security

Large Session Tokens

No idea what happened, but the end user was having issues with his computer and somehow it was hanging on to those cookies. Since they weren’t expired, nothing we did to remove them did a lot of good but getting the end user to clear cookies/cache resolved the issue. I’d love to know more about … Read more

Verifying that I have fully removed a WordPress hack?

Have you identified the exploit vector? If not, you may be leaving yourself open to future exploit. Other things to consider: Change WordPress admin user passwords – done Change Hosting account user password Change FTP passwords Change MySQL db user password – done Change the db table prefix Update your wp-config nonces/salt Check your directory/file … Read more

Force to use STRONG users password and implement rule to prevent REUSE [closed]

You might want to start here https://codex.wordpress.org/Customizing_the_Login_Form which discusses customizing the login form, and has info on the code file used therein. You will need to ‘hook’ into the login form using available hooks (also detailed at the above link). Also, my comment above: “Password history rules imply that you will need to save previous … Read more

+ More
Hata!: SQLSTATE[HY000] [1045] Access denied for user 'divattrend_liink'@'localhost' (using password: YES)