GNU Midnight Commander valid lines and boxes via Putty

September 27th, 2009

MC invalid lines

MC invalid lines

MC valid lines

MC valid lines


If go to the Linux web server from Windows box using Putty terminal, some times you can see strange effect after GNU Midnight Commander (MC) start. MC window doesn’t show valid pseudo-graphics symbols which it uses for boxes and lines drawing. Look on example at the screenshot from the left. To make this visual presentation valid,
Read This

Login LockDown WordPress plugin Review

September 19th, 2009

WordPress Plugin Review

WordPress Plugin Review

This review is made for Login LockDown v.1.5 WordPress plugin.
Date of review: 19th September 2009
Rating: 4.0
Author profile: Michael VanDeMar
WordPress plugin directory link: Login LockDown

According to author’s description Login LockDown WordPress plugin adds some extra security to WordPress by restricting the rate at which failed logins can be re-attempted from a given IP range. Plugin records the IP address and timestamp of every failed login attempt. If more than a certain number of attempts are detected within a short period of time from the same IP range, then the login function is disabled for all requests from that IP range. This helps to prevent brute force password discovery.
After testing and using it on live site I confirm that Login LockDown WordPress plugin really has functionality declared by its author. But plugin has some security and usability issues.

Read This

PHP code to execute MySQL script

September 10th, 2009

PHP-MySQL

PHP-MySQL


There are advanced and comfortable tools to manage your MySQL databases. For example:

But sometimes you can not use those tools and need the ability to execute some SQL script on server by your own hands, easy and fast way. What to do in such situation? Use this PHP code to execute all SQL commands from SQL script text file, one by one:

Read This

WordPress under gpc_10805 attack

September 8th, 2009

WordPress

WordPress


A lot of information about last attack on WordPress managed sites can be found:
http://mashable.com/2009/09/05/wordpress-attack/
http://www.netpassiveincome.com/wordpress-mysql-injection-permalink/
http://www.warriorforum.com/main-internet-marketing-discussion-forum/121131-wordpress-mysql-injection.html
http://www.andysowards.com/blog/wordpress/breaking-wordpress-mysql-injection-how-to-fix-latest-attack-evalbase64_decode_serverhttp_referer/
http://www.seanrees.com/2009/09/02/well-an-update-worth-its-salt/
But pay attention that not only WordPress sites are attacked in this manner, look at the
http://www.webdeveloper.com/forum/showthread.php?p=1032611
Sites in the HTML only are attacked by this robot too.
Read This

WordPress for Joomla: Author Archive SEF Link setup

September 7th, 2009

WordPress for Joomla

WordPress for Joomla


Recently I setup and tuned CorePHP WordPress for Joomla component for one of my clients site. It is the TopPhoneShop.com
One task I had to resolve was to show all posts of the selected author if visitor click on the author name. I used WordPress the_author_posts_link() function to get the URL to the author archive page.
It returned
www.yoursite.com?authour=nnn
URL instead of search engine friendly (SEF) permalink. In order to change that I use the way I was found at
codex.wordpress.org.
In order to setup the author permalink instead of ?authour=nnn I placed this code to the end of functions.php file at WordPress default used theme folder:
Read This

Your own PHP error handler

September 6th, 2009

Your own php erorrs log

Your own php erorrs log


In case you are not able for some reasons to setup PHP error log through php.ini settings you can use this code to setup your own PHP error handler and thus write needed PHP errors/event into your own log file:
Read This

WordPress Security: Silence is golden. Part 2.

September 6th, 2009

display_errors OFF

display_errors OFF


Some shared hosting providers don’t turn off php error showing by default. If you don’t change this default PHP configuration settings too, your blog has vulnerability issue or even security problem. Why I talk about security problem? Be cause of this can lead to exposure of the absolute path to your WordPress blog installation. Let’s check together. Put this little script into your blog root folder, for example name it phpinfo.php:

< ?php
phpinfo();
?>

Call it from the browser as http://yourBlogURL/phpinfo.php
You will see standart ‘PHP Info’ page with values of different PHP configuration parameters. Check display_errors parameter value under ‘PHP Core section’ now.

Read This

Pages: Prev 1 2 3 4 5 Next