Graphic and Web Design + Development

Blog

Hello world!

Posted by on Dec 5, 2011 in Uncategorized | 0 comments

Welcome to WordPress. This is your first post. Edit or delete it, then start blogging!

WP 3.2 RC1 released

Posted by on Jun 14, 2011 in Blog | 0 comments

WP 3.2 RC1 released

We’ve been testing the latest release candidate for WordPress 3.2. A lot of bug fixes and stability improvements, but a good amount of new functionality being rolled out as well.

The highlights –

  • The visual editor now has a full screen composing option
  • Minor UI changes to admin panel
  • Release of the new reference theme Twenty Eleven, though it’s not at the RC stage just yet – still late-beta.
  • Integration of BrosweHappy, prompting users on outdated browsers to update.
  • Admin bar gets beefed up with additional links.
  • Minimum requirements on the server side get bumped to PHP 5.2.4 and MySQL 5.0.

Perhaps the biggest news, WP has finally dropped support for IE6. Even if they’re a bit behind the trend, it’s a welcome change.

Get in on the development IRC channel at irc.freenode.net #wordpress-dev.

 

Securing WordPress using .htaccess

Posted by on Jun 8, 2011 in Blog | 0 comments

Securing WordPress using .htaccess

Picked up a new tool to harden WordPress security through the htaccess file. Would like to thank the folks over at Blog Security for their work on this.

Important Note: Please ensure that your WordPress files and database are backed up before attempting any of these changes.

Step 1 – Restricting wp-content and wp-includes

Using htaccess <files> directive, we can restrict all files accept images, CSS and JavaScript.

The .htaccess file will look as follows:

Order Allow,Deny
Deny from all
<Files ~ ".(css|jpe?g|png|gif|js)$"> 
Allow from all
</Files>

If we want to allow certain plugins such as Democracy, we can append the following to our wp-content/.htaccess file:

<Files "democracy.php"> 
Allow from all
</Files>

Put this into your .htaccess file within your wp-content and wp-includes directories. As a side note, you can also allow specific files to get your plugins and/or templates to work, if needs be. This is a much cleaner method to do it then discussed in a previous version of this document.

If you got through that, well done.

Step 2 – Restricting access to wp-admin

Now to restrict wp-admin you have two choices. Put a .htaccess file into your wp-admin directory with one of the two choices below.

You can resrict it by IP:

order deny,allow
allow from a.b.c.d #This is your static IP
deny from all

The above code will prevent browser access to any file in these directories other than “a.b.c.d” which you should change to be your static IP address.

OR restrict the directory with a password:

AuthUserFile /etc/httpd/htpasswd
AuthType Basic
AuthName "restricted"
Order Deny,Allow
Deny from all
Require valid-user
Satisfy any

OR improved version:

There is a bug where the above rules will cause a password box to appear to the user if they submit a comment without an e-mail address. This occurs, because some CSS and image files are located inside the wp-admin directory. To get around this we can wrap the above rule set in a file directive which disallows .PHP files but permits the rest.

This still prevents alot of direct attacks and also provides alot of additional features.

<Files ~ ".(php)$">
AuthUserFile /etc/httpd/htpasswd
AuthType Basic
AuthName "restricted"
Order Deny,Allow
Deny from all
Require valid-user
Satisfy any</Files>

Thats it! you now have a more secure install and hopefully everything still works for you.

New additions to our print lineup

Posted by on Jun 8, 2011 in Blog | 0 comments

New additions to our print lineup

We’re announcing two new additions to our print lineup – gift certificates and event tickets. You’ll find these new products in our print catalog under controlled receipts. These new items feature elegant and thick 10pt cardstock, full color printed on full-bleed commercial press.

Printing starts at just $38 + design. An amazing low price for custom, professional gift certificates to build customer loyalty.

 

 

Event TicketsEvent tickets can come with perforations and sequential numbering. Perforations allow easy separation of two sections of the material, the other half of the tickets can be kept as souvenirs from the event.

Minimum Size: 5.5″ x 2″
Maximum Size: 5.5″ x 2″
Minimum Quantity: 50

 

Gift CertificatesGift certificates are perfect as prizes, promotional gifts and customer loyalty campaign tools. You have sequential numbering options to keep track of each gift certificate, as well as the option to receive them with custom matching #10 envelopes.

Minimum Size: 3″ x 7″
Maximum Size: 3.5″ x 8.5″
Minimum Quantity: 50

Dynamically assigning https for SSL

Posted by on Jun 8, 2011 in Blog | 0 comments

Dynamically assigning https for SSL

Working on an e-commerce site for a client, and I started thinking about the best way to define which pages would be routed through the SSL encryption. I could make the whole site as https, but I’d rather avoid the performance trad-off. Instead, what I do is at the top of my files have a variable when it requires SSL

$requireSSL = true;

Use a variable, or define a constant, whatever you want to do. And at the top of my header.php I have

if($requireSSL && $_SERVER['SERVER_PORT'] != 443) {
   header("HTTP/1.1 301 Moved Permanently");
   header("Location: https://".$_SERVER['HTTP_HOST']."/".$_SERVER['REQUEST_URI']);
  die(); //incase output buffering is on
}
if(!$requireSSL && $_SERVER['SERVER_PORT'] == 443){
   header("HTTP/1.1 301 Moved Permanently");
   header("Location: http://".$_SERVER['HTTP_HOST']."/".$_SERVER['REQUEST_URI']);
   die(); //incase output buffering is on
}

So when it comes to the file you want to require SSL on you just have a file like myaccount.php

<?php
    $requireSSL = true;
    require_once("header.php");
    echo "Content";
?>

This will make it easy to set any pages with user input as SSL and redirects back to http:// on pages where it is not required (it is a bit faster on http).

 

Ask Huntsville!

Posted by on May 27, 2011 in Portfolio | Comments Off on Ask Huntsville!

Ask Huntsville!

Client: Ask Huntsville!
URL: askhuntsville.com
Brief: A community-driven Q&A site for the Huntsville area, featuring user account management and pass-through authentication with Twitter and Facebook credentials. Developed seamless affiliate integration through on-the-fly XML parsing and custom CSS-themed modules.

 

Services provided:

  • Logo
  • Website

 Ask Huntsville Ask Huntsville Ask Huntsville

SOCA Galleria

Posted by on Apr 30, 2011 in Portfolio | Comments Off on SOCA Galleria

SOCA Galleria

Client: SOCA Galleria
URL: socagalleria.com
Brief: A hybrid art studio/gallery in Huntsville needed a feature-rich site to handle online registrations, while communicating a design aesthetic fit for an art gallery. Moxy delivered a website packed with custom functionality and an integrated visual design that reinforces the gallery’s brand.

 

Services provided:

  • Website

Diane Christenson, Owner
Moxy Mediaworks took our crumbling webpage and transformed it into a beautiful, functioning website that we absolutely love.  We’ve had so many compliments, and it’s very easy for us to use.  The support we’ve received from Moxy is just outstanding, from the initial training to every question we’ve had along the way.  I can recommend Moxy Mediaworks without reservation to anyone looking to improve their web presence.
Diane Christenson, Owner SOCA Galleria
 
SOCA Galleria SOCA Galleria SOCA Galleria

Horizon Sports Associates

Posted by on Apr 12, 2011 in Portfolio | Comments Off on Horizon Sports Associates

Horizon Sports Associates

Client: Horizon Sports Associates
URL: horizonsportsassociates.com
Brief: When Horizon Sports Associates needed a partner to develop their professional image online, they turned to Moxy. In addition to providing video conversion services, we delivered a comprehensive brand identity including a new logo, business cards/stationary, and website.

 

 

Services provided:

  • Logo
  • Website
  • Print
  • Video

 Horizon Sports Associates Horizon Sports Associates Horizon Sports Associates

Push It Gym

Posted by on Mar 22, 2011 in Portfolio | Comments Off on Push It Gym

Push It Gym

Client: Push It Gym
URL: pushitgym.com
Brief: Getting ready to open their doors for the first time, a hard-hitting fitness gym needed a logo, website, and commercial. Moxy delivered an integrated brand with a style that communicated the toughness of a gym, but refined through the website’s clean layout.

 

Services provided:

  • Logo
  • Website
  • Video

 Push It Gym

Law Office of Mitchell Howie

Posted by on Feb 16, 2011 in Portfolio | Comments Off on Law Office of Mitchell Howie

Law Office of Mitchell Howie

Client: Law Office of Mitchell Howie
URL: mitchellhowie.com

Brief: When the aging website of a Huntsville law firm needed to be able to compete online, Moxy delivered a rebuilt site with an updated visual style, optimizations for search engine ranking, and integration with Twitter and Facebook.  Pages were redesigned to communicate a clear call-to-action to drive conversion rates.

 

Services provided:

  • Logo
  • Website

 Law Office of Mitchell Howie