-
WordPress mass update script 3.04 – Urgent
From the guys at wordpress We’ve fixed a pretty critical vulnerability in WordPress’ core HTML sanitation library, and because this library is used lots of places it’s important that everyone update as soon as possible. I realize an update during the holidays is no fun, but this one is worth putting down the eggnog for.…
-
Older versions of debian and updates
-
Exploited VPS? phpmyadmin?
-
WordPress Mass Upgrade Script 3.0.1
This script will search /var/www (changeable in a variable) for any wordpress installs and make sure its upgraded to the latest version. It will run a backup to /root/wp_upgrade/ of all files and database before doing anything with the site in case of major catastrophe. It pays to check each site after the upgrade to…
-
Easy Peasy Linux Firewalling – iptables
-
Keeping things going over the holiday season
-
Unsure who is sending spam? Try this
Anyone who has hosted peoples websites before, has had either a blog hacked, or some guy thinking he is going to send mass mailouts using PHP or similar happen. Its extremely hard to trackdown and deal with, and yet it can get your server listed at spam service denying legitimate email from getting through. This…
-
Does your VPS have MD5 enabled for passwords?
We recently discovered that the way we install a VPS differs slightly from the usual CD install. This is not something we do specifically but something that can be improved on in the set-ups of CentOS5.3. When you install from a CD it automatically enables MD5 encryption in passwords (which should be the norm), however…
-
Safe rm prevents accidents! try it!
I found this the today http://www.safe-rm.org.nz/ , and having had the odd accident im most definitely going to be installing this on my own server! What is safe-rm? Safe-rm is a safety tool intended to prevent the accidental deletion of important files by replacing /bin/rm with a wrapper, which checks the given arguments against a…
-
nginx hacking using proxy
It sucks getting hacked Every now and then servers get hacked. Often because of an exploitable webapp, or because (most commonly) a weak, easily guessable password was used on a well known user account (like ‘root’ or ‘info’ or ‘test’). Once hackers gain access they often install some kind of malware. e.g. something that goes…
