Security has been on the minds of the web design and development community this week as several vulnerabilities were reported. The US Computer Emergency Readiness Team (CERT) reported a critical vulnerability with Bash, affecting Linux and Mac OS X operating systems. If exploited, the security flaw could allow remote hackers to take over a computer.
Also, a serious security issue was reported by iThemes, a WordPress development and training company, which affects iThemes customers.
In this week’s roundup, you’ll learn more about the security issues, discover how to create modal overlays the right way, find out what you need to know about iPhone 6 for email design, and more.
This week’s photo is showing the beautiful gold and yellow autumn colors from the maple trees in central Michigan. Autumn colors are changing earlier this year; I’m looking forward to the deep reds after the first hard frost.
— net magazine (@netmag) September 26, 2014
- The Most Hated Web Experience, and How to Do It Right (If You Have To): Love them or hate them, modal overlays have proven to be very effective at converting customers. If you have to create one, UserTesting recommends you write good copy, make it easy to close, and test it.
- Is There a Formula for Delight?: Ben Wright of UX Master questions whether delight is a buzzword (it’s become overuseed, says Wright), and if there’s a recipe we can use to add delight to our products and services.
— Kathi Kaiser (@kathikaiser) September 24, 2014
- Form Usability: Validations vs Warnings: E-commerce sites benefit from using form validations and warnings, says Jamie Appleseed. Unfortunately, few sites are using warnings to alert the user to confirm their input.
- Why the WCAG 2.0 reading level criterion is doomed: Writing clear and simple language is hard. And trying to pass the plain language reading test recommended by the Web Content Accessibility Guidelines (WCAG) can be challenging, even for the WCAG.
@brad_frost the more I learn about accessibility, the guiltier I feel for how badly our generation has ignored it in our sites and apps :/
— Addy Osmani (@addyosmani) September 24, 2014
- PDF Accessibility Starts with the Author: Automated tools to repair inaccessible PDFs isn’t the answer, says Matt May of Adobe. PDF accessibility starts with the author, who
…know more about the structure and content of the document than any algorithm can.
- Twitter Writes a Post about role=presentation: It was a fun conversation to follow on Twitter among accessibility professionals when Glenda Sims posted how not to use ARIA role=“presentation”.
- The anatomy of a security breach, and how to do good in a bad situation: The security breach iThemes announced earlier this week was a serious issue, affecting 60,000 iThemes customers. Brian Krogsgard of Post Status discusses the breach and gives background on the membership system used, the engineering challenges of upgrading the system, and reminds us all to be vigilant about security.
- How To Set Up WordPress Two-Factor Authentication: With the security alerts this week, Brenda Barron’s post on two-factor authentication is timely. Barron explains what two-factor authentication is, options available, and how to make it part of your overall security efforts.
- Easy WP Guide Released for WordPress 4.0: The latest version of Easy WP Guide has been updated with 4.0 features, including information about the new Media Library view, embedded media, and updates to the Visual Editor.
- How to Spot a Rogue or Subpar WordPress Theme: Validating theme code, testing themes, and checking that themes are following best practices will help you avoid rogue themes.
- The Next Big Thing in Responsive Design: Developing a responsive philosophy and creating dynamic internal systems will allow designers to
design responsive pathways throughout the site that keep users engaged.
— Keith Wyland (@keithwyland) September 25, 2014
- Why Every Media Website Redesign Looks the Same: Flat design, responsive sites, ads, and Microsoft’s Metro design language have influenced the similar look of media sites.
CSS and HTML
- iPhone 6: What Email Designers and Marketers Need to Know: With the new iPhone 6 and 6 Plus, email designers need to consider two additional screen sizes, landscape mode (iPhone 6 Plus only), and a few strange quirks with superscripts and lack of video tag support.
- Leveling with Flexbox: In her presentation at the Smart Web Conference in Bucharest this week, Zoe Gillenwater walks you through the steps of using flexbox in your web designs.
- CSS Development at Large-Scale Websites: If you’ve been looking for inspiration to create your own CSS development guidelines, check out this list of resources from Six Revisions with guides from Groupon, Hootsuite, Lonely Planet, and others.
What I Found Interesting
- Sources of Free Sound Effects and Music for Multimedia Projects: While written for students and teachers, this list of resources for free sound effects and music is useful for anyone looking include sound and music in their projects. Note: the sounds and music are either in the public domain or have Creative Commons licenses.
- Everything you need to know about Ello, the latest trendy social network: In contrast to Facebook, Twitter, and other social networks, Ello has no ads and doesn’t track you. Who wouldn’t want to join?
- How to Use Trello for Freelancers: Let’s Get Organized: I admit it. Using Trello has been a challenge for me. I’ve used multiple project management applications in the past, and found Trello just didn’t fit my mental model for a project management program. This post helped me get over that.