Wordpress Internet Security Issue: Your Immediate Attention is Required
Here is a crucial internet security update, 2 gifts and important announcement.
First, the security update. If you're using Wordpess for your blogs, you probably remember that major security hole that was found in Wordpress in the middle of April. In fact, it was so serious that Wordpress urgently released new version to cover this hole.
It leaves directories on your site with a 777 access level. The problem is this directory (for WP, "wp-config") has the access info to your database.
If you haven't heard about this yet and you're using older versions of Worpress, make it your priority to upgrade as soon as possible or at least get the appropriate patches.
The same exploit was used to hack into following programs:
1. RSS to Blog
2. Link Management Assistent (LMA)
3. WordPress.
4. Article Dashboard and Article Directory
The hacker targeted files with permissions set to 777 and 666 and unfortunately a lot of programs (like RSS to Blog) won't run unless these permissions are set to these numbers.
This dangerous security hole allows a hacker to penetrate accounts security and install various hacks (malicious pieces of code used for hackers' advantage). One of them changes the code in php scripts and pages by adding an Iframe redirect and sending visitors to a site in Russia. Immediately after this happens, the process starts on that site that initializes viruses downloads to your computer.
For security purposes it's better NOT to chmod ANYTHING lower than 755, otherwise you leave the doors for hackers wide open...
Bottom line: if during program installation you see instructions to chmod the directory to 777, try to use permission 711 (or 755) instead, this should give enough access for program to work properly.
And while we're are on a topic of computer viruses, do you know the difference between viruses and hoaxes? Earlier I explained how to recognize the latest hoax, and how to avoid it (look for my previous blog post).
Ok, now that this is addressed, let's give you some gifts, shall we?
Right click on the urls below, use save as - and you will have 2 reports on Self-Hypnosis and Feng-Shui:
Self-Hypnosis
Via Feng Shui
In fact, those reports are first chapters of the ebooks which are included in the 7 niche ebook collection. This collection will be realeased by John Delavera on May 15.
This is NOT your ordinary niche pack… John gathered all the information required to make each of the ebook packages a successful stand-alone business. Articles, blogs, sales letters, images - everything is already done for you. I can't tell you more, because John made me sworn that I won't reveal too much before the launch.
7 Turbo-Niche Products
So mark this date in your calendar: May 15 2006 and get on the notification list. Why?
Because everyone who registers with that list before May 15th will get a 10% discount.
That's right! This is just another perk to you as my InterPreneur Newsletter subscriber:
7 Turbo-Niche Products
To Our Success!
Oleg Ilin
P.S. I think I give you one more gift today - just a reward for reading this long post.
One way to keep your computer save from easy hacker intrusions is to use password-protected files with strong passwords.
FileShield will let you easily encrypt and decrypt specified files and
folders using just one password. Once locked, these files and folders cannot be deleted or moved.
FileShield is a fr-e.e tool that will make this task a breathe for you.
FileShield - Protect Your Computer with Password-protected files
It stores files and folders locally on your computer in its own FileShield folder. Although this FileShield folder can be seen through Windows Explorer, its contents can’t be viewed unless unlocked with your unique password. When using your computer, you can lock or unlock the FileShield folder as needed.
As an additional measure of security, the folder can be automatically locked after a period of time that you specify, or whenever you shut down your PC.
FileShield - Protect Your Computer with Password-protected files
Oleg Ilin - Web Tester
from http://www.web-feed.com
Avoid 10 Most Dangerous Internet Scams and Frauds Those Internet Scams Can ruin your life:
http://www.1ezhost.biz/10intscams_signup.html
Relevant tags for this post:
protect computer, password protected,file shield,
internet security
Category tag:
successful online business technique
First, the security update. If you're using Wordpess for your blogs, you probably remember that major security hole that was found in Wordpress in the middle of April. In fact, it was so serious that Wordpress urgently released new version to cover this hole.
It leaves directories on your site with a 777 access level. The problem is this directory (for WP, "wp-config") has the access info to your database.
If you haven't heard about this yet and you're using older versions of Worpress, make it your priority to upgrade as soon as possible or at least get the appropriate patches.
The same exploit was used to hack into following programs:
1. RSS to Blog
2. Link Management Assistent (LMA)
3. WordPress.
4. Article Dashboard and Article Directory
The hacker targeted files with permissions set to 777 and 666 and unfortunately a lot of programs (like RSS to Blog) won't run unless these permissions are set to these numbers.
This dangerous security hole allows a hacker to penetrate accounts security and install various hacks (malicious pieces of code used for hackers' advantage). One of them changes the code in php scripts and pages by adding an Iframe redirect and sending visitors to a site in Russia. Immediately after this happens, the process starts on that site that initializes viruses downloads to your computer.
For security purposes it's better NOT to chmod ANYTHING lower than 755, otherwise you leave the doors for hackers wide open...
Bottom line: if during program installation you see instructions to chmod the directory to 777, try to use permission 711 (or 755) instead, this should give enough access for program to work properly.
And while we're are on a topic of computer viruses, do you know the difference between viruses and hoaxes? Earlier I explained how to recognize the latest hoax, and how to avoid it (look for my previous blog post).
Ok, now that this is addressed, let's give you some gifts, shall we?
Right click on the urls below, use save as - and you will have 2 reports on Self-Hypnosis and Feng-Shui:
Self-Hypnosis
Via Feng Shui
In fact, those reports are first chapters of the ebooks which are included in the 7 niche ebook collection. This collection will be realeased by John Delavera on May 15.
This is NOT your ordinary niche pack… John gathered all the information required to make each of the ebook packages a successful stand-alone business. Articles, blogs, sales letters, images - everything is already done for you. I can't tell you more, because John made me sworn that I won't reveal too much before the launch.
7 Turbo-Niche Products
So mark this date in your calendar: May 15 2006 and get on the notification list. Why?
Because everyone who registers with that list before May 15th will get a 10% discount.
That's right! This is just another perk to you as my InterPreneur Newsletter subscriber:
7 Turbo-Niche Products
To Our Success!
Oleg Ilin
P.S. I think I give you one more gift today - just a reward for reading this long post.
One way to keep your computer save from easy hacker intrusions is to use password-protected files with strong passwords.
FileShield will let you easily encrypt and decrypt specified files and
folders using just one password. Once locked, these files and folders cannot be deleted or moved.
FileShield is a fr-e.e tool that will make this task a breathe for you.
FileShield - Protect Your Computer with Password-protected files
It stores files and folders locally on your computer in its own FileShield folder. Although this FileShield folder can be seen through Windows Explorer, its contents can’t be viewed unless unlocked with your unique password. When using your computer, you can lock or unlock the FileShield folder as needed.
As an additional measure of security, the folder can be automatically locked after a period of time that you specify, or whenever you shut down your PC.
FileShield - Protect Your Computer with Password-protected files
Oleg Ilin - Web Tester
from http://www.web-feed.com
Avoid 10 Most Dangerous Internet Scams and Frauds Those Internet Scams Can ruin your life:
http://www.1ezhost.biz/10intscams_signup.html
Relevant tags for this post:
protect computer, password protected,file shield,
internet security
Category tag:
successful online business technique
posted by 1EzHost at 5/13/2006 04:21:00 PM
0 Comments:
Post a Comment
Links to this post:
Create a Link
<< Home