Thunderchild

1. Community
2. File Management
3. Compromised wordpress and file permissions question

Hello @Thunderchild, Do you happen to remember the name of the firewall application you installed? The most common one we see used with cPanel & WHM is CSF by ConfigServer. I'm happy to help troub...

• View comment
• Thunderchild
• September 04, 2018 17:35
• 0 votes

1. Community
2. File Management
3. Compromised wordpress and file permissions question

The first site to be compromised was up to date wordpress wise but on logging in some plugins did require updating but this site has only been live for a few months so nothing was drastically out o...

• View comment
• Thunderchild
• September 04, 2018 17:21
• 0 votes

1. Community
2. File Management
3. Compromised wordpress and file permissions question

Apache vhosts are not segmented or chroot()ed.Enable "Jail Apache" in the "Tweak Settings" area, and change users to jailshell in the "Manage Shell Access" area. Consider a more robust solution by ...

• View comment
• Thunderchild
• September 02, 2018 20:51
• 0 votes

1. Community
2. File Management
3. Compromised wordpress and file permissions question

3 wordpress sites have been reduced to blank copies of wordpress ready for reinstall, wonder how that happened, oh yea, cPanel ship WHM with no security enabled. Modsecurity has picked up various a...

• View comment
• Thunderchild
• September 02, 2018 19:51
• 0 votes

1. Community
2. File Management
3. Compromised wordpress and file permissions question

Well I'm not sure what it was but they were trying to redirect people to another site to enter login details i think. i simply replaced the altered files with original copies prom wordpress and the...

• View comment
• Thunderchild
• September 02, 2018 17:47
• 0 votes

1. Community
2. File Management
3. Compromised wordpress and file permissions question

Oh and as for not blaming cPanel or wordpress, wordpress was designed to make setting websites up easy for anyone, I see plenty of advice against using it for a forum and this would seem correct, I...

• View comment
• Thunderchild
• September 02, 2018 16:18
• 0 votes

1. Community
2. File Management
3. Compromised wordpress and file permissions question

OK, well it is a start as all of my users are in the UK, I have been looking at the logs for traffic in wordfence and indeed a few from russia and vietnam, pakistan. They all try to log straight in...

• View comment
• Thunderchild
• September 02, 2018 09:27
• 0 votes

1. Community
2. File Management
3. Compromised wordpress and file permissions question

Well no further modifications to any of the site files. I am looking at the server security and under a cPHulk brute force protection page I see a country blacklist/whitelist. What does this apply...

• View comment
• Thunderchild
• September 02, 2018 08:19
• 0 votes

1. Community
2. File Management
3. Compromised wordpress and file permissions question

I was not blaming anyone, simply saying that I have indeed exhausted the wordfence capabilities and it is time to make sure wordpress is also secure. I warned the user against a wordpress based for...

• View comment
• Thunderchild
• September 01, 2018 20:39
• 0 votes

1. Community
2. File Management
3. Compromised wordpress and file permissions question

Well i have done all i can with wordfence. I have indeed done all they recommend already. It is now down to general wordpress security.

• View comment
• Thunderchild
• September 01, 2018 17:54
• 0 votes