SitePoint Sponsor

User Tag List

Results 1 to 14 of 14
  1. #1
    SitePoint Member
    Join Date
    Sep 2013
    Posts
    0
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)

    Question I need to fix my old blogs, and hire someone to keep them safe

    I have a few old blogs. They were kind of popular. They operated for years.

    The sites kept getting hijacked. I could not keep up with it myself. I ended up giving up. Google took my sites and banned them from the search rankings etc...

    I want to hire someone to fix the sites, and keep them safe.
    I want to relaunch the sites, but still keep the old posts, as they did get traffic when they were indexed by Google.
    What should I do? Thanks for any and all help.

    I own the .com's
    The sites are self hosted Wordpress blogs.
    The blogs are mostly sports blogs.
    I am hosted on BlueHost

  2. #2
    SitePoint Addict
    Join Date
    Aug 2013
    Location
    New Zealand
    Posts
    274
    Mentioned
    4 Post(s)
    Tagged
    0 Thread(s)
    What was the web server and blogging platform that got hijacked?

    Sent from my XT316 using Tapatalk 2

  3. #3
    SitePoint Member
    Join Date
    Sep 2013
    Posts
    0
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    Bluehost, and Wordpress

  4. #4
    SitePoint Addict
    Join Date
    Aug 2013
    Location
    New Zealand
    Posts
    274
    Mentioned
    4 Post(s)
    Tagged
    0 Thread(s)
    Apache?

    Sent from my XT316 using Tapatalk 2

  5. #5
    SitePoint Member
    Join Date
    Sep 2013
    Posts
    0
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    maybe. I'm not sure.

  6. #6
    SitePoint Addict
    Join Date
    Aug 2013
    Location
    New Zealand
    Posts
    274
    Mentioned
    4 Post(s)
    Tagged
    0 Thread(s)
    Did you use strong passwords? It doesn't matter how secure the rest of the website is if the passwords can be guessed or discovered using brute force dictionary attacks.

    Sent from my XT316 using Tapatalk 2

  7. #7
    SitePoint Member
    Join Date
    Sep 2013
    Posts
    0
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    I did use strong passwords. The onslaught is most likely brought on by backdoor wordpress hacks.

  8. #8
    Hosting Team Leader silver trophybronze trophy
    cpradio's Avatar
    Join Date
    Jun 2002
    Location
    Ohio
    Posts
    4,810
    Mentioned
    141 Post(s)
    Tagged
    0 Thread(s)
    Did you keep wordpress updated? Or leave it stagnant and thus allowed known vulnerabilities to be utilized? Do you have outdated plugins installed? An outdated theme?
    Be sure to congratulate xMog on earning April's Member of the Month
    Go ahead and blame me, I still won't lose any sleep over it
    My Blog | My Technical Notes

  9. #9
    SitePoint Member
    Join Date
    Sep 2013
    Posts
    0
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    yes yes and yes.

    I know what happened. I just need to know what to do now. Thanks

  10. #10
    Hosting Team Leader silver trophybronze trophy
    cpradio's Avatar
    Join Date
    Jun 2002
    Location
    Ohio
    Posts
    4,810
    Mentioned
    141 Post(s)
    Tagged
    0 Thread(s)
    Well first off, you will need to see how clean your data is from the old sites (whether the attacker injected any content into your posts, XSS requests, etc). If the data looks good, export it (I believe you can find that option in the Settings area of the Admin Dashboard).

    Next blow each site away and do a clean install, import the data, and monitor it regularly.
    Be sure to congratulate xMog on earning April's Member of the Month
    Go ahead and blame me, I still won't lose any sleep over it
    My Blog | My Technical Notes

  11. #11
    SitePoint Member
    Join Date
    Sep 2013
    Posts
    0
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    I'll do that. Thanks. Then I will hire someone to keep it safe.

    any other tips?

  12. #12
    SitePoint Addict
    Join Date
    Aug 2013
    Location
    New Zealand
    Posts
    274
    Mentioned
    4 Post(s)
    Tagged
    0 Thread(s)
    I would suggest moving most of you php code outside the DocumentRoot so no one can execute any php files, directly from browser, other than those that are the essential ones. Haven't investigated how to do that specifically for wordpress but the CodeIgnitor php framework gave examples on how to do that.

    Sent from my XT316 using Tapatalk 2

  13. #13
    SitePoint Member
    Join Date
    Sep 2013
    Posts
    0
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    I will investigate that. Thanks!

  14. #14
    SitePoint Member
    Join Date
    Sep 2013
    Posts
    17
    Mentioned
    1 Post(s)
    Tagged
    0 Thread(s)
    Use case sensitive password.
    Want to indexed by google - Post something in your blog, then share, and add some comment on that. It depends on traffic, then google easily indexed your blog.


Tags for this Thread

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •