Wouldn't it be nice to know in advance if your Joomla website will be successful?  Use the following tips to ensure your Joomla website project success:

Limit project scope: There are many Joomla core and extension features available and you need to be very selective about what you will truly need. Additionally, if the website project cannot be implemented within 60 days, you need to further limit the scope of the project and break it up in phases.

Agree on your website goals: While this may be obvious, several key people within the same organization may have completely different goals in mind that the website will help them achieve. Before the website is started, make sure that they agree on and prioritize those goals. 

Set the right success indicators in place: To understand how well your website is performing, you need to be able to measure and monitor your website processes. It's the best to identify the key measurements of the site success before it is implemented so that the site is developed to support those processes.

Implement high value items: For the best results, concentrate only on website aspects that will create the highest value to you and your visitors.

Align your website to your business goals: If your website does not clearly support your business initiatives, it will work against them and not provide a maximum return on the investment.

Be enthusiastic about your website implementation: Best Joomla website projects have a very supportive and interested business sponsor. Those projects where the client is not or only partially interested in the outcome of the project will not result in a successful website project.

Engage your organization to be a part of the process: After the website is implemented, it is important that every department or area of your business supports and contributes to the website success. Without having the site updated or implemented featured used by appropriate departments, the website project will only enjoy a limited success.

Hire the best web development firm:  Finally you need a business partner that will provide you sound recommendations, professional development and resolve any issues that may come up in the future so you may concentrate fully on your business initiatives.

For more information on implementing a successful Joomla project, please register for our Free Webinar: "The 8 Pillars of a Successful Joomla Website Project." 

We are pleased to announce that OGO Sense maintenance clients now benefit from even faster loading Joomla 1.5 websites. Not only that your Joomla 1.5 website users will enjoy faster experience, your site could start ranking better in Google considering that your slow Joomla website loading time can have a negative impact on your position in search engine results.

How does this work?

OGO Sense dedicated servers compress your Joomla 1.5 website data being sent out and have the browser decompress this data on the fly, thus reducing the amount of data sent and increasing the page display speed.

Free 30 min Google Analytics Review for OGO Sense Maintenance Clients (Offer expires: 2/28/2010) Do you wish to learn where your best customers live and how they find your website? Want to improve your online presence and website ROI? Do you wish to learn what's working and not working on your website? Want to know how to better optimize your website content?

More Information:

• Watch Product Demo.
• Time: Google Analytics reviews are available from 6 am to 4 pm U.S. EST.
• Date: Google Analytics reviews are available from Monday to Friday. 
• Technology: We use Go2Meeting available for both Mac and PC users.
• Google Analytics Reviews: We recommend 1 site review at least every 3 months but you may request it more often for better results.

Topics Include but are not limited to:

• Identifying your best visitors, comparing traffic sources, finding data trends, creating goals, optimizing content and removing obstacles on your website

1. Fill out the form below and let us know when you'd prefer your Google Analytics review.
   
2. We'll contact you and send you a meeting confirmation.
3. The review is provided by web conference.

This specific website compromise changes titles and descriptions of your website in Google search Engine results and is designed not to be visible on your website if you use Firefox, IE, Chrome or other popular browser.

Last week, our staff member discovered an interesting and very serious issue while working on a different project for the same site. Page titles and descriptions produced by the Joomla website where different if the site was visited by standard web browsers (Firefox, IE, etc) than by Googlebot (Google's search engine spider).

Translated in the simpliest business terms, it would mean that two site visitors would see distinct differences on the same site depending on what type of technology they used to view it. Sometimes this may happen depending on what and how old browser you are using but in this case, the issue was related to a compromise where I will provide some basic information in this blog post about what this malicious hack does. 

Page results in Google for this particular website were shown as below which confirmed our initial finding.

Considering that the client was hosting on their own server and did not have any type of maintenance agreement with us, we had to wait for the client to decide what they would like to do (decision makers on vacation, cannot reach appropriate individuals etc). We implemented a quick fix which removed the hacked lines of code and removed cached pages from the Google's Search index but the full investigation on their server and site could not begin until we received necessary approvals that hours spent on this issue would be paid for later.

Now, since we have temporarily fixed the hacked files once, the issue has appeared again because the security hole still existed in the system considering that the full investigation was not launched and issue fully resolved until now. Our more comprehensive recommendation included: 

While we have still not received an approval for this funding (which was really minimal in my opinion considering the seriousness of this issue), to satisfy my own curiosity I ordered a couple of support staff members to research what this hack does.

And here is what they have found: 

The file: administrator/index_old[DOT]php was found under path administrator/ on the website. Once examined, it became obvious that it is a backdoor script with very high capabilities which will be described here along with screenshots. After downloading the script, installing it on a local web server and pointing a browser to it, it prompted for a password.

By looking at code, we found the line containing the password : $admin['pass'] = '11666611'; After succesfully loging in, we found a control panel with the following capabilities.

Notice "Get plugins" link marked with red color that leads to download page where one can download plugins that improve script capabilities even further.

Ogy Nikolic
Joomla CMS Security & Technical Support

• What are your short term business goals within the next 1-3 months? What are your business plans in 2010? What are your 3-5 year business plans? How do we align those goals with your website and measure its success?
• What makes you stand out from your competition? What is better about your products/services? Have you completed online and offline competitive analysis?
• Where do you get intelligent, current and relevant information to what is hot in your industry?
• What keywords are the most relevant to your business?
• Do you currently gather website analytics/statistics? How often do you check them and do you understand how to analyze them?
• Who are your best customers? Where do they live? How do they currently hear about you?
• How much did you spend on your website in 2009 and 2008 separately? Do you have a budget in mind for 2010? Can new enhancements be divided into phases in order to accommodate budget and timing constraints?
• Do you feel your current site promotes a favorable user experience? Why? Why not?
• What specific areas of your current site do you feel are successful? Why are they successful?
• What shortcomings exist with the current site and what three things would you change on the site today, if you could?
• What is the primary “action” the user should take when coming to your site? (purchase products/services, search for information, call you, etc.)
• How is your company currently perceived offline? Do you wish to carry through the same kind of message through your web site?
• How much time are you able to devote to your website on a weekly basis?