Nexcess Blog

CoSchedule: A Closer Look At WordPress Editorial Workflow Management

May 8, 2015 0 Comments

CoScheduleThe best thing I ever did for my blogging career was to start using an editorial calendar. Before that, I had notes everywhere, most of which ended up going nowhere; I didn’t maintain a consistent publishing schedule; and I’d frequently sit down at the beginning of every day with no idea what I was going to write about (a deadly situation for a chronic procrastinator).

Editorial calendars allowed me to plan my publishing schedule, co-ordinate with other writers and editors, see where each piece of content was is its lifecycle, develop consistent writing practices, and hit my deadlines. In short, it allowed me to externalize management and planning, so that I didn’t have to rely on my memory.

Read more

Posted in: Nexcess

Magento Imagine 2015 Slide Decks Are Online

May 7, 2015 0 Comments

Magento Imagine 2015Another Magento Imagine has come and gone, but the excitement surrounding Magento 2 will last all year. We were honored to have the opportunity to once again be a presenting sponsor at the greatest eCommerce conference around. The entire Nexcess team was in esteemed company among so many talented and knowledgeable members of the Magento community in Las Vegas. It was amazing to catch up with all our friends and partners, both at our booth during the days and for a drink in the evenings. And the presentations. Top notch as usual. And we’re not just saying that because we had a few opportunities to get on stage :)

Read more

Posted in: Magento

April’s Best ExpressionEngine, WordPress, and Magento Content from Around the Web

May 4, 2015 0 Comments

RoundupSince our last roundup, there’s been a lot of news in the Magento, ExpressionEngine, and WordPress communities. We had a great time at Magento’s Imagine Commerce event in Las Vegas, and we look forward to the continued progress of Magento 2. However, all the news wasn’t good, as the Shoplift vulnerability made its way to the forefront. If you haven’t downloaded the patch yet, do so now. WordPress also had its own security issues this month, and on the heels of the WordPress 4.2 “Powell” release, you’ll already need to download WordPress 4.2.1. Joining in on the fun, ExpressionEngine made their own security release in April. So without further ado, here’s the rest of the best from April 2015. If you’re looking for the same great content on a day-to-day basis, follow us on Twitter, Facebook, and Google+. Enjoy and let us know if we missed anything important in the comment section. Read more

Posted in: Monthly Roundups

ExpressionEngine vs. WordPress: Which Is Right For Your Site?

May 1, 2015 0 Comments

There is no shortage of powerful content management systems, many of which are capable of being used to build any type of site you can imagine. That does not, however, mean that every content management is the best fit for every site. I’d like to take a look at two content management systems in particular: ExpressionEngine and WordPress. Both are powerful and both have been used to build everything from blogs to the largest enterprise publishing operations, but each has particular strengths.

Read more

Posted in: Nexcess

Bring WordPress and Git Together With Revisr

April 29, 2015 0 Comments

RevisrOutside of the WordPress world, it’s common to use Git to manage a site’s version control. Of course, many theme and plugin developers use Git to manage their source files, but until fairly recently it’s been difficult to put a copy of a site — database and all — into a git repository.

If you’re familiar with Git, the advantages of version controlling a WordPress site will be obvious. If you’re not, let’s start with a brief explanation of what Git is and why it is so popular among developers. Git is a version control system. That means that when changes are made to a file, those changes are “committed” to a Git repository, which keeps a record of all the changes that have been made. One of the key benefits of version control is that it’s possible to roll back changes to a site to any of the existing commit points. If a developer makes a set of changes to a theme that are later revealed to break some of the theme’s functionality, they can simply roll back to a previous commit.

Read more

Posted in: Nexcess

Magento Shoplift Vulnerability – Download Patch Now

April 27, 2015 0 Comments

A patch has been released to fix a remote code execution vulnerability in both Magento Enterprise and Community Editions.

In February, Check Point researchers announced that they released details of the critical RCE (remote code execution) vulnerability in the Magento platform. Checkpoint originally found this exploit back in February and contacted Magento privately regarding the issue. Magento then released a patch (SUPEE-5344) and is available here. The vulnerability is being referred to as Magento Shoplift and could potentially allow an unauthenticated attacker to execute PHP code in an affected server.

Magento has been contacting its clients with details of this vulnerability to both Community and Enterprise versions. If you are running an un-patched vulnerable version of Magento, a message should also be displayed upon logging into your admin interface informing you that patching is needed. This security issue is specific to the Magento core and is unrelated to any specific plugins or themes that you may be running.

Read more

Posted in: Nexcess

Oasis Workflow Plugin Is A Powerful Editorial Workflow Manager For WordPress

April 24, 2015 0 Comments

Oasis Workflow PluginFor a small blog with only one writer, workflows are generally straightforward: write, proofread, publish. I often suggest that one-person blogs take advantage of an editorial calendar, but beyond that there isn’t much need for more advanced workflow management tools.

The situation is entirely different for blogs with multiple writers and editors dealing with a large volume of content. Workflows can quickly become complex as articles move their way through the editorial process: it’s not unusual for an article to be worked on by three or more people at different times, and with that many people involved, it’s all too easy for work to fall between the cracks and for deadlines to be missed. Multi-author and editor blogs need something with a bit more flexibility than a basic editorial calendar.

Read more

Posted in: Nexcess

Complying With EU Cookie Laws In Magento

April 22, 2015 0 Comments

EU Cookie LawsCookies are an essential part of the modern web. Without them we’d be unable to provide the interactive sites and web applications that modern users of the web have come to expect. The web was designed to be stateless — no information about a session was carried between page loads. Cookies are the thread that modern sites use to tie together sessions — they’re how we know who our users are and they’re how we combine a group of page loads into a coherent journey. They’re also how we track users across our sites and the wider web.

It’s the tracking aspect of cookies that has user privacy implications. There are a million reasons that site owners would want to track users, and most of them are benign, but the European Union feels that in the light of the potential for privacy violations, sites should be required to give specific permission for the use of cookies. The Privacy and Electronic Communications (EC Directive) (Amendment) Regulations 2011, which was adopted into the laws of EU member countries made it compulsory to ask for permission when accessing information stored on user’s machines, which includes cookies.

Read more

Posted in: Nexcess

We’ve Brought Two-Factor Authentication To Magento!

April 21, 2015 2 Comments

Two-Factor AuthenticationWe’re happy to announce that we’ve brought two-factor authentication to Magento in partnership with Magento development agency Human Element. This new plugin, named Sentry, will allow Magento retailers a solution for secured, two-factor authentication. Two-factor authentication offers enormously enhanced security for Magento eCommerce stores.

Passwords alone have never been a great way to handle secure authentication and in the modern computing era, they can be a liability. Magento has very good password security capabilities, but this only goes so far. Magento passwords are already properly hashed and salted, but even that level of security depends on administrators having the security awareness to choose strong passwords in the first place and not to share those passwords.

Read more

Posted in: Nexcess

Three Plugins That Improve The WordPress Writing Experience

April 20, 2015 0 Comments

WordPress WritingOnce upon a time, I used to refuse point blank to write using the WordPress editor. I’d been burnt too many times by refreshing tabs and unreliable sites causing me to lose a big chunk of text, and, as a professional writer, I simply couldn’t afford to take the risk. On top of which, TinyMCE has never been the most pleasant environment in which to write; I much preferred using a simple text editor.

But, over the last year or so, the WordPress writing interface has improved leaps and bounds. Autosave has taken care of the risk of losing work, and the incremental improvements made to the editor — particularly the fullscreen no-distraction mode — have made working in WordPress a pleasure.

Read more

Posted in: Nexcess