Jer Clarke

It’s a lot easier to just tell wordpress how MANY posts you want to display ( SETTINGS > READING ) than a timeframe. This makes sense because giving it a timeframe could result in no posts showing at some point (as happens with old Movable Type blogs, which had the # of days as the default index screen).

I’d recommend trying to come to terms with that rather than struggling to show the last 7 days (though i’m sure it’s possible)

Thanks a Million Kafkaesqui, that fixed my problem as well. Seems like any loops run inside single.php would need that bit of code. Don’t mind me adding in search phrases below.

comments broken on single post. Comments on wrong post. Custom loop single.php. Comments broken loop. new wp_query(). query_posts(). template.

??

wth, since when is there two jeremy clark[e]’s in WordPress land?

This is alarming.

Just a note: We had locked down and cleaned every directory in the system except for /wp-content/ which had to stay writeable for image uploads. The hacker was using a false jpg file full of php code in conjunction with a .htaccess file in the month folder (/uploads/2008/02) that was allowing php execution of jpg files.

So: if you are being hacked and have full server access, disable .htaccess in your /wp-content/ folder and lock everything but /uploads/ down.

They will think of some other way to get at us i’m sure.

Westi, thanks for the very useful response.

I’m pretty sure they no longer have any php files of the kind you mention. They were using them like crazy but i’ve diff’ed my way through all the files on the server and none seem out of place.

They were using the admin account but since I changed it’s password have been jumping to various editor accounts (we have >100 accounts :S ) and even to author accounts (where they can only edit the author’s own posts, which is what they are doing).

To me this implies that they are not able to generate new accounts and that they are running out of saved hashes to use.

Would patching my copy of WP to use the new ‘salting’ make a difference? I’m about to just tell all our users to change their passwords, but some are MIA and stuff, so it would probably end up being a huge hassle.

Thanks for any input you can give.

Actually that’s a very good idea… I feel like there might be some negative effect of removing privileges from the admin account, but maybe there isn’t…

Does anyone know of a negative effect this might have? OTher than the potential for losing all admin accounts that is…

sounds to me like wp_stats means ‘pageviews’ when they say ‘views’.

Beware that plugin. The authors seem to have moved on and there are some critical bugs that remain in the latest version.

the answer is that like Drupal, WordPress is not a perfect cms out of the box, you have to use plugins that suit your specific needs as a cms creator.

The best one I’ve seen so far for managing content is Fresh Page: https://www.ads-software.com/extend/plugins/fresh-page/

It uses meta fields and custom write pages to let you define what info is shown for different kinds of posts on their posting screen and organizes their sorting.

If you want to organize your pages more simply, then download a page organizer plugin, if you dont’ like how wp lists pages (admittedly it’s very bad, weak sense for sorting lists and displaying siblings etc) then look for a plugin about displaying page listings.

A project like drupal depends on it’s modules for almost all of the functionality, and in my experience they are no better maintained than wordpress plugins, especially with the plugin repository setting standards for files and stuff.

I found that ShortStat was accepting a lot of pings to my site that weren’t legitimate. they were crawlers and spambots and all the other things that aren’t real people. I think you should use wp-stats or analytics, as they are tuned and tweaked to avoid recording fake visitors.

If you go for Google Analytics you can use Tantan’s plugin to see it in your wordpress admin: https://tantannoodles.com/toolkit/wordpress-reports/

you need to find out the connection details for your server. Call your web host and ask them for the following

1 – FTP Server:
2 – FTP username:
3 – FTP password:

Then go into filezilla, open a new connection (probably under File), and enter the server, username and password your host told you. Once you’re logged in you’ll see the folders on your server. Find the folder with wordpress then find the folder in it called /wp-content/ in that folder is a folder called /plugins/.

Drag the plugin folder or file that you downloaded into this folder (not the zip file though), then go to the plugins page in wordpress and it shoudl be listed.

Every article on a wordpress blog has it’s own page. Usually if full articles are showing on the front page then you can click on their title to see a page with just the article, and the single article also has comments and stuff.

If you just want to not show full articles on the front page, you can start using the <!–more–> tag in your posts. Only text before that tag in a post is shown on the front page, then the visitor sees a link that says “read the rest” or something like that.

Using wordpress pages (as opposed to posts) can be complicated when you try to list them all for your visitors, and you would probably want to use sub-pages to break them into sections (which makes it complicated). This would make sense if they arent time-sensitive like posts, though I think that just using posts and categories to organize your articles might be easier, and if you just want to avoid a homepage that goes on forever, use the <!–more–> tag.

Note: I was having the same problem. If you just keep pressing the upgrade button it will continue where it left off and eventually it will finish.

I think the problem is that those errors make the script take a long time to finish, and if you have a shitty server (my shitty server is run by Dreamhost.com) then you end up wasting your 30 second limit and the script just stops, so you have to manually restart it.

My problem now is that once the whole thing is finished my term_relationships are all fucked up and months worth are missing.

One solution I found was to export my DB using phpmyadmin, upgrade it inside a local wp install on my laptop (i use MAMP on mac, XAMPP is the same thing on windows), which only took like 1 second instead of 2 mintues. Then I just exported the database and imported it back into my original db. Not very efficient and pretty dangerous but stuck is stuck.

Just a note: you can also use any category on a post and save it and the problem will be fixed. From what I can tell, the problem just requires you to use the new table at least once and all the categories pop back into place.

Still trying to figure it out. It’s happening to me because of a weird setup from a plugin but turning off the plugins doesn’t fix it.

Best clue so far is that it usually works when you first log in because it loads /wp-admin/, which loads /wp-admin/index.php.

but for some reason the menu at the top doesn’t link to /wp-admin/ or /wp-admin/index.php, instead it links to admin.php?page=index.php , which loads the empty page. Super weird