http://dannedelko.com/wordpress/wordpress-injection-attack.html Media. Music. Business. Interwebz. Sun, 29 Jan 2012 04:12:34 +0000 hourly 1 http://wordpress.org/?v=3.2.1 http://dannedelko.com/wordpress/wordpress-injection-attack.html/comment-page-1#comment-2264 Wordpress Spam Injection « techniclog Sat, 29 Jan 2011 12:37:20 +0000 http://dannedelko.com/?p=53#comment-2264 [...] on the registration page.Update 3: I am getting a pro at it now! Learnt about this plugin from here. I have installed it – it’s a great tool for securing your WP [...] http://dannedelko.com/wordpress/wordpress-injection-attack.html/comment-page-1#comment-508 Wordpress Injection | Free Wordpress Themes Fri, 30 Oct 2009 14:55:44 +0000 http://dannedelko.com/?p=53#comment-508 [...] View Results Loading … [...] http://dannedelko.com/wordpress/wordpress-injection-attack.html/comment-page-1#comment-345 Dave Yates Thu, 17 Sep 2009 13:16:03 +0000 http://dannedelko.com/?p=53#comment-345 Hi Dan Thanks for this and for the email. I am onto the server config advice now. Hosrting could be an issue - I use Heart in the UK. They are a bit 'pile it high sell it cheap', but the support is good and they know what they are doing - I tend to think the problem was of my own making. For those wanting to learn, read on… Historically, the site was first put up some years ago when I was still merrily creating several sites a day, full of enthusiasm for the ease and power of WordPress. Whereas, these days I tend to change everything including the WP-admin folder name, most of the file names and always delete the admin user name straight away and otherwise alter a lot of the out-of-the-box defaults, back then I did not. It is not so feasible to retro-fit some of those practices unfortunately and once some nasty little germ has blown a hole in your installation, prevention doesn't work any more and a cure cannot always be easily found. Cautionary advice for everyone out there: 1. Consider adding .htpasswd and .htaccess protection to the wp-admin directory. 2. Try changing the wp-admin folder name. See: http://wp123.info/modifications/change-wp-admin-folder-name/ 3. I would add the login lockdown plugin to Dan's two excellent suggestions: http://wordpress.org/extend/plugins/login-lockdown/ http://wp123.info/modifications/change-wp-admin-folder-name/ 3. I would add the login lockdown plugin to Dan’s two excellent suggestions: http://wordpress.org/extend/plugins/login-lockdown/]]> http://dannedelko.com/wordpress/wordpress-injection-attack.html/comment-page-1#comment-343 Dan Nedelko Thu, 17 Sep 2009 11:39:10 +0000 http://dannedelko.com/?p=53#comment-343 Hey Dave, These should help alot - I'm also going to email you directly but you'll want to look at the server config. Years ago I had an account with Neureal, whose servers were hopelessly out of date. No matter what I did injections kept happening. You might want to try out a new host or have them lock some things down. Especially openbasedir restrictions - add them - locking that down removes some functionality but helps alot. http://dannedelko.com/wordpress/wordpress-injection-attack.html/comment-page-1#comment-342 Dave Yates Thu, 17 Sep 2009 11:27:18 +0000 http://dannedelko.com/?p=53#comment-342 Good article. Hope it works!! I have a client's site that has been getting filled up hidden injected links in the footer for months. I am at my wits end with it. I have been through the code with a fine tooth-comb (I'm not a hard-core code monkey, but I know my way around), I have deleted any number of plugins, installed as many preventative plugins, I have changed every username and password, done a complete reinstall of WP …and guess what - the hidden links keep coming back. Hopefully these plugins will finally see them off. http://dannedelko.com/wordpress/wordpress-injection-attack.html/comment-page-1#comment-84 Maxxx Sun, 05 Apr 2009 13:46:54 +0000 http://dannedelko.com/?p=53#comment-84 Oh, it's a useful page! Thanks for it. (-: http://dannedelko.com/wordpress/wordpress-injection-attack.html/comment-page-1#comment-83 We Got Hacked… | aimusic.com [the official A.i. website] Sun, 05 Apr 2009 12:34:38 +0000 http://dannedelko.com/?p=53#comment-83 [...] If you own a wordpress site that got hacked and are trying to figure out what to do, here’s a great article on how to solve it.  [...] http://dannedelko.com/wordpress/wordpress-injection-attack.html/comment-page-1#comment-46 RaiulBaztepo Sat, 28 Mar 2009 16:27:49 +0000 http://dannedelko.com/?p=53#comment-46 Hello! Very Interesting post! Thank you for such interesting resource! PS: Sorry for my bad english, I'v just started to learn this language ;) See you! Your, Raiul Baztepo See you! Your, Raiul Baztepo]]> http://dannedelko.com/wordpress/wordpress-injection-attack.html/comment-page-1#comment-20 Dan Nedelko Thu, 12 Mar 2009 15:36:08 +0000 http://dannedelko.com/?p=53#comment-20 Thanks WuWu - glad you liked it. Hope to see you back soon! http://dannedelko.com/wordpress/wordpress-injection-attack.html/comment-page-1#comment-19 WuWu Thu, 12 Mar 2009 13:04:18 +0000 http://dannedelko.com/?p=53#comment-19 Very nice post, thanks!!!