Version 3.1.4 of HeadSpace2 brings with it:
- Various fixes (multiple CSS files, page-specific plugins, static home page)
Month: June 2007
Anatomy Of An Attack
In an effort to remove all invalid links and redirections from my site I’ve been paying very close attention to my access logs. Courtesy of the list that Redirection maintains I’ve noticed that my site has been under a prolonged attack.
No, there’s no panic just yet, and so far this is not something I’m worried about. The attacks appear to be part of a general ‘find any weakness in any website’ method, rather than a specific and directed attack. Let me give some details of the URLs that are being accessed:
/plugins/spamx/MTBlackList.Examine.class.php?_CONF%5bpath%5d=someURL /wp-content/plugins/myflash/myflash-button.php?wpPATH=someURL /wp-content/wp-content/plugins/wordtube/wordtube-button.php?wpPATH=someURL /wp-content/plugins/Enigma2.php?boarddir=someURL
Site redesign and new plugin
A new design! I decided I needed a new and fresh look and the result is the still-in-progress ‘Guangzhou’ theme. My hope is that it’s both easier to navigate, as well as being lighter and more suitable for future work. Comments, as always, are welcomed.
In conjunction with the new theme I’ve made use of WP-Cache and Gravatar cache, which should result in a noticeable speed improvement. The site itself has undergone a good clean, with all invalid code being replaced, all dead-links now corrected, and the addition of new sections for software, articles, and about myself.
On top of that I’ve added a new plugin: HTML Purified. This plugin changes the default comment filter and replaces it with HTML Purifier, a very exhaustive library that checks, validates, and corrects HTML. Not that WordPress is insecure by default, but this just beefs it up a notch, and ensures that comments are both safe and XHTML valid.