Fast Hacker Crew out of Indo.
Bastards.
WP 2.9.1, wtf? Anybody got experience with these fuckers?
Bastards.
WP 2.9.1, wtf? Anybody got experience with these fuckers?
The nature and size of WP means that there are almost guaranteed to be exploits available with each release.
Do you know how they got in?
<edit>
got there a few seconds before me
use sftp, secure WP passwords and IP lock the admin area.
Also - plugin files are editable from WP. Check the last edit time of all the plugin files.
</edit>
Remove the WordPress version number from the template.
@ Stanley, from every .php file in the install?
<?php remove_action('wp_head', 'wp_generator'); ?>
Fuck, now they're in the cpanel, changed passwords, sonnovabitch!!!
Fuck, now they're in the cpanel, changed passwords, sonnovabitch!!!
Just find the functions.php file in your theme's folder. Add this line:
This will stop WordPress from automatically adding a <meta name="generator" content="WordPress X.X" /> tag.Code:<?php remove_action('wp_head', 'wp_generator'); ?>
You may need to also check your theme's header.php file to make sure the theme author didn't add their own version number tag.