Comments on: New hacking attempt http://alexrabe.de/2008/02/18/new-hacking-attempt/ ALEX RABE | learning by doing... Wed, 08 Feb 2012 16:33:11 +0000 hourly 1 http://wordpress.org/?v=3.3.1 By: Jenny http://alexrabe.de/2008/02/18/new-hacking-attempt/#comment-5975 Jenny Sun, 02 Mar 2008 15:40:49 +0000 http://alexrabe.de/2008/02/18/new-hacking-attempt/#comment-5975 when I changed to thickbox it seems to work, but I am afraid something could have happend to my db. How can I check? Please send me an email and I will give you the address to my site. Thanks for your help, Jenny when I changed to thickbox it seems to work, but I am afraid something could have happend to my db. How can I check?

Please send me an email and I will give you the address to my site.

Thanks for your help,
Jenny

]]> By: alex.rabe http://alexrabe.de/2008/02/18/new-hacking-attempt/#comment-5971 alex.rabe Sat, 01 Mar 2008 16:22:20 +0000 http://alexrabe.de/2008/02/18/new-hacking-attempt/#comment-5971 @Jamas keep in your mind that I'm not free for failure, good luck... @Jenny Give me a link to your page @Jamas
keep in your mind that I’m not free for failure, good luck…

@Jenny
Give me a link to your page

]]> By: Jamas http://alexrabe.de/2008/02/18/new-hacking-attempt/#comment-5970 Jamas Sat, 01 Mar 2008 16:09:13 +0000 http://alexrabe.de/2008/02/18/new-hacking-attempt/#comment-5970 Hey Alex, Well so far NextGEN Gallery is holding up much better then WPPA to hack attempts. The site slsc.ca which I admin was hacked twice in the last week. The first time they managed to replace all the files in my active theme. Mostly my fault as I had the folder permissions and file permissions wide open on that page. However the second time they managed to insert a post into the site and replace the contents of several pages. I noticed that my stats show search hits for: 'allinurl: page_id album "photo"' which is a WPPA format for pages. They then managed to upload a .zip file into the uploads directory. The some how managed to unzip it which must then have given them access to the site. Still trying to sort out all the details. So I am going to try an experiment. Patch the site back up (clean copy of all wordpress files (just in case they managed to change anything). Remove WPPA and install NextGEN Gallery. The site slsc.ca now shows up on their hacking forum so will see if they managed to get in using NextGEN. I will let you know the results. Jamas Hey Alex,

Well so far NextGEN Gallery is holding up much better then WPPA to hack attempts. The site slsc.ca which I admin was hacked twice in the last week.

The first time they managed to replace all the files in my active theme. Mostly my fault as I had the folder permissions and file permissions wide open on that page.

However the second time they managed to insert a post into the site and replace the contents of several pages. I noticed that my stats show search hits for: ‘allinurl: page_id album “photo”‘ which is a WPPA format for pages. They then managed to upload a .zip file into the uploads directory. The some how managed to unzip it which must then have given them access to the site. Still trying to sort out all the details.

So I am going to try an experiment. Patch the site back up (clean copy of all wordpress files (just in case they managed to change anything). Remove WPPA and install NextGEN Gallery. The site slsc.ca now shows up on their hacking forum so will see if they managed to get in using NextGEN. I will let you know the results.

Jamas

]]>