Categories
Website

Google Chrome Will Block Mixed Content

Recently, Google Chrome announced that they will soon start blocking mixed content also known as insecure content on web pages.

This feature will be gradually rolled out starting from December 2019. This should give website owners enough time to check for mixed content errors and fix them before the block goes live.

Failing to do so will cause poor user experience, loss of traffic, and loss of sales.

In this guide, we will explain Google Chrome’s mixed content blocking and how you can be well prepared for it.

Getting ready for mixed content block by Google Chrome

Since this is a comprehensive guide, we have created an easy to follow table of content:

What is Mixed Content?

Mixed content is a term used to describe non-https content loading on an HTTPS website.

HTTPS represent websites using a SSL certificate to deliver content. This technology makes websites secure by encrypting the data transfer between a website and a user’s browser.

Google, Microsoft, WordPress.org, WPBeginner, and many other organizations are pushing HTTPs as the standard protocol for websites.

They have been very successful in their efforts. According to Google, “Chrome users now spend over 90% of their browsing time on HTTPS on all major platforms.”

However, there are still many websites serving partial insecure content (mixed content) over HTTPs websites. Google aims to improve this situation by giving website owners a nudge in the right direction.

Why Google Chrome Wants to Block Mixed Content?

Google Chrome already blocks mixed content, but it’s limited to certain content types like JavaScript and iFrame resources.

Blocked mixed content on a web page

From December 2019, Google Chrome will move forward to start blocking other mixed content resources like images, audio, video, cookies, and other web resources.

An insecure HTTP file on a secure HTTPs webpage can still be used by hackers to manipulate users, install malware, and hijack a website. This jeopardizes your website security as well as the safety of your website visitors.

It also creates a bad user experience as Google Chrome cannot indicate whether a page is completely secure or insecure.

What Will Happen if a Website is Showing Mixed Content?

Google Chrome has announced a gradual plan to implement mixed content blocking. It will be implemented in three steps spawning over the next three releases of Google Chrome.

Step 1

Starting from December 2019 (Chrome 79), it will add a new settings option to the ‘Site Settings’ menu. Users will be able to unblock the mixed content already blocked by Google Chrome including JavaScript and iframe resources.

If a user opts-out for a website, then Google Chrome will serve mixed content on that site, but it will replace the padlock icon with the insecure icon.

Step 2

Starting from January 2020 (Chrome 80), Google Chrome will start auto upgrading HTTP video and audio file URLs to HTTPs. If it fails to load them over https, then it will automatically block those files.

It will still allow images to load over HTTP, but the padlock icon will change to Not Secure icon if a website is serving images over HTTP.

Step 3

From February 2020 (Chrome 81), Google Chrome will start auto-upgrading HTTP images to load over HTTPs. If it fails to load them over https, then those images will be blocked as well.

Basically, if your website has any mixed content resources that are not upgraded to HTTPs, then users will see the Not Secure icon in their browser’s address bar.

This will create a poor user experience for them. It will also affect your brand reputation and business.

No need to panic though. You can easily prepare your website to fix all mixed content errors.

How to Prepare Your WordPress Website for Google Chrome’s Mixed Content Block

Google Chrome is the most popular browser in the world among both mobile and desktop users.

Leaving your website with incomplete HTTPS implementation or no HTTPS at all will result in loss of traffic, sales, and overall revenue.

Here is what you need to do to prepare your website for these changes.

Move Your Website to HTTPS

If your website is still using HTTP, then Google Chrome will already be showing a ‘Not Secure’ icon when users visit your website.

Not Secure HTTP website

It is about time to finally move your website to HTTPS.

We know that changes like these can be a bit intimidating for beginners. Some site owners postpone the move due to cost, which is no longer an issue as you can easily get a free SSL certificate for your website.

Other website owners delay it because they think it will be a complicated process and could break their website.

That’s why we have created a step by step guide to easily move your WordPress site from HTTP to HTTPS.

We will walk you through every step and show you how to get that secure padlock icon next to your website address in all browsers.

Finding Mixed Content on an HTTPS Website

If you already have an HTTPS-enabled website, then here is how you will find mixed content on your site.

The first indication of mixed content issues will be visible in Google Chrome’s address bar when you visit your website.

If Google Chrome has blocked a script on your website, then you will see the scripts blocked shield icon at the right corner of the address bar.

Blocked mixed content on a web page

Google Chrome has already blocked the insecure content and that’s why the padlock icon on the left corner of the address bar will not change.

The second indication that you should look for is the info icon. This icon will replace the padlock if the page you are viewing has mixed content that Google Chrome has not blocked.

Unblocked mixed content

Clicking on the icon will show the notice that ‘Your connection to this site is not fully secure’.

Usually, this content includes images, cookies, audio, or video files. Chrome does not block those files at the moment and that’s why it shows this notice.

If your site has both icons, then this means your site is loading multiple types of mixed content files using HTTP.

Next, you need to find out which files are loaded using the insecure HTTP URLs. To do that, right-click anywhere on your website and select Inspect tool from the browser menu.

Console tool in Inspect view showing mixed content errors and warnings

Switch to the ‘Console’ table under the Inspect window to view page load errors. You’ll be looking for ‘Mixed content:’ errors and warnings to find out which files are blocked and which files are loaded using the HTTP URLs.

Fixing Mixed Content Errors in WordPress

There are two easy methods that you can use to fix mixed content warnings and errors on your WordPress website.

Method 1. Fix Mixed Content Errors and Warnings Using a Plugin

This method is easier and recommended for beginners. We will use a plugin that will find and replace HTTP URLs to HTTPs on the fly before sending it to user’s browser.

The downside is that it adds a few milliseconds to your website’s page load speed which is barely noticeable.

First, you need to install and activate the SSL Insecure Content Fixer plugin. For more details, see our step by step guide on how to install a WordPress plugin.

Upon activation, go to Settings » SSL Insecure Content page to configure the plugin settings.

Secure Content Fixer plugin settings

Select the ‘Simple’ option and then click on the ‘Save changes’ button to store your settings.

Visit your website to look for mixed content warning errors.

For more detailed instructions, see our article on how to fix mixed content error in WordPress.

Method 2. Manually Fix Mixed Content Issues in WordPress

This method can get a bit complicated for beginners. Basically, you’ll be finding the insecure URLs across your website and replacing it with secure URLs.

We will still use a plugin to find insecure HTTP URLs on your website. However, you’ll be able to deactivate the plugin once you have changed the URLs, so this will not impact your page speed like the first option.

Let’s get started.

First, you need to install and activate the Better Search and Replace plugin.

Upon activation, you need to visit Tools » Better Search Replace page.

Under the ‘Search’ field, you need to add your website URL with http. After that, add your website URL with https under the ‘Replace’ field.

Better search and replace plugin settings

Click on Run Search/Replace button to continue.

The plugin will now run and find all instances of your website URLs starting with http and replace them with the https.

The plugin works on your WordPress database, so it will only change URLs for your content areas.

If the mixed content resources are loaded by your WordPress theme or plugin, then you will need to inform the theme or plugin developer, so they can release a fix for that.

For more details, see our complete beginner’s guide to fixing the common SSL/HTTPs issues in WordPress.

We hope this article answered your questions regarding Google Chrome’s mixed content block and helped you get ready for it. You may also want to see our guide on how to use Google Search Console to grow your website traffic, and the important marketing data you must track on all WordPress sites.

If you liked this article, then please subscribe to our YouTube Channel for WordPress video tutorials. You can also find us on Twitter and Facebook.



Source link

Categories
Website

How to Create a Custom Gutenberg Block in WordPress (Easy Way)

Do you want to create a custom Gutenberg block for your WordPress site? After the WordPress 5.0 update, you need to use blocks to create content in the new WordPress block editor.

WordPress ships with several useful blocks that you can use when writing content. Many WordPress plugins also come with their own blocks that you can use.

However, sometimes you may want to create your own custom Gutenberg block to do something specific.

If you’re looking for an easy solution to create custom Gutenberg blocks for your WordPress site, then you’re in the right place.

In this step by step tutorial, we’ll show you the easy way to create a custom WordPress block for Gutenberg.

Creating a custom WordPress block for Gutenberg

Note: This article is for intermediate users. You’ll need to be familiar with HTML and CSS to create custom Gutenberg blocks.

Step 1: Get Started

The first thing you need to do is install and activate the Block Lab plugin.

It’s a WordPress plugin that allows you to create custom blocks from your admin panel without much hassle.

Block Lab WordPress Plugin

To install the plugin, you may follow our beginner’s guide on how to install a WordPress plugin.

Once the plugin is activated, you can proceed to the next step of creating your first custom block.

Step 2: Create a New Block

For the sake of this tutorial, we will build a ‘testimonials’ block.

First, head over to Block Lab » Add New from the left sidebar of your admin panel.

On this page, you need to give a name to your block. You can write any name of your choice in the “Enter block name here” textbox.

Enter Custom Block Name

We will name our custom block: Testimonials.

On the right side of the page, you’ll find the block properties. Here you can choose an icon for your block and select a block category from the Category dropdown box.

The slug will be auto-filled based on your block’s name, so you don’t have to change it. However, you may write up to 3 keywords in the Keywords text field, so that your block can be easily found.

Custom Block Properties

Now let’s add some fields to our block. You can add different types of fields like text, numbers, email, URL, color, image, checkbox, radio buttons, and much more.

We’ll add 3 fields to our custom testimonial block: an image field for the image of the reviewer, a textbox for the reviewer name, and a textarea field for the testimonial text.

Click on the + Add Field button to insert the first field.

Image Field Options

This will open up some options for the field. Let’s take a look at each of them.

  • Field Label: You can use any name of your choice for the field label. Let’s name our first field as Reviewer Image.
  • Field Name: The field name will be generated automatically based on the field label. We’ll use this field name in the next step, so make sure it’s unique for every field.
  • Field Type: Here you can select the type of field. We want our first field to be an image, so we’ll select Image from the dropdown menu.
  • Field Location: You can decide whether you want to add the field to the editor or the inspector.
  • Help Text: You can add some text to describe the field. This is not required if you’re creating this block for your personal use.

You may also get some additional options based on the field type you choose. For example, if you select a text field, then you’ll get extra options like placeholder text and character limit.

You can click on the Close Field button once you’re done with the image field.

Following the above process, let’s add 2 other fields for our testimonials block by clicking the + Add Field button.

Final Custom Block Fields

In case you want to reorder the fields, then you can do that by dragging them using the hamburger icon on the left side of each field label.

To edit or delete a particular field, you need to hover your mouse over the field label to get the edit and delete options.

Once you’re done, click on the Publish button, present on the right side of the page, to save your custom Gutenberg block.

Step 3: Create a Block Template

Although you’ve created the custom WordPress block in the last step, it’ll not work until you create a block template named block-testimonials.php and upload it to your current theme folder.

Create a Block Template

The block template file will tell the plugin how to do display your block fields inside the editor. The plugin will look for the template file and then use it to display the block content.

If you don’t have this file, then it’ll display an error saying “Template file blocks/block-testimonials.php not found”.

Let’s create our block’s template file.

First, go ahead and create a folder in your desktop and name it blocks. You’ll create your block template file inside this folder and then upload it to your current WordPress theme directory.

To create the template file, you can use a plain text editor like Notepad.

Every time you add a new field to your custom block, you need to add the following PHP code to your block template file:

Just remember to replace add-your-field-name-here with the field name.

For example, the name of our first field is reviewer-image, so we will add the following line to the template file:

Simple, isn’t it? Let’s do the same for the rest of our fields:



Next, we’ll add some HTML tags to the above code for styling purposes.

For example, you can wrap the reviewer image inside an img tag to display the image. Otherwise, WordPress will display the image URL which is not what you want, right?

You can also add class names to your HTML tags and wrap your code inside a div container to style your block content (which we’ll do in this next step).

So here’s our final code for our block template:

">

Finally, name the file as block-testimonials.php and save it inside the blocks folder.

Step 4: Style Your Custom Block

Want to style your custom block? You can do that with the help of CSS.

Open a plain text editor like Notepad and add the following code:

.testimonial-block {
	width: 100%;
	margin-bottom: 25px;
}

.testimonial-image {
	float: left;
	width: 25%;
	padding-right: 15px;
}

.testimonial-box {
	float: left;
	width: 75%;
}

.clearfix::after {
	content: "";
	clear: both;
	display: table;
}

Once done, name the file as block-testimonials.css and save it inside the blocks folder.

Step 5: Upload Block Template File to Theme Folder

Now let’s upload the blocks folder containing our custom block template file to our WordPress theme folder.

To do that, you need to connect to your WordPress site using an FTP client. For help, you may check out our guide on how to upload files to your WordPress site using FTP.

Once you’re connected, go to the /wp-content/themes/ folder. From here you need to open your current theme folder.

Enter Theme folder using FTP

Now upload the blocks folder, containing the block template file and the CSS file, to your theme directory.

Once done, you can proceed to the final step to test your custom block.

Note: Block Lab plugin allows you to create theme-specific blocks. If you change your WordPress theme, then you need to copy the blocks folder to your new theme directory.

Step 6: Test Your New Block

It’s time to test our custom testimonials block. You can do this by heading over to Pages » Add New to create a new page.

Next, click on the Add Block (+) icon and search for the Testimonials block. Once you find it, click on it to add the custom block to your page editor.

Add Custom Block to Page Editor

You can now add a testimonial to this page using your custom block. To add more testimonials, you can always insert new testimonial blocks.

Once you’re done, you can preview or publish the page to check whether it’s working properly or not.

That’s all! You’ve successfully created your first custom WordPress block for your site.

Did you know that you can save time with reusable blocks in your editor? Check out our guide on how to easily create reusable blocks in the WordPress block editor and use them on other websites.

You may also want to see our guide on how to create a custom WordPress theme without writing any code.

If you liked this article, then please subscribe to our YouTube Channel for WordPress video tutorials. You can also find us on Twitter and Facebook.



Source link

Categories
Website

Sucuri Review – How Sucuri Helped us Block 450,000 WordPress Attacks in 3 Months

Whenever we’re asked about WordPress security tips, our top 2 recommendations are get a good WordPress backup solution and start using Sucuri website firewall. In this article, we will share our honest review of Sucuri’s website firewall and why it’s worth every single penny!

Full Disclosure: No we did not get paid to write this Sucuri review. We’re just happy customers of Sucuri. They have a referral program available for all their customers, so if you decide to use Sucuri by clicking on our referral link in this article, then we will get a small commission. However we only recommend services that we personally use and believe will add value to our readers.

WPBeginner Love Sucuri

A Little Background

WPBeginner is one of the largest free WordPress resource sites on the planet. Because of that, we often have to deal with website attacks. This includes brute force attacks, feed attacks, DDoS, and a whole lot of spam.

That’s why we have always been extremely cautious. We have a real-time WordPress backup solution in place.

On top of that, we have password-protected our wp-admin directory, disabled PHP execution, changed the default WordPress database prefix, and basically followed every other security “hardening” trick.

While you can follow all the “prevention” best practices at the software “WordPress” level, the reality of the matter is that security has to be addressed at the hosting server level and more importantly the DNS level.

During the attacks, our website would slow down significantly due to the high server load. Sometimes it would even cause the server to restart causing downtime.

That’s when we started looking for a DNS level firewall solution.

We already had the Sucuri WordPress plugin installed on the site, so we decided to give their web application firewall (WAF) a try.

Some of you are probably confused by the tech-lingo and wondering what does Sucuri do and what is a WAF?

Overview of Sucuri

Sucuri is a website security company that specializes in WordPress security. They protect your website from hackers, malware, DDoS and blacklists.

When you enable Sucuri, all your site traffic goes through their cloudproxy firewall before coming to your hosting server. This allows them to block all the attacks and only send you legitimate visitors.

See the illustration below:

Sucuri Web Application Firewall

The biggest benefit of Sucuri is that it makes your website secure. On top of that, the firewall makes your website faster, and you save money on your hosting bill because your server load goes down significantly.

As soon as we enabled the Sucuri firewall, we started seeing the difference in performance. The attack overview inside the Sucuri dashboard was just eye opening.

WPBeginner’s Sucuri Firewall Results

Within the first three months, Sucuri helped us block over 450,000 WordPress attacks.

Sucuri Attack Block Chart

A break down of some of the common blocked requests:

  • Exploit blocked by virtual patching (115,946 blocked attempts)
  • Blacklisted IP address (72,495 blocked attempts)
  • Bad bot access denied (45,299 blocked attempts)
  • Backdoor location denied (29,690 blocked attempts)
  • DDOS attempt blocked (29,676 blocked attempts)
  • Fake bot access (24,571 blocked attempts)
  • Evasion attempt denied (21,887 blocked attempts)
  • Spam request blocked (14,313 blocked attempts)
  • Scanning tool blocked (13,842 blocked attempts)

Now most of you are probably thinking that WPBeginner is a huge site that’s why we’re a bigger target.

Not entirely true. Often smaller sites are an easier target for hackers because they don’t take any security precautions. At this very moment, your website is probably getting attacks, and you just don’t know about it.

Sadly, when most people find out it’s a bit too late because they’re hacked. That’s why articles like how to find a backdoor in a hacked WordPress site and how to fix “this site ahead contains harmful programs” error are among the most popular on WPBeginner.

If you are running a business website, then Sucuri is a MUST HAVE solution because it offers complete end-to-end WordPress security.

5 Reasons Why We Love Sucuri

We are absolutely in love with Sucuri. Aside from using it on WPBeginner, we’re also using it on our other sites like List25 and SyedBalkhi.com.

Below are the 5 reasons why we love Sucuri.

1. Blocks all the Attacks

Sucuri’s firewall blocks all the attacks before it even touches our server. Since they’re one of the leading security companies, Sucuri proactively research and report potential security issues to WordPress core team as well as third-party plugins.

Their team closely works with the respective developers in fixing the security issues. Once fixed, Sucuri patches those vulnerabilities at the firewall level in case you didn’t get a chance to update your plugin fast enough.

For example, the recent Elegant Themes vulnerability that was disclosed was already patched on Sucuri’s servers before you updated your plugins and themes. Meaning your site was ALWAYS secure.

2. Website Integrity Monitoring

We have the Sucuri 2-in-1 Website AntiVirus package which comes with the Sucuri scanner. It monitors our website every 3 hours to ensure that it is clean of malware, malicious JavaScript, malicious iframes, suspicious redirections, spammy link injections etc.

The scanner also makes sure that our site is not blacklisted by any of the popular services like Google, Norton, AVG, Phishtank, Opera and others.

This helps you keep your reputation intact and keeps your users from seeing warnings like these:

This site contains harmful programs error in Google Chrome

3. Site Audit Log

Sucuri’s WordPress plugin keeps track of every thing that happens on your site.

This includes file changes, new posts, new users, last logins, failed login attempts, and more.

Sucuri Audit Log

4. Server Side Scanning

When you’re dealing with smart hackers, you need to account for everything. Some hackers don’t care about infecting your users with malwares. Maybe they just want to add banner ads in your old post or replace your affiliate links.

These kind of hacks are very hard to catch because they’re not as obvious, and you won’t get blacklisted for these.

That’s when the server side scan comes in handy. Sucuri’s server side scanner goes through every single file (even non-WordPress files) to ensure that nothing suspicious exist on your server.

It also audit events like file changes and such to keep you informed.

5. Malware Cleanup Service

Even though all the reasons above well justify the cost, they also offer malware cleanup service with no page limits along with blacklist removal. We haven’t had to use this part of the service yet, but can you imagine having security experts cleaning up your site.

On average security experts charge $250 / hour for consulting.

Since this can get quite expensive, Sucuri has an extra incentive to make sure that your website never gets hacked.

Our Final Thoughts – Sucuri Review

Day after day, we hear stories of people’s websites getting hacked. We can honestly say that Sucuri is hands down the best and most cost effective security service in the WordPress industry.

For $199 / year, it is the best insurance you can buy for your online business.

If government websites can be hacked, then so can yours – no matter what you do. However it’s much better to find out that your website is hacked from a monitoring service rather than finding out from your users or better yet from Google when they blacklist your website.

More importantly, it’s definitely worth the peace of mind knowing that if something were to happen, we have a team of security experts who’ll help us clean everything properly.

Sucuri is a leading security company and they’ve been mentioned in major publications like CNN, USAToday, TechCrunch, TheNextWeb, and tons more. We have personally met with their co-founder and CEO, Tony Perez, and can honestly say that they are a trustworthy company, and we’re in good hands.

All the times that we have interacted with Sucuri’s support team, they have been quick, polite, and helpful.

If we were to rate Sucuri’s service and support, we would give them a 5 out of 5.

We hope you found our Sucuri review helpful. If you’re thinking about improving your WordPress security, then definitely check out Sucuri and give them a try.

Full Disclosure: No we did not get paid to write this Sucuri review. We’re happy customers of Sucuri. They have a referral program available for all their customers, so if you decide to use Sucuri by clicking on our referral link in this article, then we will get a small commission. However we only recommend services that we personally use and believe will add value to our readers.

If you liked this article, then please subscribe to our YouTube Channel for WordPress video tutorials. You can also find us on Twitter and Facebook.



Source link

Categories
Website

16 Best WordPress Plugins for Nonprofits

Are you looking for the best WordPress plugins for your nonprofit’s website? Due to tight budget and little technical support, nonprofits need to carefully choose the plugins they use for their website. In this article, we have hand-picked some of the best WordPress plugins for nonprofits.

WordPress Plugins for Non-Profits

1. Give

Give

Give is a WordPress plugin for non-profits to accept online donations. Give makes it easy to add payment gateway, add donation forms, and easily manage donations from your own WordPress dashboard.

It also shows you stats about your donations and you can easily integrate with other services like PayPal, MailChimp, Aweber, etc.

2. WPForms

WPForms

WPForms is the most beginner friendly contact form plugin for WordPress. It comes with a free version called WPForms Lite, which is perfect for small organizations, non-profits, and personal use.

WPForms also comes with a paid option, which allows you to create a donation form which can connect your forms with your MailChimp, AWeber, PayPal, and Stripe accounts.

3. OptinMonster

OptinMonster

OptinMonster is the best lead generation tool in the market. It helps you convert website visitors into subscribers and donors.

OptinMonster comes with lightbox popups, slide in popups, sidebar sign up forms, welcome gates, and much more. See how OptinMonster helped us increase our email subscribers by 600%.

4. Yoast SEO

Yoast SEO

Yoast SEO is the complete WordPress site optimization tool. It allows you to optimize your posts and pages for search engines and eliminates the need to install countless other plugins. It is easy to install and setup Yoast SEO plugin. See why we use Yoast SEO on all our websites.

5. Google Analytics by Yoast

Google Analytics for WordPress

Google Analytics provides you insights into how users reach and use your website. It tells you where your users are coming from, what pages they are looking at, how much time they spend on your site. It also provides a wealth of information about user behavior and can be effectively used to measure your conversion goals. Google Analytics by Yoast allows you to easily add Google Analytics into your WordPress site and manage it from your own dashboard.

6. Sucuri Free Scanner

Sucuri

Any website on the internet can become a target of hacking attempt or malicious code. WordPress sites are no exemption. With Sucuri free scanner, you can scan your WordPress site for malicious code and malware and then clean your WordPress site.

See how Sucuri helped us block 450,000 WordPress attacks in 3 months.

7. Testimonials Widget

Testimonials Widget

Testimonials Widget makes it super easy to add social proof on your WordPress site. It allows you to manage testimonials in your WordPress admin area. You can display these testimonials anywhere on your WordPress site. The plugin also comes with a testimonials widget, that you can add to a sidebar.

8. BackupBuddy

BackupBuddy

Backups are your first defence against any online mishap. BackupBuddy provides complete backup solution for your WordPress site.

It automatically creates database and file backups and saves them on cloud storage at predefined schedules. BackupBuddy also makes it easier for you to restore your site from backups or move it to new server.

See our guide on how to keep your WordPress content safe with BackupBuddy.

9. TablePress

TablePress

WordPress visual editor does not allow you to create tables. TablePress makes it easy for you to create beautiful tables without writing any HTML code.

For more detailed instructions, see our guide on how to add tables in WordPress.

10. Quick and Easy FAQ

Quick and easy FAQs

Want to add a frequently asked questions section for your non-profit? Quick and Easy FAQs plugin allows you to add FAQs with answers and then displays them beautifully on your website. You can display FAQs as simple list, collapsible menus, or in an accordion.

For detailed instructions, see our guide on how to add a frequently asked questions – FAQs section in WordPress.

11. Forget About Shortcode Buttons

Forget About Shortcode Buttons

As a non-profit, you need to create persuasive content with call to action buttons strategically placed across your website. Forget About Shortcodes Button plugin allows you to add beautiful buttons to your WordPress site without using any shortcodes.

For detailed instructions, see our guide on how to add buttons in WordPress without using shortcodes.

12. Simple Calendar – Google Calendar Plugin

Google Calendar Plugin

Want to create a page for church or non-profit events? Google Calendar Plugin makes it easy for you to display a Google calendar on your WordPress site. Your users can then subscribe to your calendar and stay informed about your events.

See our guide on how to add Google Calendar in WordPress for detailed instructions.

13. Floating Social Bar

Floating Social Bar

Spreading the word about your cause is crucial for the success of your non-profit website. Floating Social Bar adds social sharing button to your WordPress posts and pages. It allows your users to easily share content without leaving your site.

See our guide on how to add a floating social share bar in WordPress for detailed instructions.

14. Revive Old Post

Keeping up with your followers on social media can take a lot of your time. Revive Old Post plugin allows you to keep your social profiles active by sharing old posts from your site.

See our guide on how to automatically share your old WordPress posts for more detailed instructions.

15. MapPress Easy Google Maps

Google Maps are a highly effective tool in sharing maps and directions on the web. MapPress provides an easier and simpler way to easily add Google Maps anywhere on your WordPress site. You can use it to add directions, highlight markers, and add layers to your map.

See our article on how to add Google Maps in WordPress for detailed instructions.

16. Polylang

Polylang

Language shouldn’t be a barrier for a non-profit to spread its message. Polylang is a WordPress plugin that makes it a breeze to create multilingual websites in WordPress. It is extremely simple and easy to use. You can add users for different languages, those users will get a WordPress user interface. You users will be able to easily switch languages and browse your site in their native language.

For more detailed instructions see our guide on how to easily create a multilingual WordPress site.

We hope this article helped you find the best WordPress plugins for non-profits. You may also want to see our guide on how to select the perfect WordPress theme for your site.

If you liked this article, then please subscribe to our YouTube Channel for WordPress video tutorials. You can also find us on Twitter and Facebook.



Source link

Categories
Website

Yoast SEO vs All in One SEO Pack

Are you looking for the best WordPress SEO plugin? If you are, then you have likely narrowed your choice down to the two most popular WordPress SEO plugins: Yoast SEO and All in One SEO Pack. At WPBeginner, we’re often asked which one is better? In this article, we will compare Yoast SEO vs All in One SEO Pack to find out which one is the best WordPress SEO plugin.

Yoast SEO vs All in One SEO - Which one is best WordPress SEO plugin

About Our Contenders

Both All in One SEO Pack and Yoast SEO plugins have devout userbase, and they are among the most popular and most used WordPress plugins of all time.

All in One SEO Pack was created in 2007 by Michael Torbert and Steve Mortiboy. Since then it has earned a massive user base and has become one of the most downloaded WordPress plugins of all time.

Yoast SEO, started out as WordPress SEO by Yoast in 2010. It was created by Joost de Valk. With persistent and continuous improvements in the plugin, it soon became the major rival of All in One SEO. .

These are both excellent plugins and offer all the must have features you need to get maximum SEO benefits on your WordPress site.

Having said that, let’s compare Yoast SEO vs All in One SEO to find out which one of them is the best WordPress SEO plugin.

Installation and Setup

It takes a lot of training and practice to understand and successfully implement the concepts of SEO into websites. A WordPress SEO plugin should make it easy for beginners to setup SEO best practices without any special skills.

Let’s see how these two plugins stack up when it comes to installing and setting up basic SEO settings on WordPress websites.

Yoast SEO

First thing you need to do is install and activate the Yoast SEO plugin. For more details, see our step by step guide on how to install a WordPress plugin.

Upon activation, users can go to SEO » Dashboard page and launch the configuration wizard under the General tab.

Launching Yoast SEO configuration wizard

This will bring up a step by step wizard which will walk you through the setup process. This allows beginners to get started quickly without feeling overwhelmed by complex jargon and options.

onfiguration wizard in Yoast SEO

Yoast SEO is a powerful plugin, and it has a lot of options that you need to go through one by one. We have made this easy for you, take a look at our guide on how to install and setup Yoast SEO plugin in WordPress.

The settings section of Yoast SEO is neatly divided into pages where each page has different tabs for respective settings.

This makes it easy for users to locate an option in the settings.

Settings in Yoast SEO

On screen help is available on all pages of Yoast SEO settings. Just click the purple Help button on the top, and it will expand to show video or text about the options on the page.

Yoast SEO on-screen help

Neatly organized settings, configuration wizard for beginners, and on screen help options make it super easy for beginners to setup Yoast SEO on their WordPress site.

All in On SEO Pack

First, you need to install and activate All in One SEO Pack plugin. For more details, see our step by step guide on how to install a WordPress plugin.

Upon activation, you will find the All in One SEO menu item just below the Dashboard. Clicking on it will take you to plugin’s settings page.

All in One SEO Pack, has all the settings on a single page. This makes it look a bit overwhelming, but some users may find this approach easier and faster than the multi-page settings of Yoast SEO.

The settings page is divided into different sections. Each section deals with the settings of a particular area or feature, for example: homepage settings, title settings, display settings, etc.

There is a help icon next to each option. Clicking on the icon shows a short description and sometimes a link to additional documentation. This makes it easy for beginners to understand what they are doing.

Here is our user’s guide for All in One SEO Pack, which will help you properly setup the plugin.

Once you have carefully gone through general settings, you are ready to use All in One SEO on your WordPress site.

Conclusion:

Both Yoast SEO and All in One SEO has a lot of options. This makes the setup look a bit intimidating. Both plugins try their best to simplify things and make it easier for users to setup their SEO settings. We feel that Yoast SEO does a slightly better job than All in One SEO with their multi-page and tabbed settings.

Winner: Yoast SEO

Day to Day SEO Tasks

SEO is an ongoing process, and each new post or page you add to your website has its own SEO score. This means, you will be using your SEO plugin to optimize your content for search engines as you add it. See our guide on how to optimize your WordPress blog posts for SEO.

Let’s see how our contenders stack up when it comes to performing day to day SEO tasks on your WordPress site.

Yoast SEO

Yoast SEO comes with a powerful content analysis tool that helps you optimize every single post or page on your website.

Just below the post editor, you will find Yoast SEO metabox with a snippet preview, focus keyword field, and content analysis.

Yoast SEO meta box in WordPress

The snippet preview shows how your site’s title and description will look in search engines. Yoast SEO automatically uses your post title as title and excerpt as description, but we recommend you to change it by clicking on the edit snippet button.

Entering focus keyword in Yoast SEO will allow the plugin to analyze your content for that particular keyword.

The analysis is shown in the content analysis area, where Yoast SEO will make suggestions on how you can improve your posts SEO score.

The Yoast SEO meta box has two more sections. You can click on the gear icon to switch to the advanced view.

Advanced post settings in Yoast SEO

The advanced view is something that most beginners should never use unless you know what you are doing. It allows you to stop search engines from following or indexing the post/page.

Second, is the social icon that displays the social settings for your post.

Yoast SEO social settings for posts

This is where you can set an article image for Facebook and Twitter. You can leave description and title bank because Yoast SEO will use your main title and description in the open graph meta tags.

All in One SEO Pack

All in One SEO comes with a similar metabox to edit SEO settings on a post by post basis. Simply edit a post and below the post editor you will find the All in One SEO meta box.

All in One SEO metabox for single posts and pages

Unlike Yoast SEO, this meta box is very simple. You can edit the title and description, but there is no content analysis or SEO scoring.

All in One SEO does offer advanced tools for each post which allow you to control indexing and following by search engines. It even has an option that turns off All in One SEO for that particular post or page.

For social features, you will need to enable Social Meta addon by visiting All in One SEO » Features Manager page.

Adding social features to All in One SEO

Enabling this addon will add a Social Settings tab in All in One SEO meta box below post editor. This addon allows you to set custom images and descriptions to be used by Facebook and Twitter.

Social settings in All in One SEO to add open graph meta data

Conclusion

Both plugins make it easy to edit SEO settings on a post by post basis. All in One SEO Pack takes a lean and clean approach allowing users to add additional fields if they want to.

Yoast on the other hand goes with decisions over options approach and add the features they believe is essential for all sites.

However, we feel that content analysis, focus keyword, and SEO scoring gives Yoast SEO a big advantage.

Winner: Yoast SEO

Additional Tools and Features

On page SEO is a comprehensive process that’s why both of these plugins come with additional tools and features aside from just meta tags.

These features are there to eliminate the need to install several other SEO plugins and give you a true all-in-one solution.

Yoast SEO

Yoast SEO comes with a comprehensive set of features that cover most aspects of on-site optimization. Some of these tools are:

  • XML Sitemaps
  • Breadcrumb Navigation
  • Open Graph Meta Tags
  • Importing Data from Google Webmaster Tools
  • Built-in robots.txt and .htaccess editor
  • Import/Export SEO data

All in One SEO Pack

All in One SEO also comes with tons of features but some of them are not activated by default. You will need to visit All in One SEO » Features Manager to activate them.

  • XML Sitemap
  • Robots.txt
  • File Editor
  • Bad Bot Blocker
  • Open Graph Meta Tags
  • Import and Export SEO Data
  • Performance Manager

Conclusion

Both plugins offer nearly the same set of tools and features. All in One SEO does not have breadcrumbs navigation and importing data from Google Search Console features. However, not having these two features wouldn’t have any drastic impact on your site’s SEO.

We also like how All in One SEO allows you to activate functionality only when needed.

Winner: Tie

Support and Addons

Even though both plugins are fairly easy to use and come with extensive free documentation, your free support options are very limited.

Let’s see how both plugins handle professional support and addons.

Yoast SEO

The basic free Yoast SEO plugin comes with no support, and you use it at your own risk. While you can ask questions at WordPress.org support forums and find help from other users, you are not guaranteed an official response from team Yoast.

For professional support, you will need to buy Yoast SEO premium. Pricing for a single site license is $69, and it goes up as you add more sites.

The premium license also comes with some additional features like multiple focus keywords, and a redirect manager.

Yoast SEO also offers some paid addon plugins available for niche sites with specific SEO needs. These addon plugins are:

  • Video SEO
  • Local SEO
  • News SEO

All in One SEO Pack

The free version of All in One SEO comes with no support. The All in One SEO Pack Pro version comes with one year of professional support.

License for the pro version costs $97 per year for one site. WPBeginner users can get $20 OFF using our All in One SEO Pro Coupon.

The pro version of All in One SEO is usually one major version ahead of the free plugin. It also comes with extra features like support for WooCommerce products, category SEO options, video XML sitemap, etc.

Conclusion

Yoast SEO license is cheaper if you need it for just one site. However, prices go up as you add more sites. On the other hand, a single license of All in One SEO can be used on unlimited sites.

Winner: All in One SEO Pack

Our Verdict

All in One SEO and Yoast SEO are both great plugins so any comparison between the two plugins has to be very close.

We personally use Yoast SEO on all of our websites and find it to be the best WordPress SEO plugin. It has more features to offer like importing data from webmaster tools, breadcrumb navigation, Your Info section, social features, etc.

But the best feature is content analysis which we think helps a lot of beginners understand how they should write post titles, descriptions, and use keywords in their content.

We hope this comparison of Yoast SEO vs All in One SEO Pack helped find the best WordPress SEO plugin for your site. You may also want to see our list of 9 best WordPress SEO plugins and tools that you should use.

If you liked this article, then please subscribe to our YouTube Channel for WordPress video tutorials. You can also find us on Twitter and Facebook.



Source link