running-is-funny
Forum Replies Created
-
Forum: Fixing WordPress
In reply to: Blog not showing upAre you hosted on Network Solutions? They’ve screwed up their database maintenance and now a bunch of us can’t access our WordPress blogs. It has been hit or miss for four days now.
Forum: Fixing WordPress
In reply to: SQL attack on wpress 2.9.2I’ve spent days cleaning up after the siteurl hack and discovered I also fell victim to the globalwat footer hack.
http://wordpress.org/support/topic/382005?replies=4
Does anyone know if these two attacks are related?
Forum: Fixing WordPress
In reply to: SQL attack on wpress 2.9.2Just a thought: If insufficiently restrictive permissions codes were to blame, wouldn’t a lot more blogs be infected? The vast majority use the default values. Today was the first time I’ve even looked at a permissions code.
We’ve made a lot of progress since dugbug’s original post two days ago, but I’m still not confident we’ve plugged the hole completely.
Forum: Fixing WordPress
In reply to: SQL attack on wpress 2.9.2I asked sucuri specifically about wp-config.php and he wrote, “You have to change it to be rw-rw—- (meaning no permission to the others).”
But the question may be moot. I unchecked all permissions for others, but it reverts to “read” when I check it again later.
So it may be good advice to change public_html permissions to 750, but it leads me to the obvious question: How do I do that?
Forum: Fixing WordPress
In reply to: SQL attack on wpress 2.9.2Disregard my previous post, I found the chmod command and took care of it. I’ve now successfully implemented every bit of advice, so we’ll just see in the morning. Thanks, everyone! Would have been completely at sea without you.
Forum: Fixing WordPress
In reply to: SQL attack on wpress 2.9.2My blog was reinfected today (this time it was mainnetsoll.com/grep/), but I was able to restore it within minutes. I’ve changed all passwords and followed all the good advice, but I’m a writer and not a programmer or a security specialist, so forgive me if I appear dense.
Having done some research I understand the concept of 750 vs. 755, but the directory info when I use my FTP program shows wp-config.php permissions as rw- rw- r–.
I don’t want to screw around with something I know little about, so do I change the last “read,” the middle “write,” or is it OK?
Forum: Fixing WordPress
In reply to: Holy Moly! One day it was fine…Your site was infected by malware that has been going around. Check this article.
Forum: Fixing WordPress
In reply to: SQL attack on wpress 2.9.2This does not bode well. I’ve got one hacked blog, and a reader notified me that another blog – also WordPress and hosted on NetSol – gave him a malware alert, despite the fact that it shows no evidence of a hack and still allows me access.
It has to be a database or host problem, so screwing around with WordPress is a waste of time – except to eliminate that “siteurl” problem. I removed all my files through FTP yesterday and did a clean reinstall of WordPress and got nothing for my trouble except an internal server error.
If others have had a different experience, I’d like to hear about it, but messing with WordPress files or the content of your site seems to have no effect.
Forum: Fixing WordPress
In reply to: SQL attack on wpress 2.9.2I’ve used burkestar’s fix to get my site (http://www.runningisfunny.com) at least looking normal again, but although I can finally get to the WP log-in page, I still can’t get it to accept a password – despite resetting it in phpMyAdmin and getting a “lost password” e-mailed to me.
I don’t even want to think about future hacks until I can at least get to my WordPress dashboard to let my readers know what’s up. Any suggestions?
Forum: Fixing WordPress
In reply to: What has happen to my blog? It was fine yesterdayThis thread has some important answers (but not all).
Forum: Themes and Templates
In reply to: Where did my theme go???This thread at least has a solution to get your site looking normal again, but it’s not a defense against future hacks.
Forum: Fixing WordPress
In reply to: What has happen to my blog? It was fine yesterdayI didn’t want to start a whole new thread, but I have the same problem at http://www.runningisfunny.com and I notice a lot of other people have it. Deleting the theme and plug-ins just led to internal server errors or a blank page. The log-in php link (under the “Meta” menu) has been deleted, taking you right back to the home page if you click it. Going directly to the log-in page just leads you to a non-functional text version.
I removed all files through FTP and reinstalled a clean version of WordPress, but despite careful work I still got the internal server error. When I restored the theme folder (I use HeatMap) my site at least returned to the state you currently see.
I’m no expert, but my database shows no obvious malicious code, and no users other than myself. Network Solutions will restore my database to its condition earlier in the week. Hopefully that will eliminate the problem, which just showed up this morning.
This is the first time I’ve had a problem that even a reinstall didn’t fix, so I’m worried that it’s a particularly insidious database hack or at least a very strange bug.
I’ll be monitoring these boards, but if a solution is found I suggest giving it the widest dissemination possible. I think a lot more people are going to run into this one.