Comments for RimuHosting Blog

Comment on Finding Exploits and Trojan php hacks on a website by Identifying exploits and exploited websites | RimuHosting Blog

Identifying exploits and exploited websites | RimuHosting Blog — Tue, 16 Apr 2013 02:59:45 +0000

[...] have made posts before regarding how to find exploits, and what to do about those previously, however it has come to my attention that some people are [...]

Comment on Installing Oracle RDBMS Server by Glenn Enright

Glenn Enright — Thu, 28 Mar 2013 02:26:15 +0000

Under centos6 some of the following things may be useful...

* modify the /dev/shm mount in /etc/fstab with type shmfs instead of type none and remount that
* added a /etc/hosts entry for 127.0.0.1 oralinux
* run "dbus-uuidgen > /var/lib/dbus/machine-id" so firefox will start under vnc

Comment on Finding spam sending PHP scripts on your server by Ein vhost verschkickt Spam mails…aber welcher nur? | exdc

Ein vhost verschkickt Spam mails…aber welcher nur? | exdc — Thu, 31 Jan 2013 15:44:48 +0000

[...] http://blog.rimuhosting.com/2012/09/20/finding-spam-sending-scripts-on-your-server [...]

Comment on WordPress mass update script 3.4.2 by Liz Quilty

Liz Quilty — Fri, 25 Jan 2013 22:16:30 +0000

Cheers, i have been working on a new version which polls the site for newer wordpress versions thanks to other contributions, Currently im on vacation for another week, hence why its not been done (sorry!)

Comment on WordPress mass update script 3.4.2 by Andrew Pam

Andrew Pam — Fri, 25 Jan 2013 12:12:47 +0000

Here is a patch to fix some minor issues and spelling errors, and make it work with the current version of WordPress (3.5) which has a shorter version number:


--- wordpress-upgrade.sh        2012-09-09 21:42:08.000000000 +0000
+++ /usr/local/sbin/wordpress-upgrade.sh        2013-01-23 06:28:12.000000000 +0000
@@ -9,7 +9,7 @@
 # do not set it to be / because then it will also find your 'backups' and possibly overwrite them
 FINDDIR=/var/www
 # This is the version, change the version if a later release is released
-CURRENT_VER="3.4.2"
+CURRENT_VER="3.5"
 CURRENT_MUVER="2.9.2"
 
 if [ $(whoami) != "root" ]
@@ -26,21 +26,21 @@
        wp_root=$(echo $file | sed s@wp-includes/version.php@@)
        wpmu=$(grep wpmu_version ${wp_root}wp-includes/version.php)
        if [ "${wpmu}" == "" ]; then
-               thisis="Standerd Wordpress";
+               thisis="Standard Wordpress";
                WPCURRENT_VER=$CURRENT_VER
                WP_URL=http://wordpress.org/latest.zip 
-               your_ver=$(grep wp_version "$file" |grep -v global |cut -c16-20)
+               your_ver=$(grep wp_version "$file" |grep -v global |cut -d\' -f2)
        else
                thisis="Wordpress MultiUser - you should have upgraded this long back to normal wordpress!";
                WPCURRENT_VER=$CURRENT_MUVER
                WP_URL=http://mu.wordpress.org/latest.zip 
-               your_ver=$(grep wpmu_version "$file" |grep -v global |cut -c18-23)
+               your_ver=$(grep wpmu_version "$file" |grep -v global |cut -d\' -f2)
        fi
        if [ ${your_ver} !=  ${WPCURRENT_VER} ];then
-               echo "You have version $your_ver ${thisis} located at $wp_root that needs updateing to ${WPCURRENT_VER}"
+               echo "You have version $your_ver ${thisis} located at $wp_root that needs updating to ${WPCURRENT_VER}"
                echo -n "Would you like me to upgrade it? [y/N] "
                read yn
-               if [ $yn == "y" ];then
+               if [ "$yn" == "y" ];then
                        echo "Upgrading $wp_root"
                        mkdir -p /tmp/wpupgrade
                        cd /tmp/wpupgrade

Comment on PCI compliance – a basic HOWTO by Bill McGonigle

Bill McGonigle — Thu, 24 Jan 2013 02:08:10 +0000

Thanks for this, I found the guide generally helpful.

One issue, though:
smtpd_tls_mandatory_ciphers = medium, high

is invalid and will cause postfix (at least 2.3 in RHEL5) to fall back to EXPORT. Set either:

smtpd_tls_mandatory_ciphers = medium

smtpd_tls_mandatory_ciphers = high

probably the latter for PCI compliance requirements.

Comment on WordPress install script by Anon

Anon — Tue, 22 Jan 2013 23:17:00 +0000

Works well on Debian Squeeze.
Thanks for making my life easier!

Comment on WordPress mass update script 3.4.1 by Bash Script to Upgrade Multiple WordPress Sites

Bash Script to Upgrade Multiple WordPress Sites — Fri, 18 Jan 2013 13:08:09 +0000

[...] found Liz Quilty’s handy WordPress mass update script 3.4.1, but wanted to refactor the script to use functions, curl, and tar (as well as remove support for [...]

Comment on Setup mail hosting on Debian Squeeze and other distros using postfixadmin by ruhan

ruhan — Thu, 17 Jan 2013 12:58:10 +0000

@Juan

Thanks for helping to solve this problem
and now my server running well with vacation include using postfixadmin

Comment on Building database clusters with MySQL by Sharif Khan

Sharif Khan — Tue, 15 Jan 2013 16:03:28 +0000

Hi Elton,

Sorry I misunderstood your blog. Mysql works on the SQL nodes (well node in my case as I have just the one). How can I check that each data node has successfully got a copy of any database changes I make? (just for my own piece of mind).

Thanks

Sharif