Comments on: Fast Alarm For Hidden WordPress Hackers

By: Ying Hang Eng

Ying Hang Eng — Sat, 29 Nov 2008 02:09:56 +0000

Last time my wordpress blog was nearly hacked.I found out the hacker was hacking for my premium themes.They were not very good and leaved down some traces

By: Security Company Manchester

Security Company Manchester — Thu, 25 Sep 2008 10:13:59 +0000

I thought that 2.6.1 was secure - I only read this a few days ago as well - oh well, time to upgrade again.

By: The Hip Zone

The Hip Zone — Sun, 14 Sep 2008 14:53:50 +0000

After upgrading to 2.6.1, I came to know that i need to upgrade to 2.6.2 again. What the heck is that and why? because someone can re-generate a password through some existing username and wordpress team even didn’t know this. I am worried and am going to try Drupal as well.

By: Burglar Alarm Systems

Burglar Alarm Systems — Thu, 28 Aug 2008 18:56:58 +0000

Great tips there for checking intruders. I check my pages daily that is checked via a script.

By: koby vyzel

koby vyzel — Tue, 26 Aug 2008 17:46:47 +0000

for this kind of sites, daily check is all u need

By: Barry Welford

Barry Welford — Wed, 13 Feb 2008 07:10:01 +0000

Those are good suggestions, MMMeeja. I think daily monitoring is good enough in most instances. After all you hope your security measures will deter most hackers.

By: MMMeeja

MMMeeja — Mon, 11 Feb 2008 16:59:29 +0000

Your page sizes are likely to change if you have advertising, recent posts, top ten posts - as this site does.

A few lines of perl could probably download a test post, strip out the bits that are expected to change and then calculate the size and compare it to the last run. You could even run such a test hourly and have it email you whenever there’s a change.

For people with respected, high-traffic blogs, this sort of monitoring makes sense.