WordPress.org

Ready to get started?Download WordPress

Forums

Hacking WordPress on my server (20 posts)

  1. Jaffasoft
    Member
    Posted 4 years ago #

    I've had some hacking into my servers and htaccess files across all my wp web sites recently. Least this is the conclusion I've come to?? I still haven't got my sites up after two weeks now.

    Not only that i didn't know where to start because i could not even log into the servers and the ftp stopped as well.

    So far i have found that each of the htaccess file have been either changed, deleted or removed, something different for each site.

    I get 500 internal errors on loading any site 2.9.2. There is some villans out there that really try to mess your world around.

  2. esmi
    Forum Moderator
    Posted 4 years ago #

  3. Jaffasoft
    Member
    Posted 4 years ago #

    That's helpful!

  4. Jaffasoft
    Member
    Posted 4 years ago #

    Freak this annoys me i tried to just upload the new wp3 and do the manual upgrade. It went OK and got to the upgrade button in the browser and then it gets a blank screen. Like the first totally blank web page i have ever seen just all white. But least the Internal Server Error has went away.

    Also getting strange emails in my inbox from submit forms across my web sites now even though the site are not online. Someones playing with me STILL.

    Still haven't got this sorted out.

  5. Regarding the blank screen, try resettings your plugins. If that resolves the issue, reactivate each one individually until you find the cause.

    Regarding the form submissions, could it just be bot activity?

  6. Jaffasoft
    Member
    Posted 4 years ago #

    I received another submission form blank email just today from a form that's so old i never even use it from another site but it's still on the server. It could be a bot but it is a coincidence that it has been happening since the hacking. I got one today from another form. No text in the email and no reply email.

    I did this in myPHPadmin. Resetting as per instructions in link from a:2:{i:0;s:19:"akismet/akismet.php";i:1;s:25:"commentluv/commentluv.php";}

    It didn't bring any change to the blank screen! I'm not getting a lot of time to fix this so sites been down three week now.

  7. Access your server via FTP or SFTP, navigate to /wp-content/themes/ and rename everything except the /twentyten/ directory. This will force the Twenty Ten theme to activate and hopefully rule out any theme-specific issues.

  8. Jaffasoft
    Member
    Posted 4 years ago #

    I don't quiet understand this because apart from the /wp-content/themes/twentyten there is only one other file called index.php in the /wp-content/themes/ folder?!

  9. Jaffasoft
    Member
    Posted 4 years ago #

    What should the new wp3 htaccess file look like a.t.m.. i got this.

    # BEGIN WordPress
    <IfModule mod_rewrite.c>
    RewriteEngine On
    RewriteBase /home/
    RewriteCond %{REQUEST_FILENAME} !-f
    RewriteCond %{REQUEST_FILENAME} !-d
    RewriteRule . /home/index.php [L]
    </IfModule>

    # END WordPress

  10. Jaffasoft
    Member
    Posted 4 years ago #

    One site is up and running again. I tried the login to admin then into the themes. It had a message in that it repaired the theme. Then the site loaded.

    Trying the same thing on a second site to try load the WP admin login page still brings a 500 Internal error. Haven't got to the others yet!

  11. Internal server errors are usually described in more detail in the server error log. If you have access to your server error log, generate the error again, note the date and time, then immediately check your server error log for anything useful. If you don't have access to your server error log, ask your hosting provider to look for you.

  12. Jaffasoft
    Member
    Posted 4 years ago #

    Where in the cPanel can these Internal Server Error logs be tracked. It's interesting because i will be able to get a better picture what's going wrong without asking the host which really annoys me to do!

  13. In my cPanel, the section is called simply "Error log," but this can vary depending on hosting provider and cPanel configuration.

  14. Jaffasoft
    Member
    Posted 4 years ago #

    'Error log' it is.

    On getting the first site up all the pages that we're created have been deleted and all the widgets in the side bar. Pricks.

    Working on a site two now. This is one of many of the same in the Error log:
    [Sat Jul 03 12:27:42 2010] [error] [client 66.249.71.204] File does not exist: /home/invest/public_html/500.shtml
    [Sat Jul 03 12:27:42 2010] [error] [client 66.249.71.204] SoftException in Application.cpp:601: Directory "/home/invest/public_html/blog" is writeable by group

  15. Jaffasoft
    Member
    Posted 4 years ago #

    No .htaccess file in site two. I used to be able to see one. though when i upload a new one it does not appear anymore. But if i do a cPanel search in that folder there is one there just can't see or open it.

    Changed the 'blog' folder permissions back to 755, it was changed to 777. One of the other servers had all folders converted to 777 (not my doing at all). I would never do this.

  16. [Sat Jul 03 12:27:42 2010] [error] [client 66.249.71.204] SoftException in Application.cpp:601: Directory "/home/invest/public_html/blog" is writeable by group

    That's definitely the source of the error. Changing the /blog/ directory's permissions back to 755 should have solved it. Did it work?

  17. Jaffasoft
    Member
    Posted 4 years ago #

    Yes i believe that could of done some difference somewhere. Site two is up and running again now, all pages seem untampered with. But when clicking on any of the Simple:Press Forum thread it loops around to the same permalink to the original forum page number.

    I haven't upgraded the Simple:Press forum to see if that renders it compatibly with WordPress 3 (next try).

    Site three is now getting this Mysql database page error as pasted below! The MyPHPAdmin and there is a second (foreign) database in there as well as the one there used to be.

    I'm actually not sure what action to take with this below error.

    Error page when trying to load third site:
    We were able to connect to the database server (which means your username and password is okay) but not able to select the jaffas2_wrdp1 database.

    Are you sure it exists?
    Does the user jaffas2_wrdp1 have permission to use the jaffas2_wrdp1 database?
    On some systems the name of your database is prefixed with your username, so it would be like username_jaffas2_wrdp1. Could that be the problem?

  18. We were able to connect to the database server (which means your username and password is okay) but not able to select the jaffas2_wrdp1 database.

    Are you sure it exists?
    Does the user jaffas2_wrdp1 have permission to use the jaffas2_wrdp1 database?
    On some systems the name of your database is prefixed with your username, so it would be like username_jaffas2_wrdp1. Could that be the problem?

    That's quite descriptive. Are you sure that the "jaffas2_wrdp1" database exists and that the user "jaffas2_wrdp1" has permissions to use it?

  19. Jaffasoft
    Member
    Posted 4 years ago #

    I'm trying to determine where to give permissions so that word press can access the database... to see if that's a solution to the problem!

  20. You can probably set that somewhere in your hosting provider's control panel. If your hosting provider uses cPanel, the section would be called "MySQL Databases". If not, look for something called "phpMyAdmin". If you still can't find anything useful, contact your hosting provider.

Topic Closed

This topic has been closed to new replies.

About this Topic

Tags