Security

How to secure your WordPress blog?

23 December 2007 10 Comments

My website was once hacked by a hacker from Saudi Arabia. He managed to get into the server and replaced the index.php file with his own index file. I don’t know how he can get into my server but I have learnt many things from that bad experience.

Always upgrade your WordPress to the latest version – It is really recommended to upgrade your WordPress to the latest version. It is because each new version contains bug fixes and patches to vulnerabilities that exist in the older version. So make sure that you upgrade your WordPress when the latest version is out.

Files and folders permission – In WordPress, we need to set permission to certain files or folders to make it works properly. Especially when using plugins that need special CHMOD 777 permission. When you doing this, make sure that you give permission to the correct files and folders only. We don’t want other peoples can upload and run script through our server, right?

Servers in Malaysia and Sweden hosted virus

29 October 2007 2 Comments

There is a report saying that recent virus attacks regarding the email containing malicious PDF files are coming from servers in Malaysia and Sweden.

“The emails, sent in bulk, looked like credit-card statements, and contained an attachment called ‘report.pdf’,” chief research officer Mikko Hypponen said in a statement.

When such PDF files are viewed on vulnerable machines, they start downloading software from servers in Malaysia or Sweden, which are now being cleaned, he said. “There will be more such attacks.”

-Mikko Hypponen (F-Secure Chief Research Officer)

To prevent your PC from being infected, a new security update for Adobe Acrobat Reader has been released a few days ago. But there is a question that I want to ask, what should we do to the company who hosted the server in Malaysia? Maybe we might need to ban the provider. Because of them, Malaysia get bad reputation in security and IT field.

PDF files used to attack computers [via Colbert Low]

15 Great, Free Security Programs

10 July 2007 4 Comments

Turn your PC on, and you’re immediately vulnerable to malicious attacks. But you can use these free applications to minimize the dangers and protect yourself.

Preventing and Eliminating Malware

Talking Trojan says ‘Bye Bye’

6 July 2007 7 Comments

BotVoice.A was first found by Panda Lab is the first trojan that can talk. It talk by using the built-in speech function in Windows. The trojan will repeatedly saying this message:

You have been infected I repeat You have been infected and your system files has been deleted. Sorry. Have a Nice Day and bye bye…

Download to hear the voice.

Protect PHP files with Free PHP Encoder

3 July 2007 23 Comments

Free PHP Encoder should become useful. Because for me as a WordPress theme coder don’t like users to remove my link from the footer. I really hate them (not really but don’t like) when they remove my link and make like the theme was made by them. So, to protect the PHP file from being edited by the users, I have encrypted the file so they can’t edit the footer file. But, how do I do that?

I use an encoder to encrypt and lock the file. Free PHP Encoder will encrypt the source code and can only be decoded when the users request the file from their internet browsers. Although they can request the file, but they can’t modify it. Even I can’t retrieve back the source code if I lost the original file. So with this encryption, your link on the footer will be safe.

« Previous Page