Wordpress V2.1 Vulnerable [MERGED]
Mar 2, 2007[url]
In case anyone missed
ADVERTISEMENT
ImageMagick :: Version Is Vulnerable
Sep 23, 2006I installed ImageMagick via yum on my CentOS 4 box. It is version 6.0.7
When using gallery 2, I received a warning message stating that this version is vulnerable (low risk but still) and was wondering if there was anyway to update this past 6.2.2
I tried to do it manually by compiling from source but the composite part of ImageMagick never works...the identify and convert are recognized.
Is there an easier way....a RPM for RHEL 4 I could use?
90 Percent Of Websites Vulnerable To Attack
Oct 22, 2007[url]
I don't have a clue what WhiteHat is talking about in this article. Could some of you technical people please decipher it, and explain the vulnerabilities in language that webmasters can comprehend who aren't computer scientists? Because then we might be able to figure out how to protect our web sites from being hacked.
DNS [merged]
Dec 17, 2007I created all the accounts I need, I uploaded all the files these accounts need but I'm still getting a problem with the DNS redirection... when I asked to my server provider they told me this:
According to the information provided, you have not yet completed setup of your forward DNS. We do not provide server DNS administration services with the exception of updating your reverse PTR records since we do not allow delegation of our client's reverse DNS. You will need to contact your system's administrator in order to have the issues regarding server setup addressed.
And when I'm scanning one of the domains pointing to this DNS the report says this:
"WARNING. The parent servers (I checked with a0.org.afilias-nst.info.) are not providing glue for all your nameservers. This means that they are supplying the NS records (host.example.com), but not supplying the A records (192.0.2.53), which can cause slightly slower connections, and may cause incompatibilities with some non-RFC-compliant programs. This is perfectly acceptable behavior per the RFCs. This will usually occur if your DNS servers are not in the same TLD as your domain (for example, a DNS server of "ns1.example.org" for the domain "example.com"). In this case, you can speed up the connections slightly by having NS records that are in the same TLD as your domain."
"ERROR. One or more of your DNS servers are missing A records (per NS records that may be cached). As a result, they cannot be used. The problem hostnames are:
ns2.mbhostve.com. has no A record. ns1.mbhostve.com. has no A record."
"A timeout occurred getting the NS records from your nameservers! None of your nameservers responded fast enough. They are probably down or unreachable. I can't continue since your nameservers aren't responding. If you have a Watchguard Firebox, it's due to a bug in their DNS Proxy, which must be disabled (31 Jul 2006 UPDATE: several years after being informed of this, there is a rumor that there is a fix that allows the Watchguard DNS proxy to work)."
------------
I'm using CPANEL but I don't know how to fix the problem here,
Powervps [merged]
Jul 10, 2007I am with powervps for more than 2 years, but in the last month all the good service and the uptime from the past has disappeared.
I have 3 VPS accounts, all in diferents servers, and in this last month all three accounts were having lot of problemas, specially one of them, that was more than 15 hours down, and now is down again, and it looks like they take a while to be up again...
I ask to the support about this problems, but i donīt get any convincing answer. I think that they have a big problem with the stability of his systems, and i donīt know why.
I arrive to this forum looking for the experiences of other costumers of powervps this days to see if I am the person with worse luck of the world or if it is a global problem of powervps.
Price Increased @ LT [ Merged ]
May 29, 2008Anyone got the email?
The increase is about 23-30 dollars per server...
Time to move....
How To Determine Load On Two VPS's And See If They Can Be Merged
Jan 24, 2008I have two VPS's.
Main VPS is 1152mb SLM ram running only a relatively small vBulletin community. My goal is to keep this as fast as possible, which is why I overbought on the VPS and recently moved my couple other low volume sites (and some higher volume image hosting) + some email acccounts on to a 512mb SLM VPS.
Both VPS's are Cpanel/WHM running centros 4 (might be 4.5, I'm confused on this) and the latest release version of whm.
What I am wondering is what stats/tracking I might be able to run to see what typical usage is on the two VPS's for a day or two and try and figure out if I jumped the gun in splitting them, and can safely remerge them without effecting the vBulletin performance.
Can someone help me out with how to setup and read some stats that would tell me if both VPS's are underutilized enough to merge them back together onto the 1152mb VPS?
Setting DNS Zone On VPS [MERGED]
Oct 4, 2007I am having some problem with the DNS Zone setting on my VPS. I can't seem to load my page here :
[url]
This domain should resolves to this NameServers:
ns1.etrendstudio.com
ns2.etrendstudio.com
The files are hosted on the servers here:
[url]
if there is a problem in setting up the DNS Zone?
My Site Is Moved To Cartikahosting [merged]
Sep 23, 2008I finally got my site moved over to Cartika's server. They were a big help with several issues I had, even fixing things that didn't have anything to do with their server.
I had to get a new template since the other one was only available at .wordpress but I like the new one much better anyway. I still have to go through each page to make sure I didn't forget to change some link or something. I also had to edit the php to work how I have it so I may have missed something (I haven't even seen php since 2003).
I'm writing a post about my initial impressions of Cartika and why I eventually chose them. I'll post the info at WHT when I finish it.
Setting Up Our Own Data Center [merged]
Mar 29, 2007we have come to a point where we would like to operate our own data center and move on from doing collocation.
Could anyone that have any experience in setting up their own data center help me out in terms of what kind of equipment needed?
From my qucik research, I would be needing the following:
1. Air Conditioning System - I am thinking of using Liebert System 3
2. UPS System, still not sure what type that suits our needs
3. Diesel Generators, still not sue what type that suits our needs
The server room would be roughly 1,200 square feet. How many Liebert System 3 would I need, how many tons, chilled water or compressors? We have roughly 200 servers at the moment, but would like to accomodate the room to up to 1,000 servers.
What kind of UPS system would you recommend us using?
What kind of Diesel Generators would you recommend us using?
How much is the total cost - roughly to fund this setup?
Are there other main points that I missed besides, AC, UPS, and Diesel Generatros? I mean aside security, network equipments itself, etc. The main basic things.
HIGH LOAD Because Of MySQL. [merged]
Oct 24, 2007my server
Intel(R) Xeon(R) CPU E5310
1g
when i use a software update my site.maybe the sofe use mysql and httpd much.
the load of the server ofen goes high.i can only restart httped or mysql .
some info about the server when load is high.
[root@server ~]# free
total used free shared buffers cached
Mem: 1033676 1018980 14696 0 4352 428756
-/+ buffers/cache: 585872 447804
Swap: 2040244 132660 1907584
[root@server ~]# ps aux | grep mysql | wc -l
3
[root@server ~]# ps aux | grep httpd | wc -l
66
[root@server ~]# mysqladmin -u root -p extended-status
Enter password:
+----------------------------+-----------+
| Variable_name | Value |
+----------------------------+-----------+
| Aborted_clients | 2 |
| Aborted_connects | 89 |
| Binlog_cache_disk_use | 0 |
| Binlog_cache_use | 0 |
| Bytes_received | 61741575 |
| Bytes_sent | 11783074 |
| Com_admin_commands | 150 |
| Com_alter_db | 0 |
| Com_alter_table | 0 |
| Com_analyze | 0 |
| Com_backup_table | 0 |
| Com_begin | 0 |
| Com_change_db | 33678 |
| Com_change_master | 0 |
| Com_check | 0 |
| Com_checksum | 0 |
| Com_commit | 0 |
| Com_create_db | 0 |
| Com_create_function | 0 |
| Com_create_index | 0 |
| Com_create_table | 0 |
| Com_dealloc_sql | 0 |
| Com_delete | 3327 |
| Com_delete_multi | 0 |
| Com_do | 0 |
| Com_drop_db | 0 |
| Com_drop_function | 0 |
| Com_drop_index | 0 |
| Com_drop_table | 0 |
| Com_drop_user | 0 |
| Com_execute_sql | 0 |
| Com_flush | 0 |
| Com_grant | 0 |
| Com_ha_close | 0 |
| Com_ha_open | 0 |
| Com_ha_read | 0 |
| Com_help | 0 |
| Com_insert | 6939 |
| Com_insert_select | 0 |
| Com_kill | 0 |
| Com_load | 0 |
| Com_load_master_data | 0 |
| Com_load_master_table | 0 |
| Com_lock_tables | 96 |
| Com_optimize | 1 |
| Com_preload_keys | 0 |
| Com_prepare_sql | 0 |
| Com_purge | 0 |
| Com_purge_before_date | 0 |
| Com_rename_table | 0 |
| Com_repair | 0 |
| Com_replace | 110 |
| Com_replace_select | 0 |
| Com_reset | 0 |
| Com_restore_table | 0 |
| Com_revoke | 0 |
| Com_revoke_all | 0 |
| Com_rollback | 0 |
| Com_savepoint | 0 |
| Com_select | 122075 |
| Com_set_option | 32609 |
| Com_show_binlog_events | 0 |
| Com_show_binlogs | 0 |
| Com_show_charsets | 0 |
| Com_show_collations | 0 |
| Com_show_column_types | 0 |
| Com_show_create_db | 0 |
PC World Article: Reduce Fire Risk - Remove Oxygen [merged]
Mar 19, 2007I did a quick search on this and could not see it as already being posted
It seems quite a clever but simple idea - remove a lot of the oxygen from the air to help reduce the risk of fire. What do those of you operating your own facilities make of this? Is anyone already doing this?
[url]
PHP & Wordpress
Jun 18, 2007Just logged in to Spam Karma 2 (for wordpress) and noticed this message inside ht e2nd chance Captcha Check of Spam Karma 2:
Your install of PHP seems to be missing the GD library (or a more recent version is needed). You should ask your host to update the GD module for PHP and disable the Captcha module until then.
Can we get our server management company to install this? More importantly, wanted to know the risk of installing the GD library. It's not going to cause any critical things to break is it?
Wordpress
Oct 26, 2007i would like to ask about wordpress hyperlink because i was wondering if theres a particular file that i have to edit in order to do a hyperlink on one of the menus under pages of my wordpress blog...i would like to link one of the menu to my website forum...
View 6 Replies View RelatedAdult Wordpress 100% Cpu
Jan 29, 2007I'm running FreeBSD 6.2.. also tried it on 5.4.
a customers wordpress blog is taking all the cpu on the server, i can't figure out what the issue here is... i've tried many my.cnf's and i can verify that it uses the my.cnf file.. so that hasn't helped.. i can only mv index.php test.php for now until i could figure out why all these hits cause lag. any recommendations?
Wordpress CPU Usage
Nov 2, 2009For some reason, one of my clients wordpress blog is using 100% cpu on a php process per page load. To clarify, the first time you load the page it is very slow, and uses 100% cpu for the PHP process and then if you reload the page (while it is going slow) it loads very fast. After that is done the normal PHP usage per page load is roughly 1-4% if that.
I'm guessing something in the coding is looping, but I am unsure. What I do know is 100% cpu usage for one page view initially is insane.
Does anyone have any ideas on how to fix/resolve this issue?
Host For Wordpress
Sep 20, 2009I'm currently using the Godaddy Wordpress Economy plan for 4.99/month but there's been a few downtimes during the past few days. So I was wondering if anyone can suggest another host that is suitable for a Wordpress Blog.
View 11 Replies View RelatedRegarding WordPress Hosting
Oct 23, 2009I don't have Linux or whatever I just got Windows XP or Vista.
I'm not an expert at creating websites, I find it difficult. I don't want to have to install databases or msyql manually, I just don't have a clue and would rather leave it.
I just know how to use WordPress and I want a WordPress hosted site.
I would like to know if there are any sites similiar to this:
[url]
Which includes stuff like cPanel & Fantastico
[url]
Fantastico looks brilliant as I can simply install WordPress in a few clicks without having to mess with FTP and database/msqyl etc.
Does anyone know any reccomended sites that use Fantastico for Windows Vista which I can install WordPress easily?
(I don't want to use '3ix' as I have seen ALOT of negative reviews)
Stack With Wordpress CMS
Apr 5, 2009I need server for database only,is there any suggestion with budget$70-$80/month?
My current server is
X3220 @ 2.40GHz
2GB
My site stats
73,000 ++ Posts /Articles
320.000 ++ Comments
Visitors 9000 - 11000 daily and growing
I got 500-600 comments/articles reply everyday.
My server crash recently with this stats.I have try all way how to optimize wordpress with install eAccelator, super wp cache and wasting my money for "expert wordpress" but all result is zero, server still get high load.
This is my first time and I don't know if this will work to separate the database server from the main server, but I want to try it.
Wordpress Backup
Jul 19, 2009I am using version 2.3.1 on one site which I need to import over to wordpress.com However, a long time go the link to the back up options page disappeared and even upgrading does not help to retrieve it.
My problem being that over at the main site you need a WordPress WXR file to import with from a self hosted site. As mentioned that is not an option and I must have it imported somehow. I cannot also access the plugins page.
Vps For Wordpress Blogs
Apr 21, 2008If i like to put 30 wordpress blogs on a vps no high traffic blogs will be between 50-250 uniques per day per blog and with space to grow if some blogs start attract good traffic
Im thinking about spending $59usd
but most important would be to find a suitable vps for what i need , what specs would
you recommend for this kind of usage?
Wordpress Spam
Dec 21, 2008I've a blog website
needhost.cn
recently i found many spam comment message left
how to prevent the spam comments?
Supports Wordpress Mu
Mar 15, 2008I had no problem installing Wordpress Mu with iPower. Unfortunately iPower really sucks for performance (I have paid one full year though so I have to keep them ).
So I have moved to Hostgator but I'm struggling: there are many things that need to be done to be able to install it and I can't even do it myself only the admin can.
At the moment I'm still waiting.
So I'm looking for another webhosting service again - though I will stay with hostgator because of their outstanding support service - just for being able to install Wordpress Mu.
Memcached And Wordpress
Mar 28, 2008I'm running a wordpress site and am trying to get the memcached cache to expire (since the default is never).
I setup memcached using these instructions (ryan.wordpress.com/2005/12/23/memcached-backend/), but am unsure about how to proceed from here to set exptime.
WordPress On Windows
Feb 29, 2008Hoping to upgrade my account shortly to a Windows package and wondered if anyone had ever had success installing WP on Windows? And how did you go about it?
View 7 Replies View RelatedA Wordpress/Hosting
Dec 6, 2008I would really like to be able to edit and customize wordpress templates but apparently need a server that will support wordpress or something so I can upload and test. But currently I can not really afford any premium hosting... has anyone got any ideas if there is anything else I can do? or would anyone possibly be able to offer a small amount of space that I could use temporarily until I can afford to purchase a hosting account?
View 9 Replies View RelatedWordpress Hosting
Dec 16, 2008Please recommend me reliable wordpress hosting with fully functionality.
Low budget,5GB webspace and 5GB bandwidth will be enough.
If it's possible reccuring billing from month to month would be best deal,because of low budget.
Hosting For WordPress MU
Jun 27, 2008Which host supports WordPress MU blogs the best? (preferably shared).
View 11 Replies View RelatedWordpress Blog Hosting
Jun 3, 20091. which web hosting provider is good for starting web hoster like me?
2. i need web host who support wordpress as blog software and web hosting must be fair price and my blog contain only 10mb size and bandwidth may 1gb/month intial.
2. can i use more than one blog in same domain, if ok in that each blog can have their own wordpress blog software i.e i can instal more than one wordprss software in same domain and web host?
3. if i accept free domain register from my web hoster, then if i transfer my blog after 5 months or 9 months to different web host provider can i use same domain or it is not possible?
How To Migrate Wordpress Blog
Sep 22, 2009I am hosting my wordpress blog on a web hosting that is not that reliable as it go down once in a while for few hours without any prior notification of sheduled maintenance.
However, i have a question. How do i migrate a wordpress blog with everything intact.. data, information, application, plugins, graphics and domain name?
Lighttpd Url Rewrite Help For Wordpress
Jun 4, 2009I'd like to use lighttpd on my server but it doesn't support url rewrites for wordpress. I have a VPS running on kloxo and i have 4 clients using WP2.71 with permalinks.
After searching i found something really nice:
"
Create a file called /etc/lighttpd/wp-rewrite.conf with the following contents:
url.rewrite-once = (
"^" + wpdir + "(wp-.+).*/?" => "$0",
"^" + wpdir + "(sitemap.xml)" => "$0",
"^" + wpdir + "(xmlrpc.php)" => "$0",
"^" + wpdir + "keyword/([A-Za-z_0-9-])/?$" => wpdir + "index.php?keyword=$1",
"^" + wpdir + "(.+)/?$" => wpdir + "index.php/$1"
)
Then, in your /etc/lighttpd/lighttpd.conf, you should have something similar to this:
$HTTP["host"] =~ "blog.nix.is" {
var.wpdir = "/"
include "wp-rewrite.conf"
}
"
source: [url]
what i want to change is this part:
$HTTP["host"] =~ "blog.nix.is" {
var.wpdir = "/"
include "wp-rewrite.conf"
}
