Had to install an SSL certificate from Trustwave today. The cert was emailed to the customer in a zip file. that contained several formats. For plesk the “.cer” file is the one that we needed. Also for the CA certificate there was a “chain.cer” file. Unfortunately Plesk (Apache) was not happy and complained that the [...]
Distributed Brute Force Attack On WordPress wp-login.php
Over the last few days many WordPress websites have encountered problems due to a massive distribute brute force attack on the wp-login.php script. The hackers are using a network (botnet) of compromised servers (bots) to repeatedly attempt to login to WordPress using common usernames and weak passwords. The botnet may contain as many as 90,000 [...]
Add Google Apps DNS Records To Domain On Plesk From Command Line
Here’s the command line steps to add Google Apps to a domain under Plesk: /usr/local/psa/bin/dns –add acme.com -mx ” -mailexchanger ASPMX.L.GOOGLE.com -priority 10 /usr/local/psa/bin/dns –add acme.com -mx ” -mailexchanger ALT1.ASPMX.L.GOOGLE.com -priority 20 /usr/local/psa/bin/dns –add acme.com -mx ” -mailexchanger ALT2.ASPMX.L.GOOGLE.com -priority 20 /usr/local/psa/bin/dns –add acme.com -mx ” -mailexchanger ASPMX2.GOOGLEMAIL.com. -priority 30 /usr/local/psa/bin/dns –add acme.com -mx ” [...]
Find Malware Hidden In Image Files
Hackers will often try to hide malicious code in files with image extensions like “.gif”. Here’s a command line that will help identify suspicious files: find -name ‘*.gif’ -o -name ‘*.jpg’ -o -name ‘*.png’ -exec file {} \; \ | grep -v ‘GIF image data’ \ | grep -v ‘PNG image data’ \ | grep [...]
Control PHP Error Logging From .htaccess
Here’s a great article: http://perishablepress.com/advanced-php-error-handling-via-htaccess/ It covers all the different options for PHP logging from .htaccess. Bookmark on Delicious Digg this post Recommend on Facebook share via Reddit Share with Stumblers Tweet about it Subscribe to the comments on this post Print for later Bookmark in Browser Tell a friend
