I got this from my referrer log this morning:
050311 06:06:23 /weblog/wp-login.php
050311 06:06:19 /weblog/wp-login.php
050311 06:06:01 /weblog/wp-login.php
050311 06:04:37 /wp-login.php
050311 06:04:27 /weblog/wp-login.php
050311 06:04:21 /weblog/wp-login.php
050311 06:04:16 /weblog/wp-login.php
050311 05:59:56 /weblog/wp-login.php
050311 05:59:38 /weblog/wp-login.php?action=lostpassword
050311 05:59:33 /weblog/wp-login.php
It wasn’t me nor anyone I know, that WP 1.5 install is mine and mine alone.
I was asleep at the time of the above.
I got 7 emails generated from WP to changed my password.
2 of them were “Passord Lost and Changed for admin”
The rest (5) were “Your New Password”
Whomever it was surfed into the login page and tried to login as “admin”.
Sure they changed my password, but they couldn’t get it … So I just had to go into phpmyadmin and reinstate my password.
But this then raises the question — Have any of y’all ever had this happen? I’ve never seen this on any blog installations of mine, that’s WP or MT or Blogger.
Is there a way to code the password change feature so that the system ignores it if it isn’t used … as many forums do?
In any case, it just bugged me that someone tried that and was able to cause me to do extra stuff just to get into my WP install.
It doesn’t make sense from my end, that someone would try this for a valid good reason. Attempting to login to my site as admin, and trying to get the password changed.
Maybe they hacked something up, I can’t tell yet. I don’t see that as a nice reason, but I know on someone elses end they might view it as “valid”.
So the value of going to a blog and attempting to change the admin password to login is … I don’t know.
I’m asking to see if this has happened to anyone else, kind of rambling, sorry! Not enough coffee yet today!
- The topic ‘Stranger accessing wp-login.php? action=lostpassword’ is closed to new replies.