1. Download our Official Android App: Forums for Android!

Wordpress help needed

Discussion in 'Computers' started by MoodyBlues, Jul 29, 2013.

  1. MoodyBlues

    MoodyBlues Choose compassion over cruelty
    VIP Member Thread Starter
    Rank:
     #24
    Points:
    1,013
    Posts:
    6,282
    Joined:
    Jan 27, 2011

    Jan 27, 2011
    6,282
    5,066
    1,013
    Formerly Linux sysadmin/programmer
    $HOME/LosAngeles
    I have an issue with one of my blogs, and before I attempt to dissect its back-end myself, I thought I'd reach out for help here. :)

    I've always used Blogger for my blogs, but decided to go with Wordpress for my latest one. I installed Wordpress on my domain's server, so everything happens there (as opposed to Blogger, which runs on Google's servers). Kindly note that I have zip, zero, zilch prior experience with WP. :eek:

    I'm getting a lot of spam comments. No biggie, really, because they don't post automatically--I've chosen to always moderate comments, so it's not really a big deal. Except for the METHOD the spammers are using. :mad:

    I'm also getting a lot of 'new user registrations'--all of which have [undoubtedly fake] Hotmail addresses.

    They're definitely NOT going to the blog and using the tools provided there for visitors to post comments or register. If they were, their visits would show up in my site logs, but they don't.

    So I know they must be running the actual Wordpress files...but that's where I'm stuck.

    Here's my ~/wordpress directory's contents:

    Code (Text):
    1.  
    2. -rw-r--r--   1 username  group       397 Jul 19  2011 index.php
    3. -rw-r--r--   1 username  group     16899 Jun  8  2011 license.txt
    4. -rw-r--r--   1 username  group      9202 Jul 12  2011 readme.html
    5. -rw-r--r--   1 username  group      4343 May  7  2011 wp-activate.php
    6. drwxr-xr-x   9 username  group      4096 Jul 12  2011 wp-admin
    7. -rw-r--r--   1 username  group     40243 Jun  1  2011 wp-app.php
    8. -rw-r--r--   1 username  group       226 Dec  9  2010 wp-atom.php
    9. -rw-r--r--   1 username  group       274 Nov 20  2010 wp-blog-header.php
    10. -rw-r--r--   1 username  group      3931 Dec  9  2010 wp-comments-post.php
    11. -rw-r--r--   1 username  group       244 Dec  9  2010 wp-commentsrss2.php
    12. -rw-rw-rw-   1 username  group      1302 Nov 29  2011 wp-config.php
    13. drwxr-xr-x   5 username  group      4096 Jul 17 03:41 wp-content
    14. -rw-r--r--   1 username  group      1255 Mar 17  2010 wp-cron.php
    15. -rw-r--r--   1 username  group       246 Dec  9  2010 wp-feed.php
    16. drwxr-xr-x   8 username  group      4096 Jul 12  2011 wp-includes
    17. -rw-r--r--   1 username  group      1997 Oct 23  2010 wp-links-opml.php
    18. -rw-r--r--   1 username  group      2525 Jun 29  2011 wp-load.php
    19. -rw-r--r--   1 username  group     27601 Jun 22  2011 wp-login.php
    20. -rw-r--r--   1 username  group      7774 May 26  2010 wp-mail.php
    21. -rw-r--r--   1 username  group       494 Dec  9  2010 wp-pass.php
    22. -rw-r--r--   1 username  group       224 Dec  9  2010 wp-rdf.php
    23. -rw-r--r--   1 username  group       334 Dec  9  2010 wp-register.php
    24. -rw-r--r--   1 username  group       224 Dec  9  2010 wp-rss.php
    25. -rw-r--r--   1 username  group       226 Dec  9  2010 wp-rss2.php
    26. -rw-r--r--   1 username  group      9839 Jun 29  2011 wp-settings.php
    27. -rw-r--r--   1 username  group     18646 May 22  2011 wp-signup.php
    28. -rw-r--r--   1 username  group      3702 Feb 24  2010 wp-trackback.php
    29. -rw-r--r--   1 username  group      3266 Apr 17  2011 xmlrpc.php
    30.  
    If seeing the subdirectories' contents would be helpful, let me know and I'll post them.

    I figure the spammers know how a standard Wordpress installation exists, i.e., its file names and their location. So I'm thinking all I need to do is change the names of the apps that control posting comments and registering.

    Since they can't see a listing of files in my WP directory, changing the names of the apps to some off-the-wall things no one else would ever think of should solve the problem. :evil:

    This is where someone else's knowledge of WP will do wonders for me, so I don't have to figure it out myself. :D

    First, which files are the culprits?

    Second, which files are THOSE files referenced in? For example, the file that allows someone to post comments, what's its name AND where is it referenced by WP so that the 'post comment' function works when someone wants to post a comment? Whatever I change its name to, I'll have to adjust anywhere it's referenced to reflect its new name.

    Damn, this turned out MUCH longer than I expected. Oh well.

    PS I know I could have posted this on some Wordpress forum somewhere...but then I'd have spared AF my very verbose verbosity. :laugh:
     

    Advertisement

  2. 9to5cynic

    9to5cynic Android Expert
    Rank:
    None
    Points:
    633
    Posts:
    4,872
    Joined:
    Feb 20, 2011

    Feb 20, 2011
    4,872
    1,767
    633
    /home/
    What WP version are you using? I'll fire up my WP VM and see if I can't find anything out.

    I'm guessing the spammers are using an automated tool or script to create the accounts.
     
  3. 9to5cynic

    9to5cynic Android Expert
    Rank:
    None
    Points:
    633
    Posts:
    4,872
    Joined:
    Feb 20, 2011

    Feb 20, 2011
    4,872
    1,767
    633
    /home/
    Okay, looks like the wp-comments-post.php file is the one. But I'm not a WP expert. You could probably use sed to get all the instances of that filename changed quickly.
     
  4. palmtree5

    palmtree5 Sunny Vacation Supporter!
    Moderator
    Rank:
     #35
    Points:
    633
    Posts:
    4,580
    Joined:
    May 2, 2012

    May 2, 2012
    4,580
    3,498
    633
    Male
    Student
    USA
    You may want to check this out
     
  5. MoodyBlues

    MoodyBlues Choose compassion over cruelty
    VIP Member Thread Starter
    Rank:
     #24
    Points:
    1,013
    Posts:
    6,282
    Joined:
    Jan 27, 2011

    Jan 27, 2011
    6,282
    5,066
    1,013
    Formerly Linux sysadmin/programmer
    $HOME/LosAngeles
    Thanks. It's v3.2.1, although I'm being nudged to upgrade to 3.5.2.

    Right--but without the specific files existing as they expect them to [on my server] their scripts won't work. :evil:
     
  6. MoodyBlues

    MoodyBlues Choose compassion over cruelty
    VIP Member Thread Starter
    Rank:
     #24
    Points:
    1,013
    Posts:
    6,282
    Joined:
    Jan 27, 2011

    Jan 27, 2011
    6,282
    5,066
    1,013
    Formerly Linux sysadmin/programmer
    $HOME/LosAngeles
    Thanks--I'll explore it thoroughly later on. A quick glance showed that they refer to a plug-in called Akismet. I don't remember now what the problem was, but I recall that when I installed that [back when I installed WP on my server], there was a hiccup with it and...something. I know it never successfully finished installing, but I don't recall why.

    Also, and I'll know more when I actually explore the info there, keep in mind that my issue does NOT involve people physically accessing the blog and posting comments. They're doing it without visiting. But I don't know whether or not that's addressed there--we'll see! :)
     
  7. MoodyBlues

    MoodyBlues Choose compassion over cruelty
    VIP Member Thread Starter
    Rank:
     #24
    Points:
    1,013
    Posts:
    6,282
    Joined:
    Jan 27, 2011

    Jan 27, 2011
    6,282
    5,066
    1,013
    Formerly Linux sysadmin/programmer
    $HOME/LosAngeles
    Update: I looked through the link above but didn't see anything down-and-dirty like what I wanted to do. Considering I don't have the...enthusiasm?...to dissect everything myself right now, I've ended up adjusting settings from within WP that have at least made it more difficult for spammers to register and/or post. SOMEDAY, when I have the...enthusiasm?!...I'll do it the other way. :D
     
    palmtree5 likes this.
  8. saptech

    saptech Android Expert
    Rank:
    None
    Points:
    343
    Posts:
    3,761
    Joined:
    Dec 9, 2011

    I have a WordPress account and need to work on it more myself. I'm just not into the tech stuff as much as I used to be.
     

Share This Page

Loading...