http://fourmilestomay.com/2009/tracking-down-malicious-code-on-a-linux-box/ Web Development - Linux Administration - Networking Sun, 11 Mar 2012 03:43:34 +0000 http://wordpress.org/?v=2.9 hourly 1 http://fourmilestomay.com/2009/tracking-down-malicious-code-on-a-linux-box/comment-page-1/#comment-3968 Advanced WordPress Security Tips | Website In A Weekend Mon, 20 Jul 2009 22:08:13 +0000 http://www.tburns.com/?p=402#comment-3968 [...] a great article on tracking down malicious code in WordPress on a Linux box. Most of this can be done on a Windows PC as well, provided you have Cygwin [...] [...] a great article on tracking down malicious code in WordPress on a Linux box. Most of this can be done on a Windows PC as well, provided you have Cygwin [...]

]]> http://fourmilestomay.com/2009/tracking-down-malicious-code-on-a-linux-box/comment-page-1/#comment-3969 Wordpress security dissected and analyzed: Part 1 | Bandit Defense Tue, 21 Apr 2009 22:17:51 +0000 http://www.tburns.com/?p=402#comment-3969 [...] The moral of this story is, you must trust your theme. Don’t just install any theme without inspecting it first. Finding a theme you like and adding it to your Wordpress installation without first making sure it’s safe is roughly the same as downloading some flashy little Windows program that someone uploaded to a free file hosting service on the internet that makes babies dance on your desktop (or whatever) and blindly installing it without using any anti-virus software. Unfortunately, there’s no such thing as Wordpress theme anti-virus, and if there were it would be trivial to circumvent. You pretty much have to inspect your theme to make sure it does only what its supposed to do before installing it. Here’s a great first-hand account of someone discovering malicious code in their theme. [...] [...] The moral of this story is, you must trust your theme. Don’t just install any theme without inspecting it first. Finding a theme you like and adding it to your Wordpress installation without first making sure it’s safe is roughly the same as downloading some flashy little Windows program that someone uploaded to a free file hosting service on the internet that makes babies dance on your desktop (or whatever) and blindly installing it without using any anti-virus software. Unfortunately, there’s no such thing as Wordpress theme anti-virus, and if there were it would be trivial to circumvent. You pretty much have to inspect your theme to make sure it does only what its supposed to do before installing it. Here’s a great first-hand account of someone discovering malicious code in their theme. [...]

]]> http://fourmilestomay.com/2009/tracking-down-malicious-code-on-a-linux-box/comment-page-1/#comment-3966 Brian Gardner Sat, 14 Mar 2009 22:00:28 +0000 http://www.tburns.com/?p=402#comment-3966 Yes, this was intently added by the people who provided the download, and I guarantee it is something that I have NOTHING to do with. ALWAYS download themes from the theme author sites! Yes, this was intently added by the people who provided the download, and I guarantee it is something that I have NOTHING to do with. ALWAYS download themes from the theme author sites!

]]> http://fourmilestomay.com/2009/tracking-down-malicious-code-on-a-linux-box/comment-page-1/#comment-3967 » Malicious code found in Word Press Theme » Uncontentio.us Wed, 11 Mar 2009 23:50:04 +0000 http://www.tburns.com/?p=402#comment-3967 [...] which made it not so easy to find, and was negatively impacting the performance of his blog. His account is worth [...] [...] which made it not so easy to find, and was negatively impacting the performance of his blog. His account is worth [...]

]]>