Pagina 3 din 3 PrimulPrimul 123
Rezultate 21 la 24 din 24

Subiect: SEO Romania spart de tunisieni

  1. #21
    Avatarul lui neo
    neo
    neo este deconectat Membru SeoPedia
    Reputatie:
    36
    Data înscrierii
    13th August 2007
    Posturi
    289
    Putere Rep
    36


    1 out of 1 members found this post helpful.

    Implicit

    Vulnerabilitatea SQL este cea de aici - WordPress Trackback UTF-7 SQL Injection (Exploit)

    Rezolvarea este cea de aici: WordPress › Support » Website repeatedly hacked

    Step 1 – Login to your WordPress dashboard as an administrator and go to Appearance -> Widgets. In my case, the two widgets I was using had been moved to the Inactive Widget box and replaced with a Text Widget in the sidebar.

    Step 2 – Open the Text widget and click the Delete link on the bottom left. Once you’ve deleted it, reset your widgets to the way they were prior to the hack.

    Step 3 – Next go to settings -> Reading. Change your character encoding back to UTF-8. This will fix any lingering issues with your RSS feed and IE.

    Step 4 – Lastly, reset the Site Title & Tagline for your site. The location for this will vary based on your theme. For my site, I selected Appearance -> Themes and then clicked the Customize link for my theme.


    That will fix your site immediately. Clear out your cache and confirm that everything works.

    Now that your site is up and running, you will need to make it more secure so that this problem does not happen again.

    Step 1 – Change your passwords for your hosting service, WordPress, etc.

    Step 2 – Upgrade to the latest version of WordPress.

    Step 3 – If you have a backup of your site, do a restore to a version prior to the attack just for good measure.

    Step 4 – Login to your WordPress dashboard and install the plugin Better WP Security and resolve issues 1-19 on the dashboard. For item 20, you will need to enable/purchase SSL from your hosting provider. NOTE – some of the changes the plugin makes will break links or images on your website. You will need to go back and update all of them, but that is a small price to pay for having your site more secure. The easiest way to fix all of the links at once is to download an export of your blog’s content (Tools -> Export), open it in Notepad and do a find and replace.

    Step 5 – Move your wp-config.php up one level. You can find instructions for doing so on ProBlogger’s Take 5 Minutes to Make WordPress 10 Times More Secure post.

    Step 6 – Change your database password and make a note of it. How to do this will vary by host. For GoDaddy users, click here. For those with cPanel, click here.

    Step 7 – Go to your wp-config.php and open it in your favorite code editor. Update your database password to your newly updated password. Then go to the Secret Keys section and follow the instructions to update your keys.

  2. #22
    Avatarul lui haos
    haos este deconectat Ambasador
    Reputatie:
    61
    Data înscrierii
    19th February 2008
    Locaţie
    Craiova
    Posturi
    2.239
    Putere Rep
    61


    Implicit

    Dupa cum puteti afla de aici (17.12.2012): "How do you protect against this vulnerability? Currently there is no fix. Disabling pingbacks and trackbacks from the Discussion Settings page doesn't fix the problem either. The issue was reported to the WordPress Team and will probably be fixed soon. Until then, you can rename/delete the xmlrpc.php file.

    Ar mai fi pluginul asta care zice ca dezactiveaza XMLRPC dar nu l-am testat si oricum, tot mai sigura e varianta rename/delete.

    PS: Cine se baga la un pariu cu mine ca cei care ati avut acest virus il aveti SI in continuare, chiar daca pluginurile pe care le folositi va asigura ca sunteti in siguranta? Ca fapt divers de mai bine de o saptamana si cei de la ProTV il au desi m-am oferit sa ii ajut. (Pont primit de la un coleg de pe forum caruia ii multumesc). Dau o bere cui il gaseste.. pe siteul lor
    Citeste primul meu curs SEO - principii de baza. Vezi oferta mea de advertoriale PR5.

  3. #23
    Avatarul lui Krumel
    Krumel este deconectat Ambasador
    Reputatie:
    69
    Data înscrierii
    15th November 2004
    Locaţie
    Iasi
    Vârstă
    47
    Posturi
    6.261
    Putere Rep
    69


    Implicit

    Rezolvat. Multumesc de atentionare. Ptr ca e un proiect abandonat, nu l-am mai actualizat. Asta e si motivul ptr care a fost usor de spart.
    Sa ma invat minte..
    Krumel - apeleaza la serviciile oferite de mine prin formularul de pe blog.

  4. #24
    Avatarul lui felix
    felix este deconectat Membru SeoPedia
    Reputatie:
    42
    Data înscrierii
    1st December 2010
    Locaţie
    Baia Mare
    Vârstă
    50
    Posturi
    1.332
    Putere Rep
    42


    Implicit

    Pentru a ascunde versiune se poate instala WP Remove Header Generator de aici: WordPress › WP Remove Header Generator « WordPress Plugins
    Studiu de caz pentru un magazin online, FashionLand, Bld, Bulevardul Regele Mihai I 55, Baia Mare 430012

Pagina 3 din 3 PrimulPrimul 123

Informații subiect

Utilizatori care navighează în acest subiect

Momentan este/sunt 1 utilizator(i) care navighează în acest subiect. (0 membrii și 1 vizitatori)

Thread-uri Similare

  1. Site spart
    De valx90 în forumul Server side
    Răspunsuri: 61
    Ultimul Post: 18th November 2012, 20:08
  2. Mi-a fost spart contul AdWords?
    De danP în forumul Adwords
    Răspunsuri: 17
    Ultimul Post: 3rd February 2011, 11:44
  3. sri.ro a fost spart ?
    De Seinfeld în forumul Bar, lobby...
    Răspunsuri: 6
    Ultimul Post: 10th July 2009, 14:54
  4. Vodafone a fost spart ?
    De Seinfeld în forumul Studii de caz
    Răspunsuri: 13
    Ultimul Post: 6th December 2008, 00:25
  5. Site-ul Tvr-ului A Fost Spart
    De Stelian în forumul Bar, lobby...
    Răspunsuri: 16
    Ultimul Post: 15th April 2006, 23:55

Permisiuni postare

  • Nu puteţi posta subiecte noi.
  • Nu puteţi răspunde la subiecte
  • Nu puteţi adăuga ataşamente
  • Nu puteţi modifica posturile proprii
  •