Tips & Tricks

Just when you thought you seen it all, another type of scam to take your hard earned money pops up. In our mailbox this week we found a statement in the mail from the INS! No, not the Immigration and Naturalization Service, but the Internet Name Security! The invoice they sent gives us the impression that a one of our domain names is not safe, and to send $99.95 for their DomainSafe monitoring system. The letter actually states that, "Increasing threat levels from domain theft and domain hijacking mean that it is imperative you monitor the status of your online identity!” Unfortunately for them, we’re not falling for this type of direct mail scam and you shouldn’t either! This type of direct mail marketing scam is aimed at consumers who do not realize that their domain names are in fact already secure with their current domain registrar, and in most cases set as “locked”  by default.

A locked domain protects you from unauthorized third parties who might try to misdirect your name servers or transfer your domain without your permission. Only the domain registrar is able to unlock a domain and modify it’s name servers.

If you received one of these letters, please ignore it! Do NOT complete the payment slip at the bottom or make any payments to this company. The address listed is: P.O. Box 1120 Niagara Falls, NY 14304. Beware!

Last week we deployed another successful Magento ecommerce website. To track the visitors we signed up for a free Google Analytics account, and then plugged their tracking code into the admin section of the Magento administrator area. When we applied the API, the site quickly confirmed that the tracking code was in place through the Google Analytics dashboard.

We then waited 48 hours, and then logged in to see how many visitors hit the site. Turns out that none of the visitors were being tracked! Using the error console within Firefox we reloaded the page, and found the problem instantly. Turns out the Magento coders totally messed up when creating their Google Analytics API. Take a look for yourself, here's the JavaScript they used:

    (function() {
        var ga = document.createElement('script');
        ga.type = 'text/javascript'; ga.async = true;
        ga.src = ('https:' == document.location.protocol ? 'https://ssl' : 'http://www') +
        '.google-analytics.com/ga.js';
        (document.getElementsByTagName('head')[0] || 
        document.getElementsByTagName('body')[0]).appendChild(ga);
    })();

    _gaq.push(["_setAccount", "UA-XXXXXXXX-1"]);
    _gaq.push(["_trackPageview", "/"]);

This is how it should read:

var _gaq = _gaq || [];
_gaq.push(['_setAccount', 'UA-XXXXXXXX-1']);
_gaq.push(['_trackPageview']);
(function() {
var ga = document.createElement('script'); ga.type = 'text/javascript'; ga.async = true;
ga.src = ('https:' == document.location.protocol ? 'https://ssl' : 'http://www') +
 '.google-analytics.com/ga.js';
(document.getElementsByTagName('head')[0] || 
document.getElementsByTagName('body')[0]).appendChild(ga);
})();

As you can see the Magento coders have it all out of order, and forgot the most important line of code that created the “_gaq” object:

var _gaq = _gaq || [];

We can only assume that this API is broken on all Magento builds! To fix this, remove the tracking code from the Magento Google API in the admin area, then use the JavaScript given to you by Google Analytics, and place it in the footer of your website. Whala! Your site is now tracking visitors appropriately with no errors in the error console.

 After installing the new Google toolbar for Firefox we noticed that when opening a new tab the page which was once blank, now displays your web history as tiled web pages for you and everyone to see. The thumb nailed sites will list up to nine, and also shows recently closed and bookmarked pages based on your browser history. For most people this may come in handy, either for instant access to your most visited site, or to spy on whoever used your computer last. As for us here at JVF Consulting, we think the splash page is pretty annoying, the 1 second lag time is too slow for us. So for those of you who also think the toolbar is annoying, here are the correct steps on how to remove it.

1) On the Google Toolbar, right click, and then select “Google Toolbar Options”  or click on the wrench icon and select Options.

2) Under the “Search” tab remove the check next to “Enable the Google new tab page.”

 

3) Now click “Save” and then restart your browser.

From now on you will no longer have the annoying Google toolbar tab page appear when opening a new tab.

 

Search Engine Optimization is the focus of every website JVF Consulting deploys to the World Wide Web. When a new website is on our drawing board, the first question our SEO teams asks he designers is, “Where will we put the h1 tags?”. As simple as the question may seem, most often times the h1 tags have been left out, or there is no room left for them on the page. The importance of the header tags are so great, we will continue to build the website until all the pieces fit perfectly.

For those of you who are not familiar with header tags, I’ll do my very best to explain them as simple as possible. Basically heading tags help structure a webpage and highlight the topics within. Header tags are used to emphasize the importance of a certain text within a page. The h1 element is a heading, the topmost out of six you can use. In other words, there are six headings available in HTML. h1, h2, h3, h4, h5 and h6, with h1 having the most importance, and h6 having the least importance. Therefore, if you use h1 tags (the most important header tag) with a keyword, it's like you’re telling to your site visitors and the search engine spiders that the topic is very important. Google and the other major search engines will know a heading tag when they see one, and always treat it as important relevant information.

One problem some developers have with the h1 tag is that it's often too big and unappealing to use. In most browsers the h1 tag is a huge font that can look out of place on a page, unless it is properly formatted. Fortunately, you can get the best of both worlds by using Cascading Style Sheets (CSS). By using CSS, you're able to tell the browser to display the h1 tag and other tags on your page to look any way you like. This is the trick that most developers are not completely aware of. If you follow these CSS instructions correctly you can get the best of both worlds, which is a boost in keyword relevance, and better control of your site's look.

Here is an example of what the header tags will look like on a webpage that does not have the CSS hack applied.

To trick your header tags you must locate and edit the style sheet of your website. Once you have located your style sheet edit the file to look like this:

When applied to the web the page the h1 tag will be rendered to look like this.

Give that a try on your web page and alter as needed! Once you have mastered this method be sure to implement it on all the websites you deploy for long lasting SEO.

 

 

If you have ever tried posting an ad on craigslist, and was rejected because it was a duplicate, then give this trick a try. This is a simple, but effective strategy I use to get around the craigslist rules.

1. Put together your post.
2. Press the “Print Screen” button.
3. Open paint or photoshop.
4. Paste screen to the canvas.
5. Crop only the copy of your post.
6. Save as .jpg
7. Upload the .jpg to a free image hosting service.
8. Paste the location of your .jpg image between the “quotes”, then copy and paste the code to craigslist.
9. Press “Continue” and publish your duplicate post with no warnings or error messages harassing you!

** This should be only used once a day to prevent spam

Are you a Gmail user? Have you ever tried to send a .zip file or .exe as an attachment and had it rejected? If so you better read up on how JVF fixes this frustrating occurrence with an easy work around.

We all know that Google has some the best spam filtering and phishing detection capabilities on the planet, but the new Gmail virus scanning is a bit disappointing. When you send and receive attachments with Gmail, they are auto scanned for viruses. If Gmail thinks your mail has a virus attached, it will attempt to clean the file or remove it. If it detects a virus and can't remove it, then you won't be able to download it. Sometimes it randomly thinks your attachment is SPAM, deletes it, and then never notifies either party of what happened. Gmail, where did my email go?

All of that is fine and dandy, but what is with the restriction on some of the most basic file extensions? Thanks to the new Gmail antivirus scanner, we are no longer allowed to send or receive emails with .exe, .dll, .ocx, .com or .bat attachments. Even if the same files are sent in a zipped format (.zip, .tar, .tgz, .taz, .z, .gz) they will be rejected! To the best of our knowledge the only format is still allowed is .rar, which is good news for WinRAR users.

I first noticed this when I tried to send a small installer application as an attachment to a friend. When I uploaded the .exe file to Gmail it gave me the alert:

"This is an executable file. For security reasons, Gmail does not allow you to send this type of file."

Wow, are you serious!?! The file I uploaded was not scanned at all, it was just blocked immediately since it was an exe file. Why would Google call this an antivirus scanner when it is merely just blocking attachments with certain file extensions? Yahoo's webmail also has an anti-virus scanner, but it actually works! They accept .exe files,  and they even scan and clean the files if they were found to be infected.

Why would Gmail even allow me to upload the entire exe file to its server for scanning, but not scan it since it was an exe.? The Gmail file uploader should be smart enough to disallow users from uploading files with extensions like exe, com, ocx, etc. This would save time for everyone, especially all users who are still using a dial up connection.

Google has no plans to stop blocking executables as attachments in Gmail, and they also haven't leaked any information as to who is providing the antivirus technology. Yahoo! Mail uses Symantec software to scan for viruses. Hotmail licenses its technology from Trend Micro. Why isn't Google saying which vendor is providing their antivirus technology?

Since you cannot turn off the Gmail antivirus scanning utility, you can use one of the following methods to send an executable program file (exe), and other blocked file formats in Gmail.

1. Rename the file. Change the file extension to fool the Gmail scanner. Example: rename update.zip to update.zib

Or rename the attachment to contain instructions for the recipient to property use it. For example: rename update.exe to update.exe.removeme

2. Use a free file hosting service like Rapidshare, Megaupload, or Yousendit to upload your file. Then email the link to the location of your uploaded file in the body of your Gmail message.

3. If you have lot of .exe files to send, put them in a zip file and change the extension of the zip file as mentioned in step one. Remember, Gmail denies zip attachments that contain exe files. Password protection won't work either since Gmail is able to examine .exe filenames even in password protected zipped file. s as the archived filename listings are not encrypted by the Zip program.

4. Use different compression software like WinRAR. It compresses files in .rar format which is not currently blocked by Google. There is a high probability that Gmail will not support .rar formats in future. So if you do send one be sure the recipient actually received it.

Important: I recommend using only the first technique since all others violate Google's terms and policies. If they do find out they could terminate your Gmail account completely.

Sending virus infected files with Gmail  is against Google's terms of service policy. In some rare cases, If you need to mail an infected file for reporting purposes to an antivirus vendor, like the Symantec Security Response center, you can use any of the above techniques to bypass the virus scanner and attach infected files in your emails.

If you know of a tip or trick for sending attachments through Gmail that we did not list, please post your story in our comments section! Our avid readers will only benefit from your positive comments!

Lend-A-Check Continues to Set Higher Standards

Once we gained access to their current software we were able to assess the issue and set forth a game plan that would put Lend-A-Check back on the right track. The first step was building out a new server. In this case Apache Tomcat was implemented along with Java Servlet (JSP) technology. This technology utilizes the rapid development of web-based applications that are server and platform independent. Once the new server was functioning correctly we then deployed the latest in encryption 256-bit.

    

Encryption is the process of transforming information to make it unreadable to anyone except those possessing special knowledge, usually referred to as a key. The result of the process makes the users information unreadable to all.

Lend-A-Check continues to set higher standards with the services they provide, and the manner in which they offer them. JVF Consulting is here to help your company exceed its customers expectations with encryption technology. Contact us anytime to learn about our business solutions and services.