Month: August 2010

  • Exploited VPS? phpmyadmin?

    Currently we are being inundated with scans and exploits looking for new machines to take over, most of these are using insecure phpmyadmin installs. If you are unsure if your box has been hacked then the things to look for are similar to this…

  • Old versions of PHPMyAdmin and Automated Scanning

    It has come to our attention that we have had a decent number of ¬†alerts about machines scanning on our networks in the last day. All of them have been running hacks from /tmp named things like /tmp/dd_ssh etc. These files are owned and run by the apache user, and on further investigation all put […]

  • WordPress Mass Upgrade Script 3.0.1

    This script will search /var/www (changeable in a variable) for any wordpress installs and make sure its upgraded to the latest version. It will run a backup to /root/wp_upgrade/ of all files and database before doing anything with the site in case of major catastrophe. It pays to check each site after the upgrade to […]