Upgrade Wordpress NOW

Collapse
X
 
  • Time
  • Show
Clear All
new posts
  • kektex
    Confirmed User
    • Mar 2005
    • 1813

    #1

    Upgrade Wordpress NOW

    For those of you who have been putting off upgrading your blogs, now is the time to do it.
    There's a wp worm doing the rounds inserting spam links and stuff.Apparently it's pretty efficient and the number of compromised WP installs is growing at an alarming rate.

    http://lorelle.wordpress.com/2009/09...-under-attack/

    http://www.journeyetc.com/uncategori...-rss-problems/
    exgfmovies.com, exgfclips.com, datesx.com, gayboards.com and more!
  • fris
    Too lazy to set a custom title
    • Aug 2002
    • 55679

    #2
    those hackers!
    Since 1999: 69 Adult Industry awards for Best Hosting Company and professional excellence.

    Comment

    • kektex
      Confirmed User
      • Mar 2005
      • 1813

      #3
      Fris, since you are the wp ninja I've been meaning to ask you something:
      Is there any way to upgrade several blogs on various hosts automatically?

      I've been thinking of installing WP Mu since I mostly use the same plugins on all my blogs and it might be easier to just use a single wpmu installation instead of going in and updating each one individually.

      Is this a good idea?
      exgfmovies.com, exgfclips.com, datesx.com, gayboards.com and more!

      Comment

      • Joshua G
        dumb libs love censorship
        • Jul 2008
        • 8198

        #4
        whats the point of updating if...

        Reports are that this attack impacts ALL versions of WordPress up to 2.8.3 and 2.8.4, the most recent release.

        Comment

        • Iron Fist
          Too lazy to set a custom title
          • Dec 2006
          • 23400

          #5
          I think we can insert a timeline pic here....

          i like waffles

          Comment

          • pornocruto
            Confirmed User
            • Jan 2009
            • 1308

            #6
            Originally posted by sharphead
            I think we can insert a timeline pic here....


            Promote EXTREME porn
            Earn EXTREME $$$$
            Only @ cash.pornocruto.es

            Comment

            • TheDA
              Confirmed User
              • May 2006
              • 4665

              #7
              Originally posted by kektex
              For those of you who have been putting off upgrading your blogs, now is the time to do it.
              There's a wp worm doing the rounds inserting spam links and stuff.Apparently it's pretty efficient and the number of compromised WP installs is growing at an alarming rate.

              http://lorelle.wordpress.com/2009/09...-under-attack/

              http://www.journeyetc.com/uncategori...-rss-problems/
              What are you supposed to upgrade to? That first link has people saying that 2.8.4 got exploited too!
              Last edited by TheDA; 09-08-2009, 01:07 AM.
              Sharleen Spiteri - 1989 - In The Ass

              Comment

              • Voodoo
                ♥ ♦ ♣ ♠
                • Sep 2002
                • 10600

                #8
                Why not just change your version number to a non-existent one, and move your admin directory?

                "I'm selflessly supporting the common good, but only coincidentally looking out for No.1."

                Comment

                • fris
                  Too lazy to set a custom title
                  • Aug 2002
                  • 55679

                  #9
                  remove_action('wp_head', 'wp_generator');
                  Since 1999: 69 Adult Industry awards for Best Hosting Company and professional excellence.

                  Comment

                  • kektex
                    Confirmed User
                    • Mar 2005
                    • 1813

                    #10
                    Originally posted by TheDA
                    What are you supposed to upgrade to? That first link has people saying that 2.8.4 got exploited too!
                    Hehe that obviously wasn't there when I posted this. When I read that site, it said that only versions prior to 2.8.4 were vulnerable.

                    This sucks.
                    exgfmovies.com, exgfclips.com, datesx.com, gayboards.com and more!

                    Comment

                    • CaptainHowdy
                      Too lazy to set a custom title
                      • Dec 2004
                      • 94735

                      #11
                      Damm ........

                      Comment

                      • The Duck
                        Adult Content Provider
                        • May 2005
                        • 18243

                        #12
                        htaccess password protect your admin area.
                        Skype Horusmaia
                        ICQ 41555245
                        Email [email protected]

                        Comment

                        • Screwed Up
                          Confirmed User
                          • Aug 2002
                          • 1120

                          #13
                          Originally posted by The Duck
                          htaccess password protect your admin area.
                          What he said. And disallow any ip but your own...
                          Promote these REAL amateur sites with Exclusive content:

                          African Casting | Real Africans | Latina Fuck Tour | African Lesbians

                          African Bucks Contact: support @ africanbucks.com

                          Comment

                          • fris
                            Too lazy to set a custom title
                            • Aug 2002
                            • 55679

                            #14
                            ya best way is to use htaccess in your admin area

                            http://www.wptavern.com/top-5-wordpr...ly-dont-follow
                            Since 1999: 69 Adult Industry awards for Best Hosting Company and professional excellence.

                            Comment

                            • evildick

                              #15
                              Originally posted by kektex
                              Hehe that obviously wasn't there when I posted this. When I read that site, it said that only versions prior to 2.8.4 were vulnerable.

                              This sucks.
                              There are people reporting that their 2.84 versions are being hacked with this, but it appears they are just people that had older versions that were already hacked, then they just upgraded over top of the hacked site (they may or may not have known it was hacked already), which was too late.

                              Comment

                              • Davy
                                Confirmed User
                                • Apr 2006
                                • 4323

                                #16
                                Show me a link to a hacked wordpress site or it didn't happen...
                                ---
                                ICQ 14-76-98 <-- I don't use this at all

                                Comment

                                • ~Ray
                                  visit hardlinks.org
                                  • Jun 2003
                                  • 18361

                                  #17
                                  just turn off the 777 settings after you finish editing your blog. Then nothing can be modified. Lots of peeps forget to do that.
                                  Adult Backlinks for Adult Websites - Testimonials Available

                                  Comment

                                  • VforVendetta
                                    Confirmed User
                                    • Mar 2006
                                    • 2525

                                    #18
                                    Thanks for the advise
                                    Free the world

                                    Comment

                                    • Tjeezers
                                      Webmaster
                                      • Mar 2007
                                      • 16602

                                      #19
                                      Originally posted by fris
                                      ya best way is to use htaccess in your admin area

                                      http://www.wptavern.com/top-5-wordpr...ly-dont-follow
                                      I was one of the dumb people who dont give a jerk about security
                                      Until i got flipped years ago by it..You need to feel to believe i think.

                                      Stop acting like your blind, and follow those 5 simple steps to disappear from the eye of the bad one. You dont want your shit to be hacked I am SURE!!!!!!!!!!


                                      DO THOSE TIPS!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!

                                      Get 43 FREE Backlinks when joining SWAG Live - Click my banner to get the links!

                                      Comment

                                      • Tjeezers
                                        Webmaster
                                        • Mar 2007
                                        • 16602

                                        #20
                                        PS i Use the Admin Redirect
                                        I have asked many to access it, they only see my main site
                                        Their IP is not allowed to come even close to what is called ADMIN

                                        This is one of the best basic " Safe your own ass " things you can do
                                        Takes you 5 minutes to upload one file to your wp-admins


                                        PS i thank GFY for making me aware of those issues more. Turning a blind eye here is not so easy when you want to make some money. Props to Fris!

                                        Get 43 FREE Backlinks when joining SWAG Live - Click my banner to get the links!

                                        Comment

                                        • ilbb
                                          Confirmed User
                                          • May 2005
                                          • 3025

                                          #21
                                          I've script that checks CRC of my PHP files every 15minutes.

                                          Comment

                                          • tranza
                                            ICQ: 197-556-237
                                            • Jun 2003
                                            • 57559

                                            #22
                                            Originally posted by sharphead
                                            I think we can insert a timeline pic here....

                                            I always laugh when I see this...
                                            I'm just a newbie.

                                            Comment

                                            • NoWhErE
                                              Too lazy to set a custom title
                                              • Sep 2005
                                              • 10583

                                              #23
                                              I suck at HTACCESS, could someone post the code for the admin area?
                                              skype: lordofthecameltoe

                                              Comment

                                              • Sunny
                                                Confirmed User
                                                • Feb 2007
                                                • 1981

                                                #24
                                                but please be careful!! first back up your data and then upgrade your wp script
                                                >>>>>>>>>>Offering Quality PR Hardlinks<<<<<<<<<<

                                                1- 50 PR Homepage Adult Links
                                                2- Lifetime Featured & Regular Listings in 25 PR Adult Directories
                                                3- Lifetime Unique, Quality & Copyscape Passed Blogpostings in 25 PR Adult Blogs


                                                Contact Me!!!
                                                ICQ: 199-024-695

                                                Comment

                                                Working...