wmafendi.com

I’m happy to announce that version 2.6 of WordPress.org is now available, almost a month ahead schedule. Version 2.6 “Tyner,” named for jazz pianist McCoy Tyner, contains a number of new features that make WordPress a more powerful CMS: you can now track changes to every post and page and easily post from wherever you are on the web, plus there are dozens of incremental improvements to the features introduced in version 2.5.

Last 3 days, WordPress version 2.6 was released. On WordPress’s blog, Matt also prepared a brief video tour of 2.6 to watch
and all the information you will find on the blog. With new features, it will made WordPress more powerfull comparing with other blog engines

From my reading, WordPress 2.6 may not be due until August 2008, but already I’ve managed to compile a list of features and enhancements that we’ll likely be seeing in this next major WordPress release. There are quite a big features that will make WordPress for powerfull.

• NEW (June 20): Admin SSL support — The WordPress 2.6 admin should be able to be visited via either HTTP (normal connection) or HTTPS (encrypted connection), with the option to make admin HTTPS mandatory. [via]
• NEW (June 20): Remote publishing disabled by default — Having the main avenue of attack for WordPress blogs be disabled by default will be great for WordPress security. [via]

• NEW (June 16): Plugin Auto-Installation — In WordPress 2.5, you were able to upgrade plugins automatically; in WordPress 2.6, you may have similar functionality for new installations.
• NEW (June 16): WordPress Auto-Upgrade — There’s been some early progress on incorporating auto-upgrade for WordPress itself into version 2.6.
• NEW (June 16): Theme preview — Theme preview functionality would allow you to see what a new theme would look like on your blog before you activate it.
• NEW (June 16): Theme paging — For those of you with a ton of WordPress themes (more than 15), you’ll be able to page through them in the administration. This should be especially useful for WordPress MU blogs that have large theme collections.
• NEW (May 22): Ability to move wp-config.php — In WordPress 2.6, you’ll be able to move wp-config.php one directory level below the public root. Perhaps this could also allow multiple WordPress installations to share the same config file?
• NEW (May 20): Google Gears support — Now integrated into the WordPress trunk (current working version), this feature will allow Google Gears users to experience a faster admin interface, and possibly manage their WordPress blogs while offline (how cool would that be?).
• NEW (May 5): Identicons — In WordPress 2.6 you’ll have the ability to select a default Gravatar for those who don’t have one.
• Post Revisions — Wiki-style revisions management for blog posts: a cool new power-feature, just announced on the WordPress Development Updates blog.
• Shift-Click Checkbox Selection — In WordPress 2.6, you should be able to select a range of checkboxes in the category, comment, tag, post, page, and media administration sections by checking the “start” checkbox, holding the Shift key, and then checking the “end” checkbox… Gmail style.
• Post Word Count — A WordPress.com feature that might be making its way into WordPress 2.6.
• “Press This” Bookmarklet — The bookmarklet (which existed in WordPress 2.3 and prior but was removed in WordPress 2.5) has returned, new and improved.

I just registered my self to digg.com . I went to explore the features inside. One of interested me is I can blog news, articles,images, videos and podcasts direct to my blog after some setting. I found this video and try get blog it!:))

So You Think You Can Dance contestant Robert Muraine has some of the best moves Ive ever seen in my life. The guy can pop and lock like no one else.

A new security feature has been added since WordPress 2.5 and all future versions (including WordPress 2.5.1 that just been released). The Secret Key is been added to wp-config.php file to enhance the security passwords used by WordPress blog, or more specifically the password hashing and cookie security.

If you check out the wp-config-sample.php comes with WordPress 2.5 or later, there is a new lines that indicates the new option added in WordPress 2.5

// Change SECRET_KEY to a unique phrase. You won’t have to remember it later,
// so make it long and complicated. You can visit https://www.grc.com/passwords.htm
// to get a phrase generated for you, or just make something up.
define(’SECRET_KEY’, ‘put your unique phrase here’); // Change this to a unique phrase.

The Secret Key, when definied in wp-config.php file, is used a s a ’seed’ to create and generate a hard-to-guess and individually unique random number when calculating hash value for WordPress to encrypt password, especially on cookie authentication. Comparing with when every blog has the same ’seed’ (no Secret Key), by using a different Secret Key which is different and unique for each blog, it reduces that possibility that hackers may crack the passwords, or almost impossible to crack.

Thus setting up a Secret Key is highly recommended to increase the security protection of the blog. To set up the Secret Key, simply modify the line (or add in the line if you’re upgrading to WordPress 2.5) in wp-config.php file:

define(’SECRET_KEY’, ‘put your unique phrase here’);

Change the ‘put your unique phrase here’ to a long, strong and random mixed character strings. Length is not restricted, but it’s recommended to put the phrase to be longer than 60 characters. The key is ‘random’, which means mixing around upper and lower case, special characters, punctuation marks, and numbers to a most complex string is the best. For not random string, it may be possible for an attacker to brute force the default WordPress SALT generation process to gain access to your blog.

If you’re not creative enough, WordPress has a random secret key auto generator that generates a completely random key for user. To use it, simply to to this URL:

http://api.wordpress.org/secret-key/1.0/

Then just copy and paste the entire line to replace the existing line in wp-config.php (or insert it into wp-config.php if you’re using pre-WordPress 2.5 wp-copnfig.php.

After adding in the secret-key, all login session will be invalidated, and every users will have to re-login again.

p/s: This article is taking from http://www.tipandtrick.net/

Many of my friends now created and developed blogs either for business or just sharing some life experiences. Today, I want to tell you about free blog hosting that currently I am using: gamb.us. My best friend, Basri gives me very big opportunity to use WordPress and and use the hosting since mid of2007. Many things about blog, WordPress, SEO, plugins, widgets and etc I leaned from him. You can also register yourself for the free blog hosting by go to gamb.us ! So far got 11 blogs that already used gamb.us hosting including me ). There, you also will get some lessons and information to build better blogs.

I just tried googling about how to do a presentation on web and find a quite good article here. After reading, I think that I have to do a lot of reading to understand and get better knowledge about presentation on web. At this moment, I just do it using Google Docs since I already have account with it. The result is here…

This site is dedicated to publishing my writings as and when I am able to pen my thoughts and opinion

Our ex-prime minister, Tun Dr. Mahathir Mohamad becomes a blogger. He will post many about environment issues including politics, economics and etc. I believe his experiences and knowledges will benefited all of us. You can go to his blog ( www.chedet.com ) that hosted by blogger.com. Hmm.. nowadays I look many new blogs especially from ex ministers or ministers from Malaysia using blogger.com. Are they haven’t heard about famous WordPress?

Today I just received an email via Yahoo Mail through my lovely Blackberry. The email is advertising famous ministers in Malaysia domain for sale. All domains are using blogger.com. But in the email the writer haven’t mention about the price. Hmm… I look this situation as a opportunity that people take due to heavy load information on internet especially from blogs and suggestion form Ministry of Information Malaysia that every ministers have to have a blog. So, those ministers interested about the domain, can contact the person as shown below.

http://drsheikhmuszaphar.blogspot.com/
http://drfaizkhaleed.blogspot.com/
http://daimzainuddin.blogspot.com/
http://tundaimzainuddin.blogspot.com/
http://faridridzuan.blogspot.com/
http://datukazalinasaid.blogspot.com/
http://azalinasaid.blogspot.com/
http://datukshazimanmansor.blogspot.com/
http://datoshazimanmansor.blogspot.com/
http://datukmukhrizmahathir.blogspot.com/
http://datuknorainiahmad.blogspot.com/
http://mahyuddinyassin.blogspot.com/
http://datukzahidhamidi.blogspot.com/
http://datukazimidaim.blogspot.com/
http://azimidaim.blogspot.com/

http://drraisyatim.blogspot.com/
http://manjaismail.blogspot.com/
http://hishamuddinaun.blogspot.com/
http://datoalirustam.blogspot.com/
http://najibabdulrazak.blogspot.com/
http://zaquanadha.blogspot.com/
http://aidilzafuan.blogspot.com/

Skype: teddybear510
Windows Life Messenger: toyol_cyber007@hotmail.com
Yahoo messenger: puteri_kencana_dewi1
mail groups: http://punei.notlong.com
Laman blog: http://aichod.notlong.com

The latest version of WordPress 2.5 has been officially released for free download, after 2 release candidates and several delays in schedule. However, the wait is worth waiting for, as WordPress 2.5 features lots of improvements and enhancements such as multi-file uploading, one-click plugin upgrades, built-in galleries, customizable dashboard, salted passwords and cookie encryption, media library, a WYSIWYG that doesn’t mess with your code, concurrent post editing protection, full-screen writing, and search that covers posts and pages.
Matt Mullenweg , founder of Autommatic, published on WordPress blog the details of the changes:

User Features

• Cleaner, faster, less cluttered dashboard.
• Dashboard Widgets: the dashboard home page is now a serious of widgets, including ones to show you fun stats about your posting, latest comments, people linking to you, new and popular plugins, and of course WordPress news. You can customize any of the dashboard widgets to show, for example, news from your local paper instead of WP news. Plugins can also hook in, for example the WordPress.com stats widget adds a handy double-wide stats box.
• Multi-file upload with progress bar.
• EXIF extraction: if you upload JPEG files with EXIF metadata like camera make and model, aperture, shutter speed, ISO, et al. WordPress will extract all the data into custom fields you can use in your template. If you use the EXIF title fields or similar those will be put into their equivalent fields in WP.
• Search posts and pages together.
• Tag management: you can now add, rename, delete, and do whatever else you like to tags from inside WordPress, no plugins needed.
• Password strength meter.
• Concurrent editing protection: for those of you on multi-author blogs, if you open a post that someone else is editing, WordPress magically locks it and prevents you from saving until the other person is done.
• Few-click plugin upgrades: if the plugins you use are part of the plugin directory, WordPress will be able to download and install the upgrade for you. This is dependent a little bit on your host setup, and it may ask you for your FTP password much like OS X or Windows will ask you for a password.
• Friendlier visual post editor: version 3.0 of TinyMCE, which means better compatibility with Safari, and we’ve paid particular attention this release to its integration and interaction with complex HTML. It also now has a “no-distractions” mode which is like Writeroom for your browser.
• Built-in galleries: when you take advantage of multi-file upload to upload a bunch of photos, there are new shortcode that lets you to easily embed galleries by just putting in your post. It’ll display all your thumbnails and captions and each will link each to a page where people can comment on the individual photos.

Developer Features

• Salted passwords: uses the phpass library to stretch and salt all passwords stored in the database, which makes brute-forcing them impractical. If you use something like mod_auth_mysql, there is a plugin that will allow you to use legacy MD5 hashing. (The hashing is completely pluggable.) Users will automatically switch to the more secure passwords next time they log in.
• Secure cookies.
• Easy taxonomy and URL creation.
• Inline documentation that explains the functions and documents their arguments.
• Database optimization.
• $wpdb->prepare() — now almost all of the SQL in WordPress is prepared first, and the same functions are available to your plugins. This should prevent elementary SQL escaping issues.
• Media buttons: the add media buttons above the post are both expandable, so you could have an “Add Google Map” button if you like, They can be overridden, so if you think you can do the video or audio tab better than we have you can replace the default.
• Shortcode API: the new gallery functionality is powered by the new shortcode API. Shortcodes are little bracket-delineated strings that can be magically expanded at runtime to something more interesting. They give users a short, easy to type and copy/paste string they can move around their post without worrying about messing up complex HTML or embed codes.

You can download WordPress 2.5 in wordpress-2.5.zip format or wordpress-2.5.tar.gz format.

For many folks those upgrading from previous older version of WordPress, please do not forget to read very important thing: WordPress upgrade instructions, and verify the plugins compatibility to avoid any unforeseen problems.

P/S: Until I write this post, I haven’t install this new version on my server yet. I am thinking doing in about next few weeks.