If you deal with WordPress you soon notice that static resources like style sheets or scripts get included with the parameter “ver”, as for example in the “Hemingway” theme:

href='http://server.example/wp-content/themes/hemingway/style.css?ver=4.1'

If you then validate the website, as for example with Pingdom, the “ver” parameter will be treated as a problem for efficient caching since content delivered by URLs with parameters may not be stored in a cache but fetched from the original server for every single request.

On the other hand the version information is important for the correct function of themes and plugins, especially when they get updated – if you are an author in this area you should definitely pay attention to the note at the end of this post.

Continue reading →

The Multicolumn Category Widget for WordPress now shows a placeholder text for the title in the configuration so you can see which default title will be used if you don’t enter a custom title.

The DDoS attack which I recently experienced on my web site was obviously the exploit of an error of PHP in the context of XML processing. Also see the news at heise (German). WordPress has provided an update to mitigate this problem.

Continue reading →

At the beginning of this week my server became a target for a DDoS attack which eventually caused a massive overload. Therefore all websites on the machine where temporary not avaible any longer. The goal of this attack was obviously an attempt to exploit the pingback vulnerabilty of WordPress which already had been reported in March.

Update 2014-08-07: In fact it’s more likely that a problem in PHP in the context of XML had been exploited, also see this post about the details.

Continue reading →

The Multicolumn Category Widget had been extended by an additional option which allows to display the number of posts behind the category names.

On my website there is a simple “breadcrumb navigation”. This kind of navigation is particularly helpful for more complex page structures as for my projects. But this navigation bar also provides quick access to further content in blog posts.

See more on the project page →

The widget to display categories in WordPress lists categories only in one column (as of version 3.8.1). However in many cases there would be enough room to split the list into two or more columns.

For this purpose I’ve created my first plugin for WordPress – “Multicolumn Category Widget”, a widget to display the top level categories in multiple columns.

See more on the project page →

Although my website uses WordPress I have disabled pingback & trackback completely since the official startup.

One of the reasons see here: „Blogger unter Beschuss – Pingback missbraucht“ (heise, German) and here: Post on sucuri.net

Continue reading →

Please note: I don’t use this plugin any longer and the changes described here are not used in the plugin any longer as well. Instead I now use Lightbox with PhotoSwipe which I developed as an alternative.

In the context of switching my website from DokuWiki to WordPress I did my first contribution to the code of the „Responsive Lightbox“: http://wordpress.org/plugins/responsive-lightbox/changelog/

As an example for the use of this plugin with my modifications, see “Back from Finland”.

The source of the Swipebox script is also available on Github (unfortunately the script wasn’t properly included in the Update 1.4.0.1 and 1.4.1 of “Responsive Lightbox” by dFactory – but this should be fixed soon).

Update 2014-03-20: dFactory did include the correct script in update 1.4.2.

Update 2015-11-15: Since a number of versions not my version of the script is being used any longer but the official variant which has some major changes.

Continue reading →

From now on my Website is no longer using on DokuWiki but is based on WordPress. The paint is not completely dry yet ;-)

Continue reading →