WordPress Brute-Force Attacks

A post on Twitter today alerted me to the fact that my WordPress application was probably under brute-force attack.  A growing series of links told me reasons why it was happening, methods for understanding the degree of the problem and what to do about it.  Some of the answers were good but the majority were… Continue reading WordPress Brute-Force Attacks

Published
Categorized as WordPress

WordPress security vulnerability

According to the BBC News today, WordPress is under a huge Botnet attack that targets the ‘admin’ account.  In accordance with advice from WordPress, I’ve just deleted that account.  Upgraded to v3.5.1 at the same time, just for good measure.

Published
Categorized as WordPress

Database Backup

This script will dump a mysql database into a given directory and keep a 7 day rolling history. Parameters should be fairly self-explanitory. This needs to be run daily via cron. #!/bin/bash DATE=`date +%y-%b-%d` DESTDIR=/home/duplicity/wordpress DATABASE=myblog DB_USER=root DB_PASSWORD=password cd ${DESTDIR} /usr/bin/mysqldump -c –user=${DB_USER} –password=${DB_PASSWORD} ${DATABASE} > \ wpdump_${DATE} find $DESTDIR -name “wpdump*” -mtime +7 -print… Continue reading Database Backup

Published
Categorized as WordPress

phpMyAdmin

During an upgrade of WordPress, I realised it was about time I figured out how to backup my databases. This led to the requirement for phpMyAdmin, and this section. There doesn’t seem to be any Debian packaging for phpMyAdmin, so I just went to the homepage and downloaded it. It consists of a single tarball… Continue reading phpMyAdmin

Published
Categorized as WordPress