Hacked after using Velvet Blues

Viewing 1 replies (of 1 total)
  • adamjedgar

    (@computersimulatorscom)

    I am no expert at this however what i do know…

    Before using any plugins or manual methods when moving a website, one must read the wordpress codex particularly the part about checking permissions.

    After using any sort of method to change directory, server, or url of a wordpress site, you must go through the new location files and directories and ensure that all permissions are correct according the minimum wordpress requirements outlined in the codex. Don’t just assume everything will be fine because the production site is functioning ok (this does not mean it is secure)

    That would explain to me why your site got hacked…the http (centos/fedora/redhat) or www-data (ubuntu) directory permissions on the original server were not configured correctly for your wordpress site, and you did not check this before letting site go live. Its a wonder the live site wasnt hacked as well.

    (btw, just my personal opinion…its not a good idea to post the real IP address of your test server to the entire world, now hackers who read this will all know you don’t have good security on your test system and will continue to go after that IP!)

Viewing 1 replies (of 1 total)
  • The topic ‘Hacked after using Velvet Blues’ is closed to new replies.