If you use any pre-packaged software, it always pays to sign up to their mailing list or security advisory list. This means if any exploits or updates happen, you are on the ball and up to date. Today we had an email from a customer whos front page had been replaced. I noticed it was… Continue reading Has your VPS been hacked?
Heres a little Shell Script I wrote which, if run, will check your entire server for insecure versions of wordpress. If it finds any, it will give you the option to upgrade. If you say yes it will backup the existing sites file and database in /root/wp_upgrade and upgrade it. Please Note: This has not… Continue reading WordPress Upgrade Script
WordPress is a great application. e.g. we are using it here for this brand new blog. The irony is that the first post on this blog is a security alert on a WordPress exploit. There is a good summary of the issue at http://it.slashdot.org/story/09/08/12/1353211/WordPress-Exploit-Allows-Admin-Password-Reset Are you running WordPress? We do not install it on accounts… Continue reading Is your WordPress install exploitable?