WP Minder

Debbie Campbell

Why is WordPress Not Sending Emails?

by Leave a Comment

I hear this a lot. Here’s what’s happening…

Like most cloud hosts, our host Cloudways doesn’t provide email services and sending transactional emails (those are receipts, notifications, password resets, two-factor authentications, etc.) can sometimes be hit-or-miss.

If it seems that email is not being sent by your WordPress site, these are the most likely reasons.

1. Transactional emails are being sent but are being flagged as or outright rejected as junk mail.

This is by far the most common problem! It happens when email coming from your site is not authenticated with records at your domain, proving they’re coming from the correct domain.

Your email provider should give you this record to add to your domain DNS records: SPF (sender policy framework) – this can help with mail delivery and also aids in prevention of spoofing and phishing.

2. The server is not configured to send mail.

We can test to see if email is actually being sent with a plugin. In most cases, mail is going out but not getting to the recipient because of reason #1.

3. Your contact form is sending out ‘spoofed’ emails.

This happens when the ‘From’ address in your contact form is from a different domain than your website. For example, your website is xyz.com but your form is coming from [email protected] When those domains don’t match, recipient email servers often block those emails.

What can we do about it?

Fortunately there are some easy ways to improve mail delivery.

1. Make sure your DNS records include an SPF record, which your email provider should have given you.

Google your email provider and SPF if you didn’t get one and add it at your domain registrar or wherever DNS is managed.

2. Make sure your form sender ‘From’ email matches the domain of your website.

This also includes the super-administrator since many notifications will come from that email address – if you’re using an address other than one with the same domain, you’ll need to look at options 3 or 4…

If you’re looking for a good email provider to get a domain-related email, we recommend Rackspace (disclosure: we are a Rackspace affiliate and have used their email services for many years).

3. Add an SMTP plugin to your site.

This allows your site to use a third-party outgoing mail server (typically this will be a Gmail SMTP server or something similar) and this is a pretty good solution much of the time. It can take some time to set up, and is not foolproof, but it reduces the risk of being blocked.

You’d either do 3 or 4, not both.

4. Further authenticate your email with an email delivery service.

This is the best (again not foolproof) way to improve email deliverability. We use Postmark and there are other services like Mailgun and Mandrill that are very similar.

You add a DKIM record (which is like a digital signature on every outgoing email) to your domain’s DNS records to prove that they are authentic, and the chances of being blocked are significantly reduced.

Our Postmark Email Delivery Booster service is only $2/month for our Care Plan clients. This is what we’ve been using since 2017 and we recommend it for any business website where email delivery is critical. Get in touch for more information.

WordPress 6.0 Due Out Today

by Leave a Comment

6.0 is due to launch on May 24, 2022. Here are some of the main changes for WordPress website owners and managers:

  • The ability to select text across multiple Gutenberg blocks.
  • Select and drag multiple same-level blocks in in List view.
  • New block transformations – make changes to block layouts on the fly while editing – and styles are now maintained when you transform a block.
  • You can now use the Featured Image in the Cover block.
  • New Stack block for vertical grouping (reponsive).
  • New block for Author Bio.

Read (a lot) more about it here.

Excluding WooCommerce Pages from Caching

by Leave a Comment

If you run a WooCommerce shop and you’re using a caching plugin on your website – or your host is providing one as a service, like Varnish – make sure caching is disabled for key WooCommerce pages and cookies.

What is Caching?

Caching is ‘saving’ website information and content in the user’s browser on their first visit and displaying that saved page in the future rather than having to pull it from the server. It allows for faster page loading than if the page had to be ‘rebuilt’ from scratch each time the user views it.

But caching has its drawbacks, as you probably know from being told to ‘clear your cache’ to try to fix any website issue. Caching impacts on WooCommerce can include:

  • Users seeing old versions of the checkout page when they try to finish an order
  • Users seeing other users’ carts or finding strange items in their carts
  • Users seeing other users’ account info
  • Issues with WooCommerce checkout pages never loading

WooCommerce logoThese problems can cause your customers to trust your site less as well as privacy issues. But it can be fixed easily by excluding dynamic pages from the cache. Note: some caching plugins automatically exclude cart and checkout pages for certain ecommerce plugins. Check your plugin’s documentation.

How to Disable Caching for WooCommerce in WP Rocket

WP Rocket is a popular commercial caching plugin for WordPress. It does automatically exclude the Cart, Checkout and Account pages automatically, but there are a few more things you need to do.

1. Go to the WP Rocket settings, Advanced Rules.

2. In the Never Cache Cookies section, add the following lines:

woocommerce_cart_hash
woocommerce_items_in_cart
wp_woocommerce_session_
woocommerce_recently_viewed
store_notice[noticeid]

3. Save the changes.

Cookies help track products in carts and power the ‘recently viewed’ widget – they need to stay dynamic as they change a lot.

This process should be simliar for different caching plugins.

How to Disable Caching for WooCommerce in Varnish

Varnish is a server-side tool that speeds up website loading as well as providing security protection. Part of its job is to temporarily store the content of your web pages (a cache), which will be served up when a user requests them rather than making a call on your host server (just like the plugin-based caches).

If you have access to the server settings, you can add the following WooCommerce exclusions to Varnish.

Pages/URLs:

\?add-to-cart=
\^/(cart|my-account/*|checkout|wc-api/*|addons|logout|lost-password|product/*|wp-admin|wp-login)
\/checkout/
\/my-account/

Cookies:

woocommerce_cart_hash
woocommerce_items_in_cart
wp_woocommerce_session_
woocommerce_recently_viewed
store_notice[notice id]

The Latest US Privacy Law News

by Leave a Comment

On April 28th, the Connecticut legislature passed its new Connecticut Data Privacy Act, which is now going before the governor. It’s based on the Colorado Privacy Act which became law in July 2021. Here are some key features of the Connecticut Act:

  • Consumer approval is required for managing sensitive data
  • Controllers have to allow consumers to later withdraw consent
  • Opt-out regulations are very strict
  • Childrens’ data privacy rights match California’s.

If passed, Connecticut will become the fifth state having passed broad consumer data privacy bills. The others are Colorado, California, Virginia and Utah. More on the new Act here.

Eleven other US states currently have privacy bills in progress:

  • Alaska
  • Louisiana
  • Massachusetts
  • Michigan
  • New Jersey
  • New York
  • North Carolina
  • Ohio
  • Pennsylvania
  • Rhode Island
  • Vermont

The importance of having a comprehensive, up-to-date privacy policy on US-based websites is at an all-time high. That’s why WP Minder offers our dynamic privacy policy/cookie policy tool for our Care Plan clients. Contact us for more information.

The Risky Business of Displaying Only the Best Reviews on Your Website

by Leave a Comment

Did you hear about the case the FTC (US Federal Trade Commission) brought against an online fashion shop called Fashion Nova in January 2022? It was the first case of its kind, alleging that the retailer was deceiving customers by only showing positive reviews on their site.

Fashion Nova settled the case for $4.2 million.

Learn more about what happened and why you should reconsider showing only those 5-star reviews on your website…

Using Backup Plugin UpdraftPlus? Upgrade It Now

by Leave a Comment

UpdraftPlus logoIf your WordPress website uses the popular UpdraftPlus backup plugin, you’ll want to read this…

UpdraftPlus is installed on over 3 million WordPress websites and is relied upon for securely backing up WordPress site files and databases, which contain sensitive user data.

UpdraftPlus was found by a security researcher at WordPress parent company Automattic to have a ‘severe vulnerability’ that allowed hackers to download usernames and passwords.

Here is the announcement from UpdraftPlus from Feb. 17. They were on top of things, working to release the fixed version about a day after the problem was found and being transparent about reporting it.

WordPress took the unusual step of forcing auto-updates on installations that were still using the older versions of this plugin, but you do need to check your site anyway to make sure. Upgrade immediately if you find one of the older versions.

If you’re still using the following you’ll need to upgrade right away: