View Single Post
Old 01-22-2013, 02:36 PM
greg8872 greg8872 is offline
LawnSite Senior Member
Join Date: Jan 2012
Location: Upper Arlington, Ohio
Posts: 296
Important Word Press reminder

Just a reminder, if you are using WordPress, make sure you at least once a month, if not once a week apply any updates to the core, plugins and/or themes.

Also, if you are not using a plugin or theme, not only deactivate it from the site, remove the files and folders from the server. In the root of your wordpress install, after every update look for "readme.html" and DELETE IT, it tells hackers what version you are running. (try it, go to if you have WP)

I just came across a WP site, that is version 3.2.1 (current is 3.5) that doesn't have any extra plugins or themes installed, yet it was hacked. How do I know what was installed? Part of the hack was a pretty powerful hack script that let me view all files on the account, which means if I wanted to, I could have also looked at database login and fully access the site's database, all from within the SINGLE hack file on the server.

This tool not only lets you read, but also lets you write anywhere that a regular script file can write to (if you are on a cPanel environment, the default is any file on your user account, INCLUDING email still sitting on the server.) And it does have a nice built in tool to find ALL writeable files and directories that it can.

So yes, it is easy to set up, just keep it cleaned and updated. If you have SSH access and know how to use it, right before you do any updates, run a command that will list any .php file modified since the last time you ran it. Look for anything you don't recognize and check it out!!!

Remember, there are sites out there that list what vulnerabilities are on each version of WP and the popular plugins and they know what to look for (ie, the readme.html I mentioned earlier).

And if you are hacked, remember, you have to check most everything on your account, not just where you found the hacked files.

Reply With Quote
Page generated in 0.04574 seconds with 8 queries