Odd google searches for WP1.5.1.1

phiali
(@phiali)

18 years, 10 months ago

Hi guys,

I’ve just had some searches come to my site via the following google search strings:

intext: \/wordpress \/ 1.5.1.1 inurl:"wordpress" intext:"powered by wordpress 1.5.1.1"

Does this mean that someone might be looking for sites to hack? I’ve gone and upgraded to 1.5.1.2 by replacing the wordpress/wp-includes/template-functions-category.php as was suggested in some other posts.

But I’m still a little worried – am I being too paranoid here?

Viewing 5 replies - 1 through 5 (of 5 total)

Kafkaesqui
(@kafkaesqui)

18 years, 10 months ago

Considering the sort of kiddies that are out there… (you can never be too paranoid when it comes to protecting your site).

Thread Starter phiali
(@phiali)

18 years, 10 months ago

Okay checking my logs for my site found this:

http://0gravity.co.uk/wordpress/index.php?cat=%2527%20UNION%20SELECT%20CONCAT(CHAR(58),user_pass,CHAR(58),user_login,CHAR(58))%20FROM%20wp_users/*

Host: 210.213.172.155
Http Code: 412
Date: Jun 23 07:53:54
Http Version: HTTP/1.0
Size in Bytes: 2861
Referer: –
Agent: lwp-trivial/1.38

I take it this is the SQL injection attack that people have been speaking about?

Thankfully my site just throws up a “not found” message….

Mark (podz)
(@podz)

18 years, 10 months ago

No – that’s much more likely to be a spambot or similar.

http://www.ioerror.us/software/bad-behavior/
Install that plugin – download, unzip, upload, activate, forget

Moderator James Huff
(@macmanx)

Volunteer Moderator

18 years, 10 months ago

Yeah, wp-trivial is a rogue waste of bandwidth. If you can, add the following to your .htaccess file:

SetEnvIfNoCase User-Agent wp-trivial spammer=yes

Order allow,deny
allow from all
deny from env=spammer

More info:

http://codex.wordpress.org/Combating_Comment_Spam/Denying_Access

http://www.macmerc.com/articles/Power_User_Monday_Tip_of_the_Week/302

And, of course, get Bad Behavior (as Podz mentioned above).

Thread Starter phiali
(@phiali)

18 years, 10 months ago

Yip have had Bad Behavior up and running for about a week now. It’s helped a load with spam (combined with SK2) and looks like it has reduced my bandwidth usage as well.

Will implement the .htaccess stuff now.

Thanks!
Alistair

Viewing 5 replies - 1 through 5 (of 5 total)

The topic ‘Odd google searches for WP1.5.1.1’ is closed to new replies.

Odd google searches for WP1.5.1.1

Tags

Topics

Topics with no replies

Non-support topics

Resolved topics

Unresolved topics

All topics