This is a bit of a heads up; it appears that Russian hackers are on the prowl again. They are basically targeting Conservative blogs here in America. Michelle Malkin announced that she had be hacked.
This info is for those who run self-hosting blogs, if you are on WordPress.com or Blogger.com or yes, even at Typepad; you have zero to worry about. However, if you are self hosed or run WordPress at your own domain; you need to add the following to your .HTACCESS file.
---- *** limit GET POST ***
order allow,deny
allow from all
deny from .RU
deny from 217.114.234.*
deny from 91.124.120.*
deny from 174.129.228.*
deny from 217.114.234.*
deny from 91.124.219.*
deny from 95.30.158.*
deny from 178.95.123.*
Deny from 178.95.123.*
Deny from 91.124.178.*
Deny from 91.124.154.*
deny from 91.124.91.*
deny from 178.95.84.*
*** Slash limit ***
replace the ***’s with the symbol over the comma and the period. and of course, the “slash” with an actual right arrow (thing over the comma) and a slash! WordPress eats them as actual code.
If you have zero idea what this is, contact your hosting company.
We Conservatives should expect an uptick in hacking attempts on Conservative Blogs as time progresses here and Obama’s agenda falls apart. Expect to see progressive hackers to try and bring down Conservative blogs. To avoid charges; they will employ hackers from third world Countries and countries; like Russia, to do their bidding.
Another thing to remember; if you are running WordPress on your own Server; YOU MUST KEEP THE SOFTWARE UPDATED AT ALL TIMES! Otherwise, you are basically a moving open target! If you access the back end of your blog; which you should, at least once a week — and you see a notice to upgrade, DO IT! Don’t just look at the damned notice. Quickest way is this:
1. Disable ALL Plug-ins
2. Hit upgrade button
3. Turn on all plug ins and look for errors.
If you see errors and you know how to fix ’em, then do so, if you don’t, either get rid of the plug in, which is now doable via WordPress back end; or look for a newer plug in via WordPress’s plug in repository. Really, losing an few year’s worth of work, is NOT worth a silly plug in that is outdated and not being supported any longer.
I also recommend this plug in for wordpress, that limits logins to your site. There is also a plugin that will do a security scan on your blog as well. I use it and I think you should too. I also recommend that you read this here, on how to “harden” WordPress. against attacks.
Folks, it’s all about being smart about this sort of stuff. We can out wit the hackers, we just have to know how.