Title: davev's Replies | WordPress.org

---

# davev

  [  ](https://wordpress.org/support/users/davev/)

 *   [Profile](https://wordpress.org/support/users/davev/)
 *   [Topics Started](https://wordpress.org/support/users/davev/topics/)
 *   [Replies Created](https://wordpress.org/support/users/davev/replies/)
 *   [Reviews Written](https://wordpress.org/support/users/davev/reviews/)
 *   [Topics Replied To](https://wordpress.org/support/users/davev/replied-to/)
 *   [Engagements](https://wordpress.org/support/users/davev/engagements/)
 *   [Favorites](https://wordpress.org/support/users/davev/favorites/)

 Search replies:

## Forum Replies Created

Viewing 7 replies - 1 through 7 (of 7 total)

 *   Forum: [Fixing WordPress](https://wordpress.org/support/forum/how-to-and-troubleshooting/)
   
   In reply to: [WordPress Hacked](https://wordpress.org/support/topic/wordpress-hacked/)
 *  Thread Starter [davev](https://wordpress.org/support/users/davev/)
 * (@davev)
 * [20 years, 3 months ago](https://wordpress.org/support/topic/wordpress-hacked/page/2/#post-332241)
 * Update: It appears that its not someone targetting my sites at all. There appear
   to be 000,000s ??of cases of it.
 * Its not worpress specific though.
 *   Forum: [Fixing WordPress](https://wordpress.org/support/forum/how-to-and-troubleshooting/)
   
   In reply to: [WordPress Hacked](https://wordpress.org/support/topic/wordpress-hacked/)
 *  Thread Starter [davev](https://wordpress.org/support/users/davev/)
 * (@davev)
 * [20 years, 3 months ago](https://wordpress.org/support/topic/wordpress-hacked/#post-332239)
 * Fraid not, after fixing all the permissions they still managed to get their code
   in there.
 * 🙁
 *   Forum: [Fixing WordPress](https://wordpress.org/support/forum/how-to-and-troubleshooting/)
   
   In reply to: [WordPress Hacked](https://wordpress.org/support/topic/wordpress-hacked/)
 *  Thread Starter [davev](https://wordpress.org/support/users/davev/)
 * (@davev)
 * [20 years, 3 months ago](https://wordpress.org/support/topic/wordpress-hacked/#post-331922)
 * Ok, that appears to have worked. Thanks everyone for your contributions!
 *   Forum: [Fixing WordPress](https://wordpress.org/support/forum/how-to-and-troubleshooting/)
   
   In reply to: [WordPress Hacked](https://wordpress.org/support/topic/wordpress-hacked/)
 *  Thread Starter [davev](https://wordpress.org/support/users/davev/)
 * (@davev)
 * [20 years, 3 months ago](https://wordpress.org/support/topic/wordpress-hacked/#post-331893)
 * ok, let me give that a try, thanks for your help
 *   Forum: [Fixing WordPress](https://wordpress.org/support/forum/how-to-and-troubleshooting/)
   
   In reply to: [WordPress Hacked](https://wordpress.org/support/topic/wordpress-hacked/)
 *  Thread Starter [davev](https://wordpress.org/support/users/davev/)
 * (@davev)
 * [20 years, 3 months ago](https://wordpress.org/support/topic/wordpress-hacked/#post-331869)
 * [http://ukwebsolutionsdirect.co.uk/](http://ukwebsolutionsdirect.co.uk/)
 * It was working ok, before I changed the permissions (there were all different
   permissions set across the different files/ folders).
 *   Forum: [Fixing WordPress](https://wordpress.org/support/forum/how-to-and-troubleshooting/)
   
   In reply to: [WordPress Hacked](https://wordpress.org/support/topic/wordpress-hacked/)
 *  Thread Starter [davev](https://wordpress.org/support/users/davev/)
 * (@davev)
 * [20 years, 3 months ago](https://wordpress.org/support/topic/wordpress-hacked/#post-331848)
 * I have just 644 everything and now its messed.
 * I get this error message:
    Warning: main(/home/xxx/public_html/wp-includes/wp-
   db.php): failed to open stream: Permission denied in /home/xxx/public_html/wp-
   settings.php on line 59
 * Fatal error: main(): Failed opening required ‘xxxx/public_html/wp-includes/wp-
   db.php’ (include_path=’.:/usr/lib/php:/usr/local/lib/php’) in /home/xxx/public_html/
   wp-settings.php on line 59
 * Any ideas?
 * I will be having words with my hosts on monday too anyway 🙂
 *   Forum: [Fixing WordPress](https://wordpress.org/support/forum/how-to-and-troubleshooting/)
   
   In reply to: [WordPress Hacked](https://wordpress.org/support/topic/wordpress-hacked/)
 *  Thread Starter [davev](https://wordpress.org/support/users/davev/)
 * (@davev)
 * [20 years, 3 months ago](https://wordpress.org/support/topic/wordpress-hacked/#post-331843)
 * 1. wordpress version would help
 * Ah, both are 1.5.2
 * 2. you used “sites”.. is wp running all all the sites, or some, all the same 
   versions, or not.
 * The 2 that I have noticed so far are 1.52
 * 3. what else is being used on the sites(s)
    No other cms or anything much.
 * —
 * if you are using the reccommended method of having theme files world-writable,
   youre inviting disaster. Thats very very insecure, regardless of what the answers
   to the above questions happen to be.
 * think about it : world-writable. it means exactly what it says. Ive gone on and
   on about this, “no-one” cares.
 * This could be the whole problem, I assumed that it wouldnt make a difference 
   leaving them 666 or similar – most people I spoke to said the same thing. Though
   I never understood why it could be ok – the file is writable (but not being a
   tech doesnt help really)
 * I am locking it all down 🙂
 * Thanks for the quick, useful tips & quality responses. I honestly didnt even 
   think anyone would bother answering.
 * I dont know what phpgedview is but if the other solutions dont solve the problem
   then Ill look into that.
 * Thanks again & Ill come back with an update.. any idea how I find the culprits
   now ?

Viewing 7 replies - 1 through 7 (of 7 total)