ivovic
Forum Replies Created
-
Forum: Fixing WordPress
In reply to: is this some new spam attack?Here’s the thing: I’m not entirely convinced that this paticular attack involves changing any of WordPress’s PHP files directly
I stopped reading here… he was right, I’ve got better things to do.
there appears to be a place pushing a download of “SEO customized wordpress” .. not a theme mind you, but a hack (which probably includes all kinds of back doors)
anyway, it spams itself on YOUR blog, which is definitely SEO customization, but for THEM not you.
OP should consider installing again – this time, a fresh copy downloaded from wordpress.org.
Also, the default document for your site needs to be set to include index.php (but deal with that after you’ve installed a fresh copy of wordpress).
Forum: Fixing WordPress
In reply to: Store your images?sorry, I don’t like living on the edge myself… real links or I aint going 😉
too many javascript-ridden rickrolls in my time 😀
Forum: Fixing WordPress
In reply to: Store your images?you could have just risked it and put the link in anyway.
live on the edge.
Forum: Fixing WordPress
In reply to: is this some new spam attack?And ffs don’t waste your own time replying just to try to bitch me out.
Well actually, I did offer you the only course of action likely to lead to a solution.
Yeah, if I had lots of time on my hands, I could wipe every single file as you suggest, but I thought maybe someone here would be able to help me narrow things down a bit so I could maybe focus on certain files and approach this in an efficient…
It’s far more time-efficient and effective to stamp out your problem, than it is to waffle around and squawk about alternatives which do not exist.
Immediately after doing the upgrade, I changed my user account password in WordPress and also my FTP/SSH password. But I repeat myself yet again. Shortly after doing this, the same spam-attack was made yet again.
let me see if I can be ultra-specific for you, since now you’re the one having trouble reading what’s been written for you..
you didn’t get rid of the back door they left for themselves, therefore they were able to enter at their leisure
If you don’t get rid of EVERYTHING in your hosting space, how will you know that they haven’t simply added some code to any of the php files you have uploaded there?
Do you want to read them all? I sure as feh don’t.
rather than a hack-and-slash one
I told you to nuke it from orbit… you’re the one hell bent on hacking and slashing and ignoring the only effective advice you’re going to get.
Want help? there it is (again)… don’t like it? not what you want to hear?… well, I can’t tell you how deeply upset that’s going to make me.
it’s nice that you’re experimenting.
do you have PHP and MySQL installed on your home pc? If not, maybe you need to do a little more research on running your own server at home.
start here: http://www.apachefriends.org/en/xampp.html
Forum: Fixing WordPress
In reply to: Subtitle before title…supertitle? heh.
regardless of what it’s called, you can do it with custom fields
http://codex.wordpress.org/Using_Custom_FieldsForum: Developing with WordPress
In reply to: What is comment_karma ?think of it as a plugin waiting to happen.
Forum: Plugins
In reply to: How do I add non WP code?I think it would be absolutely outstanding for humanity, if people would blog for more than two minutes before flooding their site with advertising.
My post here might be a little different if 90% of your page wasn’t already covered with ads.
Forum: Fixing WordPress
In reply to: is this some new spam attack?You seem hell bent on people dutifully taking in the details of your post.
Being as studious as you are, you must absolutely be kicking yourself at your own laziness and arrogance which allowed you the delusion that somehow security updates weren’t necessary for you.
God that must really hurt right now.
(by the way, I read about that in your original post)
I’m not sure what you’d have us do for you now, though. If you happen to invent a time machine let us know. I’ll be sure to read that post in intimate detail.
In the mean time, unless you’re busy wiping *everything* from your hosting space and reloading fresh copies of (again) *everything* including wordpress, themes and plugins, may I suggest you start there?
Leave no file behind… but do backup any media contained in your posts.
Forum: Everything else WordPress
In reply to: How much “space”?well, your host’s website would be a good place to start. I mean, you have an account at host x… you signed up for it, presumably, so you should be able to find the amount you’re paying on a list of all the plans they have on offer.
that’ll tell you how much space you have available.
you can burn a hundred megabytes pretty easily, but I can think of a number of cases where you might have even less than that available, so it does pay to find out.
chances are you’re going to be very comfortable, but that’s no reason not to know for sure.
Forum: Everything else WordPress
In reply to: How much “space”?well, depending on your definitin of lots, it could be a concern.
your hosting plan should make it very clear how much space you have available to you. WordPress doesn’t require very much at all, and neither do the small pics you’re using, but that doesn’t mean anything without having some idea of how much is available to you.
the best way to look at this is to work out how long you’ve been blogging, and then see how much space all the pictures you’ve currently posted are taking up. If you have them on your hard drive, this’ll be relatively easy.
from that you can work out how long you can keep blogging at your current rate of consumption until you run out of whatever’s been allocated for you.
… or we can give you a comfort estimate based on your hosting plan details. (I mean the breakdown of what you get, don’t do something like post your whole welcome email with your password or anything).
Forum: Plugins
In reply to: Log Users IP address when they registercan I suggest you employ a captcha plugin on your registration page? I know its a pain, but at least its only once, at registration time.
that’ll do you much better in the long run than stuffing your htaccess files with ip bans. Spambots are good at getting new IPs.
Forum: Fixing WordPress
In reply to: index.php won’t load automaticallymaybe they were put off by the WP MASSIV line.
have you tried just deleting your htaccess file and letting wordpress re-create it?
it may have something to do with your permalink structure, which looks to be %postname% only. consider adding some static text to that like %postname%.htm or /doc/%postname% or something.
also check your blog addresses in your options/settings, whatever it is, you’re being stuck in a redirection loop and nobody is in a better position to find out why, than you.
Forum: Fixing WordPress
In reply to: Removing blogroll from sidebarall I can suggest is to look a little bit harder… if the above keywords aren’t working for you try looking for the word ‘bookmarks’ in the function name.