WordPress.org

Ready to get started?Download WordPress

Forums

I was hacked by Russians? How do I make wordpress safe? (7 posts)

  1. allthewhile
    Member
    Posted 7 years ago #

    http://www.franklinfamily.org

    I want to do it correctly so it doesn't happen again.

    What should I do? I think it was just to show how cool they were, they didn't change the password and nothing looks messed up or stolen.

  2. moshu
    Member
    Posted 7 years ago #

    That's Polish - not Russian :)
    1. Delete it.
    2. Do you have any files/folder that are world writable? Like leaving template files chmod 666 or folder 777? Change the permissions.
    3. Contact your host - maybe they accessed the server through something else than your blog.

  3. Chris_K
    Member
    Posted 7 years ago #

    Start by changing your password and review Admin > Users to make sure no unknown/undesired users are there.

    [Edit: Moshu's faster and more thorough than I on this one!]

  4. allthewhile
    Member
    Posted 7 years ago #

    Thanks for the help. I'm going through right now and cleaning stuff up as nicely as possible. I think I'm just going to download everything off of my server that's important, delete everything and start from scratch with the latest version of wordpress. My sever is so old it's like a cluttered desktop; I frankly don't even remember what's on there. Contacting my host asap.

  5. moshu
    Member
    Posted 7 years ago #

    Please, be aware that deleting and backing up the files only - has nothing to do with your content! Your content (for the blog) is in the database.

  6. allthewhile
    Member
    Posted 7 years ago #

    I was going to back up my database, download all the files that I needed, delete everything on the server, and then reinstall the latest wordpress and then go back and make sure I have folder permissions set to something secure. Is that a good course of action? I've put to much free cgi/php/perl scripts on that server that I'm sure it could be anyone of them. I have so many folders that might have writable permission that I think its best to start from scratch.

    Does this seem smart?

  7. moshu
    Member
    Posted 7 years ago #

    Well, if you don't need all that old stuff... then yes, a big clean up is always a healthy thing :)

    Re: upgrading WP. I see you are using WP 2.0. When starting again, first I'd install that version and make sure it works with the database. Then I'd upgrade. Sometimes the database structure is different between the versions, that's why the versions should match.
    Old versions: http://static.wordpress.org/archive/

Topic Closed

This topic has been closed to new replies.

About this Topic

Tags

No tags yet.