Stpping the hackers

  • Resolved djcayenne

    (@djcayenne)


    17 years ago

    I’m in need of some top to bottom security updates. Somehow, hackers continue to mod my wp-blog-header.php file. It either crashes my site entirely, or I notice a long list of spam that shows up in the metadata when others link to the site (e.g. from Facebook, etc.). I have this file’s attributes set to 644 (and follow the recommendations of OMGITZREY in this post for the others: http://wordpress.org/support/topic/199164), I’m using the most recent WP version, etc.

    I’ll do whatever it takes to lock my blog down if someone can point to a detailed process to do so. Thanks.

Viewing 6 replies - 1 through 6 (of 6 total)
  • Thread Starter djcayenne

    (@djcayenne)

    17 years ago

    And now, since posting this, I’ve been hacked again. Replacing the wp-blog-header.php file does not fix the problem.

    http://babygotbooks.com

    esmi

    (@esmi)

    16 years, 12 months ago

    Try working through http://codex.wordpress.org/Hardening_WordPress.

    Have you contacted your hosting providers? The root problem may well be elsewhere on the server.

    whooami

    (@whooami)

    16 years, 12 months ago

    you seem to be having continuing issues?

    http://wordpress.org/support/topic/219562?replies=2

    From 5 months ago, you:

    I did have some hacking issues earlier in the week. Related?

    Im willing to help, and it sounds like you need some. Badly.

    Dreamhost (his host) suffers hacked sites, just like other hosts …

    Contact me off the forum djcayenne, at whoo (AT) village-idiot.org, if you need help getting sorted.

    Thread Starter djcayenne

    (@djcayenne)

    16 years, 12 months ago

    It has been an ongoing issue for months now. I just kept trying to make sure that I had my install bulletproof. I hadn’t thought that it might be an issue with Dreamhost. I’ll shoot you an e-mail shortly Whoo

    John H

    (@wpbloghost)

    16 years, 12 months ago

    You can try hardening your WordPress blog but keep in mind a few things.

    1. If the hacker is getting in through the server (your host), there’s nothing you can do about it.

    2. If they are already hacking into your system, it might be hard to clean out everything they’ve done. One of the first things a hacker will do (or should if that’s their trade) is make sure your blog is easily hackable for anyone else.

    Also, to go through line by line of your code to find all infected areas might be like searching for a needle in a haystack. If your site isn’t too big, you may consider a new install.

    SEO Egghead has a great Firewall plugin. Also, you can install the Event Viewer plugin to see when things change in your blog. There’s a way to lock it down, too, so no one can deactivate the plugin (do this through your hosting control panel). Might give you some insights to where the people are doing things.

    We also provide security services, however, nothing is ever full proof, especially if your site’s been hacked over and over again. Hopefully, it’s just some script sitting somewhere and not multiple hacks.

    Good luck.

    Thread Starter djcayenne

    (@djcayenne)

    16 years, 12 months ago

    The site is back up and running. So far I have:

    Checked users on the database – all good
    Change permissions for inactive users on WP dashboard
    Fresh install

    Everything is back and looking good

    Installed and exploit scanner: http://ocaoimh.ie/exploit-scanner/

    I am going to use that as a starting point for checking my themes and plugins etc… I am also re-checking file attributes

    Thanks for the help. Hopefully this will be the last time I write in with this issue.

Viewing 6 replies - 1 through 6 (of 6 total)

The topic ‘Stpping the hackers’ is closed to new replies.