For me, I found this out after viewing the Maps portion of my analytics and seeing that my home state had the most traffic. I do promote a bit locally, so I investigated further. At that point I realized that the majority of visits were from myself – adding posts, previewing them, checking the site, checking changes etc. So, what is one to do? I filtered my IP from the analytics.

Now I can do this because I have a static IP. Don’t have that? Ask your ISP, most for a small charge will set it up for you and for small monthly charge let you keep it. This way, the static IP can be filtered from your analytics results and not impact the bottom line on your view of traffic.

To accomplish this filtering process, once logged into Google Analytics click on the Analytics Settings. Next, under the Actions column in the row of the site you wish to add the filter to, click edit. At this point, you want to find the Filter section, and choose Add New Filter. This will give you something like the image below, where you can choose from several options to filter from. You can choose to filter domains, IP addresses and more. The one you want to select is Exclude All Traffic From an IP Address.

It is important to note how the IP address is notated: 192\.168\.0\.1 – notice the backslash before the period. You can exclude a single IP address by including all four octets or you can exclude and entire range by including fewer octets: 192\.168\.0\. note that it ends with the \. this will exclude all hosts on the 192.168.0. network. So if you have multiple users in your company that view your site repeatedly with multiple IPs from the same network, you can effectively exclude all visits from staff this way.

Billy J. Nab's Portfolio

You can find it here: Billy J. Nab’s Portfolio

I logged in to my PayPal account yesterday only to notice a charge attempting to come through for Amazon.com on my PayPal Debit card. The funny thing is, the only purchases I have made at Amazon.com this year were paid using a different card, and those transactions have already cleared with the card issuer.

So begins finding out what is going on.

1:30AM Mountain Time

First call was to Amazon.com’s 24-hour customer support. The lady that answered the phone was very friendly, though had a thick accent and obviously didn’t have very good English skills. How do I know this? After providing my email address nearly 4 or 5 times and she still had it incorrect I got the feeling she didn’t understand the basic alphabet when spelled out, even using phrases such as A as in apple, B as in boy to clarify the letters.

So then on to order numbers. I provided her with two order numbers, neither of which she could find in the system. Imagine that. They were placed with Amazon merchants, not directly with Amazon, and thus I explained this to her. Again, she verifies the order numbers and no surprise she had at least 2 digits wrong in each of them, so now I have the feeling she can’t even understand numbers 0-9. So we verify 3-4 more times the order numbers.

At this point, we are nearly 20 minutes into the support call and she still has yet to locate my account, so I ask if she can look it up by my name, by a credit card number, by my address or anything else. She says she can’t do that and mumbles about something else. Finally she puts me on hold for nearly 3 minutes and then comes back asking for my name so she can pull up my account. Mind you I have explained at this point 3 times that the purpose of the call is to report a fraudulent charge coming from Amazon.com to my debit card, that is unrelated to my purchases last week, since they used a different card and had already cleared the issuing bank.

So she pulls up my account, notes the two order from last week, which is amazing since she claimed to have had the proper order numbers before. She then asks which order I am disputing. I explain to her I am not disputing any of the items or order, but I am trying to file a claim of fraudulent charges coming from Amazon.com. She puts me on hold again for several minutes.

After she comes back on the line, the first thing she asks for is my debit card number. No explanation, just “May have your debit card number sir?” I ask her why she needs that at this point, considering she had so much trouble finding me in their system, considering she couldn’t get the order numbers proper and considering she has misunderstood the entire purpose of the call. She said she would like to start an investigation into my orders and needed the debit card number. I explained, once again, that it was being used for an order I DID NOT place. She says she is not sure how she can help me with that, but it would help if she could get my debit card number anyway. At that point I ended the call.

8:30AM Mountain Time

I call PayPal customer support, input the code given from the customer support web site, choose my menu options properly and get to a live person in under 2 minutes. Now that’s cool. The lady that answers the phone pulls up my account, verifies a few bits on information the first time, no problem. She obviously can understand English much better than the Amazon customer service representative I spoke to about 7 hours ago.

She sees the two authorizations that have been attempted by Amazon.com, for $1.00. I validate that I have not used the PayPal debit card on Amazon.com to complete a purchase, though for a time it was listed as one of my payment methods with Amazon.com. She says the card number was probably compromised, or someone has inadvertently switch digits in their card making it the same as mine, which has happened in the past. She notes the best thing to do is to cancel the card and issue a new one. I agree.

Within less than 6 minutes, PayPal answered my call, verified my information, canceled the debit card, issued a new one and apologized for any inconvenience, even thought it does not appear that they are at fault. Take that Amazon.com!

For an interesting read on what I feel may have happened, just check out this blog post here about a potential credit/debit card hack happening. A quote from there reads, “Amazon seems to be a current favorite, based on the fact that a number of the irate forum posters recently shopped there.” The issue in my case is, this card was not used on Amazon.com during my purchases, and in fact the card that Amazon.com was trying to authorize had not been used in several months, since September 2008.

Use my contact page if you are interesting in discussing any potential opportunities.

One thing I should mention is some specifics that I will be basing the rest of this series off of, in others here is the list of requirements I am going to meet. While the list is not extensive or exhustive, it provides a good base to which you should be able to extend to fit your requirements list.

1. The site needs to log users in and out.
2. The site needs to keep users logged in for a minimum of 15 minutes.
3. The site needs to keep users logged longer if they desire to choose “Remember Me”.
4. The site needs to authenticate on all pages.
5. The site needs to logout users by session timeout, cookie timeout and user forced logout.
6. The site should log all login attemps, whether successful or not for security purposes.
7. The site should be able to provide the user with their last login date and time.
8. The site should operate over a secure connection.
9. The site should lock an account after three unsuccessful login attempts, if the account login name is correct and the password is wrong, and it should stop accepting submissions if the user name is not found within three attemps and log the error.

On to the MySQL database definition…..

We will want to create two basic tables in our database for this project. The first table will contain the user information while the second table will contain the logging information.

On the following table definitions, the convention is:
columnName, columnType, columnNull/NotNull, columnDefault

For the user table we will have the following definition:

ID, int(11), Not Null, auto_number – Primary Key
user, varchar(100), Not Null
auth, varchar(50), Not Null
isLocked, tinyint(1), Not Null
isDisabled, tinyint(1), Not Null

For the accessLog table we will have the following definition:

ID, int(11), Not Null, auto_number – Primary Key
userID, varchar (100), Not Null
hostname, varchar(150), Null
ipaddress, varchar (50), Null
timestamp, timestamp, Not Null, CURRENT_TIMESTAMP

It should be noted here that the auth field is the password field, and that it will be encrypted for security purposes, thus the length is set to 50 to accomodate the lenght of the password after encryption has been applied. The isLocked field will allow the automatic locking of any valid account that has three unsuccesfull login attempts on it, while the isDisabled account will allow a system admin or webmaster to manually and temporarily disable accounts, which is useful if you run a paid-for-service or membership service.

There are several items that you need to figure out before we can continue with our discussion of user access. These items will determine how you implement the user access control. I have listed them below:

• Do all pages on the site need to have user authentication, or only a subset of them?
• Will the site use SSL connections or just basic plain text authentication?
• Will the site offer to “remember” users after the leave the site and come back or automatically log them out when they leave the site or follow the logout button/link?
• Will the site offer content only to those logged in, such as a user control panel where the user may add/change/remove their information or a special section that is dependent upon their access level?

Once those questions are answered, you will find that the tutorials step through first generating the user database that is universal to cover all those needs and more, then we will setup basic authentication using an SSL encrypted page, then we will setup sessions, session time limits, cookies for user rememberance and finally discuss restricting access to pages via user login authorization level.

This is the overview of a several part series that will be posted over the coming days.

Perceptions, Deceptions and Lack of Sales

You have no sales the first month.  Okay, give it time you say.   The second month you pick up a few sales.  By month three your $49.99 per month “E-commerce Value Hosting” fees are starting to make you re-think your web site.  You continue to search Google for your site and find nothing for the keywords that were to be the main point of the site.  You have some friends look your site over, and being friends they are not 100% honest that the bright yellow page background really is painful on the eyes.   Further, they refrain from telling you that your images are not crisp and sharp.

Your contact page simply lists a contact form that users can enter data into, but no email address, no phone number, no physical address and definitely not any “real” contact information for you or your business, not even hours of operation so they may be able to expect when they might receive a reply back.  There are no Policies or Terms & Conditions pages that specify shipping policies, return policies or privacy policy that ensures your potential customers that their orders and data are kept safe and that you will not try to make a quick buck selling their name to every spam marketing mailing list ever made.

You do not have your own SSL certification, but your host allows you to use theirs, so when people do buy something, you transfer them from www.yourstore.com to www.hostingservice.com/~users/yourstore/secure/checkout.php?xxx=222&jjj=2134&kkai=188137 and they get scared thinking they were just transferred to another web site, one that maybe malicious and steal their credit card information, even if it “looks” just like your site, and has the products they just added to their cart listed.

By the sixth month, you are still not making profit from your web site, and you are wondering if the price you paid for the 1 year of hosting was worth it ($49.99*12 = $239.88) since you have yet to recover that cost, let alone the $1489 you paid for development of your site (or if you were lucky you paid $399 for someone to install a “canned” open-source {open-source generally means FREE} shopping cart system).  Good thing you only have 6 months left on your hosting package….you can cut your losses and tell everyone you know that designer A really made a poor web site and that e-commerce really is not meant for the average small business.

Perception Explained: You thought just by having an online store you would have sales rolling in, top rankings for your keywords in Google even though there are 2.5 million results in Google for your selected key words, and that it would be gravy with out any added effort on your part.  You hired a developer that sold you the world and gave you a Cracker Jack trinket web site that is not optimized for the user experience and not optimized for the Search Engines.  You picked colors, layouts and designs that belong to a junior high school aged MySpace profile thinking that since you liked them, so would your customers, and worst, you just had to have the fancy Flash animated navigation menu popping around because it was “cool looking”.

Deception Explained:  Your developer put some keyword tags into the Meta tags, maybe a description.  Most likely used an open-source package you could have setup yourself, charged you too much for hosting, especially since you did not receive your own SSL certificate and are merely using the web host’s shared certificate.  He didn’t explain anything about user interfaces, navigation that is SEO friendly and that content truly is king in the online world.  Further, he didn’t explain the issues inherent in Flash based navigation and Flash in general on web pages, simply because that is what you wanted and he makes more money creating these items for you than just making a site that works how you wanted it to.

Lack of Sales Explained:  Your customers do not like the layout of your site, that is if they can even find the site.  You have not promoted it on the Internet or offline, because you were told it was “optimized” for the search engines and you “knew” Google would send the visitors streaming in.  Your lack of content and product information doesn’t “sell” your products, but gives the same canned information that all the other sites and eBay listings selling the same item have.  Further, you do not publish privacy information, which is a must in today’s online world, and you never once thought that you should include a phone number or physical address because someone might find out who you really are (which unless you are trying to hide your business for illegal activity, is a big no-no).

What A Web Site Should Be For Business

Looking back, you realize it could have been done differently.  I tell you it should have been done differently.  Let’s examine some key aspects that are essential to any success in the online world, even running auctions on eBay (though we focus on having your own web site here).

• Site Design: Your web site, or eBay store page should look, feel and function as well as any of the top tier web sites on the Web.  You should have colors that look even across different monitors, screen resolutions and browsers.  The color usage should be inviting, not painful and should be complimentary to the content, not overpowering it.  Just because you like bright yellow, doesn’t mean it necessary works well in a given design.  Further the site design should be user-centric, meaning the user can navigate it easily, find the information they want and most importantly find the products they want and purchase them easily. The design is not just limited the layout and colors, but images, user interaction flow and process should be examined.  Images should be crisp, sharp and clear, as much as allowed in keeping the file size down to ensure fast loading times.  The user interaction flow should be determined to allow easy access to product information.  If a user needs to click on Products, then on Widgets, then on Spiffy Widgets, then on Blue just to get to a selection of Blue Spiffy Widgets to buy, they are 4 levels into the site before they even see a product, which is not conducive to effective sales. The process would be overall shopping experience.  Offer items such as one-click checkout for returning buyers on your web site, meaning the login and once logged in can hit a button, get the page with their product selections, their user information and the forms necessary to accept payment information, and then click on finalize order.  Users many times don’t want to have to go through 5 pages to complete an order due to time constraints.  It also can lead to problems if the pages are not properly coded and designed if a user starts to use their browsers back and forward controls during this process.

• Search Engine Friendliness: Your pages should follow modern design techniques to ensure that the content is properly read by search engines.  This means not using a lot in terms of javascripting and flash for navigation links, and ensuring that the content is place higher in the page as some search engines only crawl so much of the page before going on to the next, and if your content is after your navigation, after your scripts and after your really cool flash banner, the search engine may not pick it all up.Meta tags should conform to industry best practices and include keywords that describe the actual page content.  In consideration of Meta tags, there are more than jus the keyword and description tags that can be effectively utilized for better search placement.

• Contact Information:  You run a business, and therefore should have every contact method you want to use adequately displayed and easy to find.  It is hard for someone to purchase a product (especially a high-ticket product) if there is lacking contact information.  There is no problem with offering a contact form that customers can use to send a message to your business, however that should not be the only contact method listed or available.  You need to list your physical address (exceptions may apply on eBay listings for privacy concerns there if you are running out of your home) of the business, the business contact phone numbers and a general contact email address to ensure your customers that you are a legitimate business on the Web.
• Policies, Terms, Conditions:  You have to spell out to your customers what your policies are.  Policies may include privacy of information they submit to you, return policies, shipping policies and anything else that you decide your customers and their transactions will be subject to.  It is always a good idea to have an attorney review these to make sure you are not generating pitfalls for your business.  You should also spell out terms of use for your site, what are customers subject to when using your site, copyright information and any conditions that apply to the use of your site.
• Shipping: Your shipping information should be adequately and prominently available to all customers.  What shipping method is the default method, and what other methods are available should be explained.  You should also include any handling charges, and any processing times for order packaging and preparation.  You do not want your customers ordering a product with overnight shipping and getting a complaint because it took 4 days to process and pack the order before you shipped it, so you want to spell that out as clear as you can.  You should also note whether or not shipping is done in your home country, other countries or full international shipping.  Many times in the US business will ship to the US, Canada and Mexico, but maybe not to Europe or Asia.  This needs to be explained and your site needs to not accept orders from countries or locations you do not ship to.
• Security:  Your web site should run the latest SSL encryption technology and have its own dedication SSL certificate.  This ensures your buyers that you are who you say you are and your site is who it claims to be.  You may find some web hosts that offer free use of their “shared” certificate, but this means redirection to a Web URL different than your stores and can spell doom to your bottom line with untrusting consumers who are constantly hearing and reading about online fraud.  Your back end processing software should be secure as well, both through proper encryption and proper physical access.  Remember, when the customer submits their credit card information to you, they expect it to be handled properly and safely, as well as there are laws that dictate what practices need to be followed to ensure compliancy.

Some small basics of operating a web site for business, that when followed will help ensure good visibility, good customer interactions and safe shopping will go a very long way to increasing your bottom line from online business. These are not the end of the sage, the last page of the book or the icing on the cake.  There is one more important aspect to any online business, including eBay stores.

Marketing and Advertising

 All too often I have seen small businesses come thinking that they will see double and triple their offline sales just by building a web site without taking into consideration one of the most basic business concepts: Marketing and Advertising.  Even with all of the preceding tips being followed and the web site being safe, secure, well designed and picked up by the search engines, you still have some marketing and advertising that needs to be done.  Search engines are not the only traffic generators for web sites.

You can get links from online directories, forums where you are an active member at (via signature links, and writing tutorials and such many times you can get a link back to your site) and you have online advertising.  You may wish to purchase some Google AdWords for your web site to advertise with, or you may even want to purchase individual ad spots on some prominent web sites that are applicable to your industry. 

If you want to get even more adventurous, you can setup an affiliate program.  The affiliate program generally will give a set amount or a percentage to the affiliate marketer that sends a click, a lead or a sale to your site through their efforts.  Many times their efforts are accomplished by displaying your banner ad, text ad or link on their web site and in their email newsletters.  You may even have some very ambitious affiliates who have a network of sites that they run your ad on, and tens fo thousands newsletter subscribers they send emails to on a regular basis.

While we are talking about it, do not forget to list your URL in our offline marketing and advertising.  I cannot count how many times I have had someone not do this and wonder why they weren’t getting results.  They don’t list it on their business cards (even if you don’t have business cards now, get them to promote your web site or store), they don’t list it in their newspaper ads, their radio ads and they even forget to put it on their yellow pages ads.  This is an absolute must – get that URL out there everywhere – like on a marquee on the back window of your car, truck or van.  Get some bumper stickers made up and include one in each order you send out, or give them out at trade shows.

In the end, a little extra work may very well end up getting you quality direct traffic, some good search engine traffic, and most importantly, with a good product or product line, fair prices and a great web site, some sales that increase your bottom line.