Cannot allocate memory: couldn't create child process: /opt/suphp/sbin/suphp for

It’s can’t be right because JaguarPC has just upgraded my VPS and my new limit 640MB. I checked my memory usage and it’s only 112MB. I raised a ticket and the support did not find any problem on my settings and they also noticed that I have ample amount of spare memory. Take note that my VPS has a 2GB burstable memory. So that’s quite big for a small site that I maintain. So what’s the problem? My guess is on my settings especially that I did not change it ever since I started with 198MB of guaranteed memory. Others are blaming WordPress 3.2. Honestly, I don’t know what’s the cause but here are the things that I did.

First, increase the prefork settings on httpd.conf.
StartServers 5 MinSpareServers 10 MaxSpareServers 20 ServerLimit 100 MaxClients 100 MaxRequestsPerChild 2000
Second is the KeepAlive settings which was set to Off
KeepAlive Off

After doing this, it seemed like the server stabilized. However, I again hit the error the next day. So I again checked what I can change. This time, I looked at the php.ini’s memory limit.
memory_limit = 32M ; Maximum amount of memory a script may consume (8MB)
That was originally 64M. I’ll update the post later if I hit the problem again. I might tweak both the php.ini and prefork settings if it fails again.

Missing Custom Fields on WordPress 3.2

admin — Sat, 09 Jul 2011 16:24:57 +0000

I’m now using WordPress 3.2 in all my new installation. Of course, I already upgraded the rest of my websites. But I found something that’s really strange. The Custom Fields and a few other modules are missing the the post editor. I was thinking maybe it was removed in the latest version or that it may have been affected by an errant plugin. The problem is that I’m using TwentyEleven theme and no plugins and yet the Custom Fields module is missing. It turned out that there’s actually an option in the Screen Options menu to display/hide certain parts of the editor.

Here’s the screenshot of the Screen Option

I think that menu has been there for the longest time and I’m pretty sure that I’ve used that at least once if I can remember correctly. So now, I’m taking a note of it.

Automatically Convert Emails to NoSpam

admin — Wed, 18 May 2011 15:28:12 +0000

To prevent spam comments on one of the sites that I maintain, I send for approval any comment with at least one URL or email address in it. In that way, manual spammers will find no incentive on leaving comments on the site. At the same time, email addresses left by commenters will not be displayed in the site until it is sanitized. However, the amount of comments in the site in question is so many and manually sanitizing comments with emails is becoming a pain.

So I decided to write a hook to filter the comments and auto-convert the emails into NoSpam format. That is, replacing the @(at sign) and . (dot) in the email. So here’s the purpose of this auto-conversion.

auto-approve legitimate comments even if it has emails in it
prevent email scrapers from harvesting email addresses left by the commenters
send for manual approval any comment with one or more URL other than emails

Just place the code below anywhere on your template’s functions.php.
function Kwatog_NoSpamEmail($text){ $pattern = '/([a-z0-9])(([-a-z0-9._])*([a-z0-9]))*@([a-z0-9])'.'(([a-z0-9-])*([a-z0-9]))+'.'(.([a-z0-9])([-a-z0-9_-])?([a-z0-9])+)+/i'; preg_match_all($pattern, $text, $emails); $symbols = array("@", "."); $safeChars = array("[at]", "[dot]"); foreach ($emails[0] as $email){ $emailsafe = str_replace($symbols, $safeChars, $email); $text = str_replace($email, $emailsafe, $text); } return $text; }

add_filter('comment_text','Kwatog_NoSpamEmail'); add_filter('pre_comment_content', 'Kwatog_NoSpamEmail');

Here’s the sample output after I put in this code.

The code is not actually foolproof but it will be able to trap 90% of the scenarios. Also, the auto-change is applicable for existing and new comments.

I have no intention as of this time to convert snippet into a WordPress plugin so feel free to create one if you feel like it.

Private File Attachments in WordPress

admin — Thu, 18 Nov 2010 12:27:45 +0000

Before WordPress 3.0, I use codes from the plugin Private Files in one of client website to protect the files from illegal download/viewing. It works by not allowing access to WP’s uploads directory and sending and then serving a custom 404 page. It works fine until WordPress 3.0 started sending headers before calling the template’s 404.php. This resulted to the plugin not generating the requested file. After so much googling, I found out that there’s a better way of doing it by using redirect in .htaccess.

Here’s my .htaccess placed on the /wp-content/uploads/ directory.

IndexIgnore * Options +FollowSymlinks RewriteEngine On RewriteCond %{HTTP_REFERER} !^http://(www.)?kwatog.com/ [NC] RewriteCond %{REQUEST_URI} !hotlink.(gif|png|jpg|doc|xls|pdf|html|htm|xlsx|docx) [NC] RewriteRule .*.(gif|png|jpg|doc|xls|pdf|html|htm|xlsx|docx)$ http://www.kwatog.com/filenotexist.txt [NC]

What it does is that files will not be displayed if the referrer is not my own domain. It forces the user/visitor to click on the link to be able to view/download the file(only if the extension is any of those listed above). The checking is not case-sensitive (that’s what [NC] stands for).

Together with my custom codes for user access management, I was able to display and hide links based on the user profile. At the same time, search engines like Google will not be able to crawl and cache my files. So for me, it’s actually many birds in one stone and I didn’t even have to add another code on my themes and plugins (actually, I removed the custom 404). Just to be clear, I managed to get the following with this fix.

Prevent Google from caching and viewing my files
Prevent hotlinking. That is, another site will use images stored on my server to display them on another website. Another thing is that files will not be served/viewed by simply pasting the URL/URI on the address bar.
Forcing the users to login before downloading/viewing files they own.
Prevent users from viewing other user’s files when they are logged in. This is achieved by not displaying the link to the files they do not own.

Whew, that’s a lot! Unfortunately, it took me quite some time to find the solution. Actually, two nights of sleep was lost for this. And like many of the problems I’ve written before, the solution is so damn simple. By the way, the same can be implemented in NGINX (which I also use). Of course, you need to translate the directives.

Source : Unfortunately, I forgot where I got this but it’s somewhere in the WordPress.org forum. I’ll try to update the post once I find it again.

Note : The code is just a sample. It’s not actually running on this blog.

Ciao!

WP MultiSite : Error Connecting to Database

admin — Wed, 20 Oct 2010 09:30:19 +0000

I searched the interwebs and the solutions I found are mostly solving a different problem. To be specific, the problem being solved is about the WordPress MU migrated to WordPress MultiSite. Another problem raised that gets this message is about plugins incompatible with the MultiSite. Of course, you only need to disable those plugins.

Here’s the case I have.
Server Setup
Type : VPS
WebServer : nginx-0.8.51
WP Version : WP 3.0.1 multisite enabled
Plugins Installed : NONE
Problem Description :
After adding new blogs on my multisite installation, the error below

‘Error establishing a database connection
This either means that the username and password information in your wp-config.php file is incorrect or we can’t contact the database server at localhost. This could mean your host’s database server is down.’

Additional Detail : The main site is accessible without any problem. The admin dashboard is configurable. So the message that there’s a problem with the login credentials is simply not true.

The Solution

It’s one of those “too simple why I did not think about that” cases. I had to change the ownership of the wp-content folder to the nginx user.
chown -R nginx:nginx /var/www/domain.com/wp-content
Viola! The problem is solved. The issue here is that when you create a new blog and your webserver (in my case, nginx) cannot write into the wp-content folder (specifically on blogs.dir), WordPress does not throw the correct error message leaving you cold in the dark. I’m not sure if there’s already a bug reported for this. But anyhow, I’ll try to figure out how to report a bug.

If in case you don’t want the webserver user(i.e, nginxuser) to own the folder, you can at least add nginxuser to the group that owns the folder and make the folder group writable (664 or 775).
usermod -G usergroup nginxuser chmod -R 664 /var/www/domain.com/wp-content

Change WordPress Table Prefix

admin — Fri, 06 Aug 2010 14:18:27 +0000

As part of hardening your WordPress installation, it is recommended that we change the prefix of our WP tables. In that way, the ‘bad guys’ and script kiddies will have to guess the name of your tables.

Step 1

Suppose that you want mod as your new table prefix, run the following in your phpMyAdmin.
RENAME TABLE wp_commentmeta TO mod_commentmeta ,wp_comments TO mod_comments ,wp_links TO mod_links ,wp_options TO mod_options ,wp_postmeta TO mod_postmeta ,wp_posts TO mod_posts ,wp_terms TO mod_terms ,wp_term_relationships TO mod_term_relationships ,wp_term_taxonomy TO mod_term_taxonomy ,wp_usermeta TO mod_usermeta ,wp_users TO mod_users;

Step 2

UPDATE `mod_options` SET `option_name` = 'mod_user_roles' WHERE `option_name` ='wp_user_roles' AND `blog_id` =0;

Step 3

UPDATE `mod_usermeta` SET `meta_key` = REPLACE( `meta_key` , 'wp_', 'mod_' ) WHERE option_name LIKE 'wp_%';
The preceding two steps are needed because in the later versions of WordPress, some tables are converted to records. Skipping these two steps will lead to permission error. To be specific, the error is as below.

You do not have sufficient permissions to access this page.

Hmn… well, that’s just it.

Usual Disclaimer

Renaming your table doesn’t mean that you’ll be safe from the bad guys (otherwise known as ‘hackers’). It’s just one of the holes to plug and will only help in hardening your installation. However, be aware that there could be other things that can break or compromised. So be vigilant and always install the latest version of WordPress.

WordPress 404 Page Not Working in IE

admin — Thu, 29 Jul 2010 11:40:18 +0000

As stated in the title, my 404 template in WordPress does not show up every time a non-existent URL is accessed in my site. The page works perfectly in FireFox and Chrome, though. So I made a quick search and found that the solution is to add another header information in the page. So here’s what to insert at the very start of 404.php.

For this, credit goes to wpcanada.
http://wpcanada.ca/2008/03/20/ie-and-custom-error-pages/

This is also touched in weblogtoolscollection.com at http://weblogtoolscollection.com/archives/2004/07/31/gzip-compression-issue-in-wordpress-12-mingus/

Note: ob_start() is a PHP function Turn on output buffering… whatever that means.

Get Category Name in WordPress

admin — Wed, 03 Feb 2010 13:03:11 +0000

This is another super simple and yet super helpful WordPress function that took me a while to find. I’m currently working on a WP Theme that requires me to show the category name. And I thought it isn’t right to write an SQL including all the necessary stuffs that comes with querying the database just to get the category name. There must be a simpler and better way… and there is! Here’s the simple code to do just that.

Cool!

Reference: http://codex.wordpress.org/Function_Reference/get_cat_name