Reset Admin Password - Attempt Limit == security hole

  1. boyan.yurukov

    Searches the web for sites that have reposted your blog posts.

    This plugin extracts several sentences from each of your posts and searches in Google for pages that contain them. Then it cross-references the results and suggests sites that may have reposted your texts without permission or backlink.

    In the "Posts->WP Kradeno Reports" page you could run a search for reposts. This check takes a lot of time, so you may want to leave it like that. Depending on your server, you may notice a slowed down loading of your site during the check, but that goes only for you - your visitors won't notice any change. If you run out of Google Search calls (4000 per hour is a safe limit), the check will stop and you may start the re-post check in an hour and it will begin from where it stopped.

    On the same page you will also see the suggestions ordered by blog posts. Since some sites are known rss agregates or forums, you could pick them out and exclude them from future searches. Furthermore, you could ignore other sites after you make sure they have not copied from you. Apart from the link to the remote site and the Google cache, you will also see the title of the remote site.

    Each site has a status. Currently only "ignore" and "warning". make sense. The rest will hide the site from the panel the same way as "ignore" does, but are there for future use. "Warning" serves as a reminder for when you have warned the admin of the remote site to remove the reposted text.

    In the Settings page you can set a bigger Google Search calls limit (not recommended), remove/add excluded websites and set a minimum score for the found sites.

    1. Upload wp-kradeno to the /wp-content/plugins/ folder
    2. Active the from the 'Plugins' page in WordPress
    3. Open the WP Kradeno Reports page and start a re-post check
    4. When it's finished, reload the Reports page

    Why not make the search for repost run each time I open the admin panel?

    The Google search of 10 sentanses for hundreds of blog posts is quite heavy and time consuming. If it were run when you opened your blog, when it would be almost impossible to use. (by you. Running the script does not affect other visitors)

    Why not make it run on a server?

    I'm working on that.

    Why not make it as a cron job?

    In the next version.

    The plugin found some sites. Can I sue?

    Are you american? No, the plugin makes an assumtions based on several common sentanses. A similar technique is used in the music industry to find similar songs (damn YouTube). That is how the sites get rated. A higher score may mean a repost, but also that both of you quoted someone or that you have the same wordchoice.

    How do I make them remove my post from their website?

    Find the author/admin email and write them a polite message. If that doesn't work, write an angry one and CC the hosting company. Make sure you give links you both posts and to your license page. Often that won't work as well, but that's a human problem, not a software one.

    I don't have a license page.

    Then anyone can quote, copy, repost and steal you content. If you don't care, plugin is not for you. I think that it's always good to add one and to make it as little restrictive as possible. I recommend Creative Commons Attribution-Share Alike http://creativecommons.org/licenses/by-sa/2.5/

    I start the test, but nothing happens even after 10 mins.

    Please run open this page "http://your-blog-location/wp-content/plugins/wp-kradeno/wpkr-search.php", save it as a file and send it to me (yurukov at gmail.com) I'll look into it. Although this plugin should not interfere with any other plugins, you never know. Often heavily customized WPs (like that of my blog) do not behave as the official version.

    A reported problem may be the configuration of php on your server or the blog. Since the searching script runs for quite a while, it uses a lot of memory, so if you have a problem, try increasing the momory limits in php.ini and wp-settings.

    How can I use this on sites other than blogs and on other CMS-s?

    You could copy my code (with CC) and use it on your site. 90% of it is in the functions in wpkr-search.php. The rest is extraxting the text of the articles/sites.

    What does "Kradeno" means?

    "Stollen" in Bulgarian.

    1. wp-kradeno screenshot 1

      Some results

    2. wp-kradeno screenshot 2

      Alert in the Dashboard

    3. wp-kradeno screenshot 3

      Settings panel


    • Fixes in translation and views
    • Added "ignore posts" option
    • Added option to check posts only in the past 3 months
    • Added a settings when to alert on the dashboard that reposts should be checked


    • Important security fix (Thanks to Jul@Twitter)


    • Mostly bug fixes


    • Removed the need of a cron job
    • Added a loading bar style re-post check with stats


    • Searching script
    • Admin panel
    • Report page
    • Dashboard alert
    Posted: 6 years ago #
  2. Are you sure that the plugin works well? Usually these attacks don't use the same IP address... They just use a bot net with thousands of remote-controlled PCs with different IPs.

    Posted: 6 years ago #
  3. strings28

    I'm not sure the plugin works well, I'd have to look and see what I could see regarding the IP addresses.

    Posted: 6 years ago #
  4. hanok

    Add the Wave Element to your blog so visitors can see and interact with the wave on your site. This is an easy way to take advantage of the collaborat

    A simple way to add the Wave Element to your site so visitors can see and interact with the wave on your blog. Based on http://www.google.com/webelements/wave/


    • WAVE: The Wave's ID you want to show. You will find it in the adress bar after create a new wave.

    • WIDTH: Width in pixels of the element (default value is 300).

    • HEIGHT: Height in pixels of the element (default value is 500).

    • HEADER: Show/Hide header [0 = false / 1 = true].

    • TOOLBAR: Show/Hide toolbar [0 = false / 1 = true].

    • FOOTER: Show/Hide footer [0 = false / 1 = true].

    How to use:

    1.- Use the short code to add the element in your posts and pages:

    [gwe wave="WAVEID" width="640" height="500" header="1" toolbar="1" footer="1"]

    2.- Include the element anywhere in your theme calling the function:

    <?php google_wave_element($wave, $width, $height, $header, $toolbar, $footer); ?>

    3.- Use the widget

    1. Upload the entire google-wave-element folder to your wp-content/plugins/ directory.

    2. Activate the plugin through the 'Plugins' menu in WordPress.

    3. Visit https://wave.google.com/ and create o select the wave you want to share.

      You can use the full path or search the Wave ID (9 digits). For example:

      Complete URL: https://wave.google.com/wave/?pli=1#restored:wave:googlewave.com!w%252BWqOFJU8OA

      Wave ID: WqOFJU8OA

      Ignore the point plus number after this ID if exists (googlewave.com!w%252BWqOFJU8OA.2)

    1. google-wave-element screenshot 1

      Google Wave Element


    • Changed the style of the container div to "overflow: hidden".


    • Initial release.
    Posted: 6 years ago #

RSS feed for this topic

Topic Closed

This topic has been closed to new replies.

  • Rating

    5 Votes
  • Status

    This is plugin territory