Textpattern CMS

#13 2012-03-07 07:08:30

fowler

Member

Registered: 2007-02-12

Posts: 79

Re: Issues with sites getting hacked.

How can I rule that out? I feel like I’m trying to plug a hole in the dark…

#14 2012-03-07 16:54:58

maruchan

Member

From: Ukiah, California

Registered: 2010-06-12

Posts: 590

Website

Re: Issues with sites getting hacked.

How can I rule that out? I feel like I’m trying to plug a hole in the dark…

Just watch the news feeds ;-) So it does look like this is a WordPress issue.

Sucuri researchers have also been tracking this scareware distribution campaign and found that a rogue WordPress plug-in called ToolsPack has been installed on many of the compromised blogs. The plug-in masquerades as a collection of WordPress administration tools, but in reality it contains a backdoor that attackers use to maintain their unauthorized access to the affected sites, Dede said.

Reference

#15 2012-03-07 18:42:22

fowler

Member

Registered: 2007-02-12

Posts: 79

Re: Issues with sites getting hacked.

WOORDDPRESSS shakes fist

I knew Textpattern would never betray me.

#16 2012-03-07 18:42:52

fowler

Member

Registered: 2007-02-12

Posts: 79

Re: Issues with sites getting hacked.

Thanks for the help, everyone. I appreciate it.

#17 2012-03-07 23:29:17

tye

Member

From: Pottsville, NSW

Registered: 2005-07-06

Posts: 859

Website

Re: Issues with sites getting hacked.

Had you installed that plugin?

#18 2012-03-14 02:59:39

fowler

Member

Registered: 2007-02-12

Posts: 79

Re: Issues with sites getting hacked.

Do you mean the plugin I referenced at the top of the page?

Working with Media Temple, I notice that the default CHMOD are set to 755, while Dreamhost was 777

Does that have anything to do with this?

#19 2012-03-14 03:18:26

tye

Member

From: Pottsville, NSW

Registered: 2005-07-06

Posts: 859

Website

Re: Issues with sites getting hacked.

The maruchan plugin for wordpress which maruchan wrote about above

755 is safer than 777 on any directory in any setup

#20 2012-03-14 16:50:12

fowler

Member

Registered: 2007-02-12

Posts: 79

Re: Issues with sites getting hacked.

Ah, no. Most of the Wordpress sites have very basic plugins. Although I’m sure some of them are from less than trusted sources.

Lesson learned!

#21 2012-03-14 17:00:04

maruchan

Member

From: Ukiah, California

Registered: 2010-06-12

Posts: 590

Website

Re: Issues with sites getting hacked.

Dreamhost just wrote about this 777 thing — see “Security Enhancements Comin’ Your Way” in the March newsletter. Some helpful info for WordPress users.