crazywolf2010
asked on
Wordpress Security Hardening
Hi,
I have a wordpress 3.2.1 blog and a 3rd party coder left file permissions open at wp-content/plugins/owa/plu gins . Now it's causing trouble...
I have errors as below :
Warning: mysql_connect() [function.mysql-connect]: Access denied for user 'odesk_oracledba'@'boscgi2 802.eigbox .net' (using password: YES) in /hermes/bosweb/web159/b159 5/ipg.news ite/newsit e_co_uk/wp -content/p lugins/owa /plugins/d b/owa_db_m ysql.php on line 117
Warning: mysql_select_db(): supplied argument is not a valid MySQL-Link resource in /hermes/bosweb/web159/b159 5/ipg.news ite/newsit e_co_uk/wp -content/p lugins/owa /plugins/d b/owa_db_m ysql.php on line 120
Warning: mysql_set_charset() expects parameter 2 to be resource, boolean given in /hermes/bosweb/web159/b159 5/ipg.news ite/newsit e_co_uk/wp -content/p lugins/owa /plugins/d b/owa_db_m ysql.php on line 123
Warning: mysql_errno(): supplied argument is not a valid MySQL-Link resource in /hermes/bosweb/web159/b159 5/ipg.news ite/newsit e_co_uk/wp -content/p lugins/owa /plugins/d b/owa_db_m ysql.php on line 170
I wish to know how I can fix these errors and what should I do to make my wordpress watertight secure?
newsite_co_uk is replaced to hide identity.
Many Thanks
I have a wordpress 3.2.1 blog and a 3rd party coder left file permissions open at wp-content/plugins/owa/plu
I have errors as below :
Warning: mysql_connect() [function.mysql-connect]: Access denied for user 'odesk_oracledba'@'boscgi2
Warning: mysql_select_db(): supplied argument is not a valid MySQL-Link resource in /hermes/bosweb/web159/b159
Warning: mysql_set_charset() expects parameter 2 to be resource, boolean given in /hermes/bosweb/web159/b159
Warning: mysql_errno(): supplied argument is not a valid MySQL-Link resource in /hermes/bosweb/web159/b159
I wish to know how I can fix these errors and what should I do to make my wordpress watertight secure?
newsite_co_uk is replaced to hide identity.
Many Thanks
ASKER
OK, I will chage file permsisions but more importantly how can I fix these errors?
'odesk_oracledba'@'boscgi2 802.eigbox .net' - I never configured this mysql user, I dont from where it got there.
Thanks
'odesk_oracledba'@'boscgi2
Thanks
Clearly it came from the third party coder. Without seeing all of what they did and why it's almost impossible to answer. There's no chance to get them to come back and clean up their mess?
ASKER
Yeap, he ran away. He won't come back.
The errors are retutned for plugin "wp-content/plugins/owa/pl ugins". Is it possible for me to delete this plugin cauing errors?
I tried searching under wp-admin for "owa plugin" but found nothing.
Thanks
The errors are retutned for plugin "wp-content/plugins/owa/pl
I tried searching under wp-admin for "owa plugin" but found nothing.
Thanks
ASKER CERTIFIED SOLUTION
membership
Create a free account to see this answer
Signing up is free and takes 30 seconds. No credit card required.
'odesk_oracledba'@'boscgi2If I had to guess I'd say your 3rd party coder put it there, too. Did you use odesk.com to hire him? If not, perhaps your coder subcontracted there.802.eigbox .net' - I never configured this mysql user, I dont from where it got there.
How about deleting/disabling the owa plugin? Do you know what it is? Rename the folder if you don't have access to the admin.
Also, let this be a lesson about the hazards of Odesk (assuming you hired directly through them). I've had much, much better luck with jobs.wordpress.net
Most plugin folders should be set to 755 for security. As for the rest, read this:
http://codex.wordpress.org/Hardening_WordPress