Comments on: Blog (briefly) hacked

By: LogLady – rough but useful log viewer | Rarst.net

LogLady – rough but useful log viewer | Rarst.net — Sat, 03 Apr 2010 21:38:34 +0000

[...] am stuck with it.LogLady is such kind of an app. It isn’t fancy or snappy but it is there for me when it really matters and that is what logs viewer application should be about.What it doesApp opens text file (or [...]

By: Rarst

Rarst — Fri, 04 Sep 2009 18:48:16 +0000

Little update for those who interested.Hacker wrecked so much (and gave me more trouble on Monday) because he had earlier hacked another site on server via outdated WP. And as I was consulted by http://sucuri.net/ that if hacker has one site then he can screw rest of server really good. Downsides of shared.Issue should be closed, at least support reported they sent hacker's ass flying off server. They also enabled/provided details for SFTP access, that should be little safer for me now.

By: Rarst

Rarst — Thu, 03 Sep 2009 16:12:22 +0000

@kelltic

Ok… actually not ok. :) There is something seriously wrong with this blog, you and weekends. There was some problems on Friday and outage (blank page with brief explanation text) on Monday… Rest of time it worked. I know it worked – it worked for me at home, for me at work, and for some hundreds of subscribers and visitors.

Cache plugin got recently updated with some new options and that should fix most of issues with comments not showing up.

Are you subscribed to feed? If not could you please try that?

Are you on any instant messenger so I could quickly get back to you next time it happens? I would really like to properly troubleshoot this.

By: kelltic

kelltic — Thu, 03 Sep 2009 15:24:52 +0000

FYI: No new articles from 08/27/09 until today (09/03/09). That is not a new problem for me; there are always many days in a row that no article or comments show up. I’ve mentioned that issue before. But, during this last long run, every time I opened the site it hung up, leaving the hour glass running and notices in the status bar about what was trying to load. I wondered what was going on. Glad to see everything up and running normally (sort of) again.

By: Explore yummy cache of Opera alternate download | Rarst.net

Explore yummy cache of Opera alternate download | Rarst.net — Wed, 02 Sep 2009 18:13:50 +0000

[...] millions (two) of people enjoyed final release of Opera yesterday, I spent evening in new round of getting hacked and bookmarking WordPress security [...]

By: Rarst

Rarst — Sun, 30 Aug 2009 13:19:44 +0000

@Donace

Doesn’t seem to be same case then, no need to go through WP admin if you have access to file system.

Still waiting for something from security department.

By: Donace

Donace — Sun, 30 Aug 2009 13:17:28 +0000

I am not quite sure how they did it though what I did find was a shell script installed which gave them access to the server without going through cpanel or leaving an IP log trail.

Security said there was minimal fall out so wasn’t to bad.

By: Rarst

Rarst — Sun, 30 Aug 2009 12:54:18 +0000

@Donace

Maybe someone was doing mass scanning for exploits… You mean that vulnerability was actually on site other than yours, but on same server? Do you know what vulnerability exactly that was?

By the way I had scanned my server for other hacked sites yesterday and everything seems clean. So can’t say if more sites were hit, they could cleanup as fast as I did.

By: Donace

Donace — Sun, 30 Aug 2009 11:39:40 +0000

Oddly my site(s) was hacked as well on Friday; they had injected some type of shell program via a vulnerability in a theme file on an other site and got in that way.

Luckily all they did was muck about with index files and luckily for me I was working on the main sites earlier that day and had recent backups.

Still a pain up the ass; also the quick thinking by hostgator security tech minimised the down time also.

By: Rarst

Rarst — Sun, 30 Aug 2009 09:14:54 +0000

@digitx

Thank you, this is great praise. :) It’s not strictly financial issue (I make enough to pay for hosting out of my pocket if needed). This blog was started with few rough internal guidelines and one of those is keeping it self-sustained.

At moment my priority is to finish up new theme, because that will be major time saver and better platform for monetizing.

After it goes live it will be much easier for me to get on with rest of issues and decisions.