Category Archives: Hack


Lol my wordpress website got hacked by multiplie script “heroes”, if ur reading this! Please contact me. Im wondering how you guys did it :) feel free!

Well ive fixed the filepermissions, so i dont think they can do anything anymore.

But i dont know ill wait and see, Im no programmer :)I chmodded all files within the wordpress site with 664 permissions, and all the directory’s with 755. This does mean a file upload wont work anymore.. so u better chmod the upload directory wp-content or so with 777 it depends on the type of webserver u use and under what user u run those programs.

They really did there best.. i see all sorts of commands in my error logs
cat: /proc/version: No such file or directory
cat: /etc/ No such file or directory
cat: /etc/*-realise: No such file or directory
cat: /proc/cpuinfo: No such file or directory
free: not found
lsattr: not found

Basicly they cant change anything as apache is running under a special www user. And most of the ppl who try this suspect a Linux box.. :)

gr gr!

WordPress drama – wp-login.php

We experiece alot of occasions lately that ppl are trying to crack a wordpress “admin”  login. to post spam or something on a wordpress blog. Change the standard username / password if u wanna be safe and dont wanna have a hosting company complain at u. We have been experiencing a higher load then useual on our shared servers lately.

If someone wont respond then we take action and use one of the following samples:

Create a .htaccess file or edit it, and put in the following:

<Files wp-login.php>
AuthUserFile /home/vhosts/
AuthName “Private access”
AuthType Basic
require valid-user

Generate a .passwd file on the desired location:
htpasswd -c /home/vhosts/ username

I know, i havent done anything like that yet, i dont care till i will be spammed till a load of 10, and then ill see if i use this or use any of the following options on the WordPress FAQ

gr gr Thomas ;)