Comments on: Ah great: site down for a few days. http://rag.nu/2008/04/13/ah-great-site-down-for-a-few-days/ yeah, just my thoughts ladies and gentlemen. Mon, 12 Apr 2010 20:51:30 +0000 hourly 1 http://wordpress.org/?v=3.0 By: Donncha O Caoimh http://rag.nu/2008/04/13/ah-great-site-down-for-a-few-days/comment-page-1/#comment-2371 Donncha O Caoimh Wed, 23 Apr 2008 09:28:50 +0000 http://rag.nu/?p=64#comment-2371 Just to add my two cents here, it was probably the spammers who hacked thousands of WordPress blogs using old exploits. Even blogs that updated quickly after releases were open to attack as the spammers may have known about the exploits before we did. Hopefully as you've changed your passwords you won't see any more problems from these evil guys. Just to add my two cents here, it was probably the spammers who hacked thousands of WordPress blogs using old exploits.
Even blogs that updated quickly after releases were open to attack as the spammers may have known about the exploits before we did.

Hopefully as you’ve changed your passwords you won’t see any more problems from these evil guys.

]]> By: admin http://rag.nu/2008/04/13/ah-great-site-down-for-a-few-days/comment-page-1/#comment-6 admin Tue, 15 Apr 2008 05:12:02 +0000 http://rag.nu/?p=64#comment-6 @NobodyNotable: I wish it was that. Wordpress is pretty well hardened against sql injection. I think it was vulnerable because of the plugin wp-super-cache. @NobodyNotable: I wish it was that. WordPress is pretty well hardened against sql injection. I think it was vulnerable because of the plugin wp-super-cache.

]]> By: NobodyNotable http://rag.nu/2008/04/13/ah-great-site-down-for-a-few-days/comment-page-1/#comment-5 NobodyNotable Tue, 15 Apr 2008 04:07:00 +0000 http://rag.nu/?p=64#comment-5 Could be an SQL insertion trick? if wordpress is running against MySQL or PostgreSQL, that might be how they did it. Try using some regular expression checking in your text fields for where users can enter comments or text. Could be an SQL insertion trick? if wordpress is running against MySQL or PostgreSQL, that might be how they did it. Try using some regular expression checking in your text fields for where users can enter comments or text.

]]> By: Zoe http://rag.nu/2008/04/13/ah-great-site-down-for-a-few-days/comment-page-1/#comment-4 Zoe Mon, 14 Apr 2008 03:01:40 +0000 http://rag.nu/?p=64#comment-4 boooo that's sucks! :-( boooo that’s sucks! :-(

]]> By: admin http://rag.nu/2008/04/13/ah-great-site-down-for-a-few-days/comment-page-1/#comment-3 admin Sun, 13 Apr 2008 21:19:05 +0000 http://rag.nu/?p=64#comment-3 Not sure really. There may be an exploit in WP some where or maybe a plugin I was using. Not sure really. There may be an exploit in WP some where or maybe a plugin I was using.

]]> By: Chuck http://rag.nu/2008/04/13/ah-great-site-down-for-a-few-days/comment-page-1/#comment-2 Chuck Sun, 13 Apr 2008 21:12:19 +0000 http://rag.nu/?p=64#comment-2 Sucks man, know how they did it? Sucks man, know how they did it?

]]>