Sometime back I wrote a post about how you can secure WordPress blog admin area using shared SSL without any plugin. But today I found out a glitch about that method and wanted to update you on how to fix it. So basically the issue I faced was like if some user submits a comment it redirects over https connection to the comment page and shows the SSL error that my site is using an SSL certificate of a different domain. It is because WP_SITEURL now points to the shared SSL secured url path given by the host company using their own domain name like https://cp32.hostable.com/~USERNAME/BLOG_DIRECTORY, but not your own domain like http://www.waveofweb.com/. And so after clicking on the submit button it redirects to that shared SSL path and submit the comment properly and then redirects the user to comment page using https version of the domain name. At that time reader gets the warning message of bad SSL cert. There is no issue with comment submit functionality but this is bad user experience. And readers are all we have got 
[...]
Long time back I wrote a blog post on securing your whole WordPress admin area without any plugin. But that was for private SSL. It is really a pain if you try to do it using Shared SSL certificate. So if you are trying to find a way to secure your WordPress login and admin using shared SSL, you have come to the right place. Unless you know the trick, it might take a long tiring search in Google to make that work
I will keep it simple. In your WordPress directory open wp-config.php and then add the below two lines:
define('WP_SITEURL', 'https://cp32.hostable.com/~USERNAME/BLOG_DIRECTORY');
define( 'WP_CONTENT_URL', 'http://www.waveofweb.com/wp-content');
First line will take your connection over https using your Shared SSL certificate when you log in to your admin area. Here
https://cp32.hostable.com/~USERNAME is Shared SSL link. And if your WordPress directory is not in public_html folder, then you have to append the additional path.
That first line is suffice to secure your WordPress login and admin area using your shared SSL certificate. But you need to make sure that while loading images from
wp-content or graphics from the
themes folder, it should be loaded on an unencrypted connection when a user views your blog posts and pages. Encrypted elements load a bit slower, so you will want to serve the post elements over normal connection to the readers. So in
WP_CONTENT_URL we have specified non-secured url location.
So if your hosting provider already provides a Shared SSL certificate, you can use it to secure your WordPress blog and save some bucks that you would have spent on buying a dedicated IP address and a private SSL certificate.
Easiest means easiest! I am not going say to add a snippet of code to your PHP theme file or to add some code to WordPress blog posts that you write each time. It’s a permanent solution, but you need AddThis WordPress plugin for that [...]
WordPress team has just released a plugin to verify your WordPress blog in Google Webmaster Tools without having to copy paste any code manually. It requires only a few clicks and you can directly do it from WordPress admin dashboard. If you have multiple blogs, this WordPress plugin can reduce a lot of headaches. But remember this plugin can only be used with self-hosted WordPress blogs and WordPress.com free hosted blogs don’t support this plugin. [...]
So I will try to put it in simple words, if your domain name contains “WordPress” and your site is WordPress related, then you might be violating Wordpess trademark. That is what WordPress team has to say about trademark violation in domain name. As a way around, you can use “wp” instead of “wordpress” in your domain name. So before you buy, it is better to be safe. Or after building a decent site for a year or so, you might suddenly get into a position where you need to redirect your site to a new domain and loose brand value. By the way you can use “wordpress” in your sub-domain like wordpress.mydomain.com. All they care about is top level domain name containing the word “WordPress”. Here is the official WordPress page where you can check the info. [...]
Yeah, with the next release 3.1, WordPress is going to add a new feature called Post Formats to support different customized media-friendly short posts on your blog. Here is the list of Post Formats that you can use:
The current list of post formats is on the Codex page: http://codex.wordpress.org/Post_Formats. [...]
- aside – Typically styled without a title. Similar to a Facebook status update.
Today I am going to tell you about another free WordPress hosting where you can use your custom domain for free and run your own ads. If you are stuck with WordPress.com as you have to pay for custom domain mapping and you can’t add your own ads at all, here is a good alternative from reliable DreamHost.
[...]
WordPress 3.0 got released just yesterday. And now, at 4.15 in the morning I got some time to upgrade my WordPress and have a look around to this latest update. [...]
If you have played around long enough with WordPress, then you should know this simple trick. And as a newbie you would find this feature provided by WordPress quite useful, especially if you are looking to give your blog some static website look. [...]
Sometimes you may be migrating your blog to different server or importing blog posts or database from backup. Or it may even happen that your blog is broken due to some configuration problem in your hosting server. Then it is somewhat professional to show a maintenance page to your visitors. It gives a good impression to the readers and gives them some sort of info about when to come back. [...]