Posted May 29th, 2009
After Firefox 3.0.10 repeatedly crashed on us every time we uploaded a photo in WordPress 2.7.1, we had to find out why this was happening and find the fix for it. After scouring the net keying “wordpress crashes firefox” as keywords, we found the culprit. It is the Google Gears add-on that is causing the crash when you upload a picture.
The fix is simple. Disable Google Gears in your add-ons. You can find it under tools, just click add-ons and look for Google Gears, then click disable. Firefox would require you to restart your browser so be sure you have no unsaved projects in your open windows. Hit restart, try uploading a photo in your WP-admin post, voila! Look we even have uploaded photos on this post which we couldn’t do minutes ago as proof!
Posted May 13th, 2009
If anyone had noticed, we’ve been quiet lately. So quiet that we have left this website vulnerable to malicious hackers and spammers. You know their kind. They prey on unsuspecting blog sites and would grab even a tiny window of opportunity to mess with your blog or website especially when they see no updates have been made for some time.
We have to admit we have left this site unattended as though inviting the very lowlifers who destroy the world wide web. Yes, we’ve been hacked albeit very shortly and easily recovered.
We’re sharing now,
3 Things You Must Do Before Leaving a WordPress Blog or Website Unattended:
1. Make sure you have the latest version of the software you are using, in our case WordPress currently 2.7.1.
No website is TOO SMALL for attacks! We should know that when we had upgraded all of our WordPress blogs but this site from version 2.7 to 2.7.1. The release of the latest update was on February 10, 2009. In March 9 we found this website hacked.
Fortunately, the good hacker wasn’t very good at hacking. That or we were lucky the hacker was subtle and only gave us a wake up call that our website is outdated and we need to fix it. The hacker only managed to hack the WP-config file and disrupted the website’s original design and theme and instead show this message: “There doesn’t seem to be a wp-config.php file. I need this before we can get started. Need more help? We got it. You can create a wp-config.php file through a web interface, but this doesn’t work for all server setups. The safest way is to manually create the file.” (see image above)
The weird part was that everything was accessible from the backend. We can log in to our Cpanel and the dashboard fine. All our posts, comments, themes, files are there. We can edit, add and do anything but when we view any page, our site is just gone and replaced with the message.
At this point we have beads of sweat forming on our foreheads with the realization that we have been hacked! How can that be? We’re only small time bloggers. Apparently it doesn’t matter to them. Websites are their playground and they would play with any sites. Naturally they would target unattended ones.