1) Yes. A latent duplicate-content problem.

2) Yes.

3) Yes.

4) Sure, do a search here on WebmasterWorld (link at top left of every page) for "canonical domain rewriterule rewritecond HTTP_HOST" -- This long search string should give you some fairly-specific results.

(I suspect that upon investigation, you'll find that /blog/.htaccess contains code similar to what you need, but since the code is in that subdirectory, it affects only that subdirectory and those below it. Either that, or your main .htaccess contains the code, but it is written to affect only the /blog/ subdirectory. Since the .htaccess code provided with blogs and forums is often badly-written, I suggest you do the above-recommended search anyway.)

Jim

.htaccess

RewriteEngine on
RewriteCond %{http_host} ^example.com [nc]
RewriteRule ^(.*)$ http://www.example.com/$1 [r=301,nc]

I don't know that that is the best way to do it, but that's the dummied-down version that I use (I have multiple domains).

Edit: Also, I'd recommend you make a subdomain for a blog, such as blog.example.com. This means while you are in your code for your blog, / refers to blog.example.com (ie example.com/blog/), rather than example.com/. This is often how you would want it to work, so that's what I do. Also, once your subdomain is created, you won't want them visiting example.com/blog anymore, rather, you want that to be re-directed to blog.example.com. To do this:

.htaccess:

RewriteCond %{HTTP_HOST} !^blog.example.com [nc]
RewriteRule ^blog/ http://blog.example.com/$1 [r=301,nc]

[edited by: Blue_Jeans at 4:49 pm (utc) on May 15, 2008]

In the example above, back-reference $1 was undefined:

RewriteCond %{HTTP_HOST} !^blog.example.com
RewriteRule ^blog/(.*)$ http://blog.example.com/$1 [R=301,NC]

Jim

Thanks for both of your replies, @Blue_Jeans & @jdMorgan.

For this moment, I won't be touching the blog directory, as I am not a very hosting-savvy person. I will leave it there, until I have the budget to ask someone else to create a sub-domain for me, and move all the things from my sub-directory to the blog sub-domain. Anyway, thanks for the method which you have introduced.

For my homepage now, I have done this redirection, and it works. Now, whenever I type http://example.com/ or http://www.example.com/ in my address bar, it will then redirect me to http://www.example.com/ .. Now all of my site is accessible only with the WWW being shown. A canonical form of URL , if I am not mistaken.
The code which I am using now, in my .htaccess file in my root folder, is this :

============================================================
RewriteEngine On
RewriteCond %{HTTP_HOST} ^example\.com$ [NC]
RewriteRule ^(.*)$ http://www.example.com/$1 [R=301,L]
============================================================

Hope that I am using the correct code.

Thanks again for your help.

Remove the "$" from the end of "^example\.com$" in the RewriteCond pattern.

Otherwise, the rule will not redirect "example.com.", "example.com:80", or "example.com.:80" -- all of which are perfectly valid, but missing "www."

Jim

Thanks ! I have tested it out, and you are right ! Thanks a million, jdMorgan :)

Make sure that the new redirect has not had an adverse effect on anything already happening in the /blog/ folder.

It is possible that some starting URLs now see a double-redirect, or that internally rewritten URLs become exposed.

I'd still have the rule in the root, but I would add one more line to exclude it from operating on the /blog/ folder. I would rely on the code in the /blog/ folder to be the only code that is to have any influence there.

Hi g1smd,

I am not a very tech savvy person, when it comes to web hosting stuff. So, I don't quite actually get what you meant by that.

However, currently this is the only code in my .htaccess file, which is under my /blog/ directory, please take a look and let me know what should I do about it .

============================================================
# BEGIN WordPress
<IfModule mod_rewrite.c>
RewriteEngine On
RewriteBase /blog/
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule . /blog/index.php [L]
</IfModule>

# END WordPress
============================================================

Anyway, thanks for your reply, and thanks for your help.

I would recommend putting the blog on its own sub-domain unless your site is the blog.

Dealing with WordPress, you'll get hacked/exploited eventually. It happens all the time unless you keep up to date. This will happen if you are anywhere in the top 1000 results for "powered by WordPress" for any TLD search.

As this happens, and I'm talking from experience, and a bunch of spam links get hidden away in your template or posts, Google will drop you from it's index for at least 6 months. If it's a sub-domain, only the sub-domain will be penalized, but if its example.com/blog the entire site will be done.

This might seem a bit out there, but trust me, when it happens and it will, your much better off like this.

This has happened to my phpBB forums, to my SMF forums, a few times to my WordPress blog, and just a week ago I found a user with administrative privileges on WP when user registration was not even turned on!

[edited by: TowerOfPower at 7:11 pm (utc) on May 19, 2008]

QUOTE:

Originally posted by TowerOfPower
This has happened to my phpBB forums, to my SMF forums, a few times to my WordPress blog, and just a week ago I found a user with administrative privileges on WP when user registration was not even turned on!

Hey TowerofPower, thanks for your reply , and thanks for the information given. Seriously, this is so scary !

May I ask you, which version of wordpress were you using, when you found out a user with administrative privileges on WP when user registration was not even turned on ? Version 2.5.1 ?

How did you get rid of that particular problem of WP ?

I will definitely change my blog directory to a sub-domain in the near future, but not now . Thanks again for the information given.

Appreciate that so much.

It wasn't 2.5.1 if that is what you are worried about.

Though if you want to hear a real horror story listen to this...

Until very recently WordPress.org stated on the download page that all branches in the 2.0 and 2.2 [and maybe 2.3] releases where kept up to date with security patches.

Then one day they went 'whooops, even though we claimed 2.2/3 was maintained with security updates, it never really was as soon as 2.4 came out.' They did not even correct/announce this but on some obscure support thread.

People where running WP 2.2 for 6 months thinking it was patched and maintained when it was not.

Yea, I have heard of this too, and when V2.5 came out, they said it's OK with those security patch and bla bla bla... There it goes, after several days, V2.5.1 came out, and you know what I meant by that. Security problems again.

This is how the OPEN-SOURCE free community works. LOL ... Couldn't complain that much. ;)

Free is the price you pay for no accountability.

Personally, I think open-source and commercial software are two different worlds that meet two different needs. With of course a bit of an overlap.

If something like this happened at Microsoft... Customers would have been lost. Revenues would have declined. Heads would have rolled. Processes would have been updated. Meetings taken place.

You're right ! I am just hoping the wordpress community could do much more better in the near future.

Good luck to you, TowerOfPower ! :)