Comments for sean's place

Comment on DIY Time Machine Server by sean's place » Blog Archive » ZFS Update

sean's place » Blog Archive » ZFS Update — Tue, 15 Jun 2010 01:06:48 +0000

[...] There is a 400G reservation and quota for Time Machine; without it, Time Machine would consume up to the maximum 928G (see my earlier post…) [...]

Comment on An experiment by Scott Rippee

Scott Rippee — Mon, 15 Mar 2010 21:34:15 +0000

Why not use a SCM system to keep your code sync’ed and ready to use on any system? Something like Dropbox to keep all of your documents and other files available everywhere? I use dropbox to hold git and bazaar repos that are automatically synced to all of my boxes. Then on the local box I pull and push the changes to the dropbox repo folder. Takes the admin pains out of setting up and maintaing a version control system.

Comment on An experiment by Sean

Sean — Mon, 15 Mar 2010 02:42:09 +0000

I actually do need it… the Garmin 430 (avionics set) simulator only runs on Windows.

Comment on An experiment by cthrax

cthrax — Mon, 15 Mar 2010 02:33:54 +0000

A NEED for Windows? Sounds like someone has drunk the punch… Don’t let woof hear that.

Comment on Well, an update worth its salt by WordPress under gpc_10805 attack | ShinePHP.com

WordPress under gpc_10805 attack | ShinePHP.com — Tue, 08 Sep 2009 15:32:26 +0000

[...] http://www.seanrees.com/2009/09/02/well-an-update-worth-its-salt/ But pay attention that not only WordPress sites are attacked in this manner, look at the [...]

Comment on Well, an update worth its salt by vladimir

vladimir — Tue, 08 Sep 2009 01:02:55 +0000

I think it is not the WordPress vulnerability issue. Look at this thread
http://www.webdeveloper.com/forum/showthread.php?p=1032611
A lot of none-php clean HTML sites were infected with this gpc_() in the same manner. It is more probably that it uses compromised FTP passwords which stolen from your desktop by some virus which infected your computer.

Comment on Well, an update worth its salt by Tech Club | Small Business Technology News and Innovations

Tech Club | Small Business Technology News and Innovations — Sat, 05 Sep 2009 20:41:29 +0000

Comment on Well, an update worth its salt by Sean

Sean — Sat, 05 Sep 2009 19:47:23 +0000

It looks like there are more details (but not many more): http://mashable.com/2009/09/05/wordpress-attack/

Comment on Well, an update worth its salt by benanne

benanne — Fri, 04 Sep 2009 13:50:05 +0000

I was running v2.6.3, and the same thing happened to me. At least, the permalink setting was changed. I haven’t found any injected code. To get rid of it, I fixed the permalink setting, but that turned out to be insufficient; closer inspection of my database revealed that there was somehow another user with administrator rights (I’m supposed to be the only one), and his username was set to a bunch of Javascript. Upon discovering this, I manually removed all references to this user from the database (because he wouldn’t show up in the WP admin pages) and upgraded to 2.8.4. I hope that does it, but I’m not sure yet.

I just thought I’d mention it here, because you don’t say anything about suspicious administrator users, so it’s possible that that’s something you have overlooked. Also, there seems to have been an outbreak of this lately, wordpress.org’s support forums are swarming with people reporting the same symptoms.

Comment on Well, an update worth its salt by passer-by

passer-by — Fri, 04 Sep 2009 08:59:44 +0000

Hi Sean,

I too have been hit by this, on the 2nd Sept 2009.
I’m a bit stunned as like yourself I have no idea how this person has done it. Kudos to the little punk.

I am beginning to think its a WP exploit. I have a part of my website served up from a private area, none of the files there were effected. Everything effected has been in the root wordpress directory. I am using WP 2.6. Maybe time to upgrade.