security

GeneralKlausel.php

  • Posted on: 21 April 2015
  • By: davis

This started because I logged into my computer at 8:00 A.M. Tuesday, April 21, 2015.

I started setting up our daily emails and needed a good quote for SITE1's email.

I went to the site - it was down. That's weird. I was getting a 500 Internal Server Error - big problem.

The Outreach theme (which SITE1 uses) relies on a file called header.php.

Anti-DDoS XMLRPC Tweak Breaks Jetpack's Site Management

  • Posted on: 5 January 2015
  • By: davis

I've written before about using a special XMLRPC access rule to stop Wordpress DDoS attacks.

Quick summary: My server was being bombarded with hundreds of thousands of requests from foreign hosts (mostly Chinese). It took about a week before finding a fix - during which time my servers were slow, prone to crashing, and generally unusable. I found a helpful tip here. I simply added the following code to the bottom of my .htaccess file.

Social Engineering - Your Facebook Is More Valuable Than Your Bank Account

  • Posted on: 29 October 2014
  • By: davis

Want to know something interesting? Hackers prefer your Facebook info to your bank account. While bank accounts can be drained, banks are vigilant against such theft and react swiftly. Banks are also capable of reversing, tracking, and investigating intrusions, making them a tough target for the average hacker.

But what about your Facebook account? It's 2014. You've already scrubbed your Facebook of personal and embarassing information, right? What could a hacker really accomplish by logging in and pretending to be you?