You are currently browsing posts tagged “phpmysite”

WordPress Brute Force Attacks on non-WordPress Sites

December 1, 2017 // Posted in Computer Tips, General, Main, Tips and Tricks (Tags: , , , , , , , , , , , , , , , , , , , , , , , , , , ) |  No Comments

There are more and more would-be hackers out there that are trying to attack WordPress Sites via a brute force attack on the wp-login.php file that is used on worpress sites to log in to the site.

The problem is that they do not know what are WordPress Sites and what are not so they try connecting to a wp-login.php file on almost every site. This can lead to hundreds of attempts on your non-wordpress by these hackers trying to find a wp-login.php file on your server. Check your server log and you will see all these attempts.

Now if as many people as possible added a wp-login.php to their non-wordpress site re-directing any call to that page back to the IP address that attempted to find it, then these idiots would perform a DOS attack on their own PC,
and stop them sending any more requests.

Here’s how to do it:

Create a file called wp-login.php in your non-wordpress site’s root folder with the following text in it (Your server must be php enabled):

 

 

 

 

Let’s hit back at these idiots together.
Steve

Norton have got it very wrong with WS.Reputation.1 detection

April 15, 2017 // Posted in General, Main, Uncategorized (Tags: , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , ) |  No Comments

Norton's WS.Reputation.1 detection Notice

Norton’s WS.Reputation.1 detection Notice

The way Norton’s WS.Reputation.1 detection works is the most ridiculous thing I have ever seen in an anti-virus protection program.

 

If someone creates a new program or a new update to an existing program, and only a few people that use Norton have the file or it has only just been built, then Norton immediately deletes it and reports it as a threat without any checks on the file for malware.

Now if that isn’t ridiculous then I don’t know what is. It means that every new program that is first added to a user’s PC that is running Norton gets flagged as a threat for no reason at all.

Here is an extract from Norton’s write-up:

“WS.Reputation.1 is a detection for files that have a low reputation score based on analyzing data from Symantec’s community of users and therefore are likely to be security risks. Detections of this type are based on Symantec’s reputation-based security technology. Because this detection is based on a reputation score, it does not represent a specific class of threat like adware or spyware, but instead applies to all threat categories. 

The reputation-based system uses “the wisdom of crowds” (Symantec’s tens of millions of end users) connected to cloud-based intelligence to compute a reputation score for an application, and in the process identify malicious software in an entirely new way beyond traditional signatures and behavior-based detection techniques.”

They themselves say that Because this detection is based on a reputation score, it does not represent a specific class of threat , So they think that the file is not necessarily a threat, but delete it any way, just in case! DUH!  That IMO, is not the way antivirus protection should work. It should only identify a real threat that can be proven as a threat, that’s how all other antivirus programs work.

So it sees how many Norton users are using the file and when it was created to make it’s decission? DUH! That means that as it is deleted immediately by Norton, the number of Norton users will never increase so the ‘Reputation’ score will never change. So how can you increase the reputation score?

I myself have recently created a new small program and had this situation with users and have had to refund their purchases because Norton says my installer is a threat. My software is checked by an independent source before distribution with 61 different anti-virus engines and all report they are CLEAN. I have been developing small software applications for 25 years and have never had any issues with my programs they are all malware free and to have Norton now start saying they are a threat is deformation of my character and must be illegal to falsely claim a developer’s products are malicious.

This ridiculous identification is ruining the reputation of small developers as every new program they develop and set up on a PC running Norton, is immediately deleted and flagged as being a threat, when there is no threat at all. Most users will believe Norton and then never take the steps (which are not simple) to get around the Norton false detection.

This needs to be addressed by Norton Now! It is ruining the good reputation of small developers because Norton is saying their software is a risk when it is perfectly safe and no risk at all.

If you are experiencing these issues with Norton please comment below.

regards

Steve

The 1st anniversary of Windows 10

July 30, 2016 // Posted in General, Main (Tags: , , , , , , , , , , , , , , , , , , , , , , ) |  1 Comment

It’s the 1st anniversary of Windows 10

How are you getting on with windows 10?

 

 

Here are a few of my observations:

  • Too many ads, you can’t even play solitaire now without getting bombarded with Microsoft Ads. When you are paying for a system such as Windows 10 you should NOT be bombarded with ads IMO.
  • Too memory hungry, constant hangs whilst windows swaps to disk swap file as memory is always full.
  • Start up time is longer than XP and 7.
  • Many more ‘program is not responding’ messages and then after several minutes the message disappears and the program continues, probably linked to my second point.
  • AVG and Windows 10 between them lock up the PC whilst any updates or scans are running. Doesn’t happen on 7 or XP.
  • I have had to disable active tiles to help speed up Win 10, and disable various other items or Windows 10 runs very slow even on my Quad Core Processor running at 3.0GHz on each core.
  • I still feel that Windows 7 is the best version of windows to date.

Please comment to add your findings.

regards

Steve

Ransomware Operation Taken Down by Cisco

October 7, 2015 // Posted in General, Main (Tags: , , , , , , , , , , , , , , , , , , , , , , , ) |  No Comments

Computer Hi-Jacked?

Computer Hi-Jacked?

A ransomware operation that it is estimated netted $30million a year by installing ransom software on unsuspecting users computers has been disrupted by security researches at Cisco.

The Angler Exploit kit, also known as the hack-by-numbers tool is sold in underground crime forums to people who don’t want to go through the hassle of developing and testing exploits themselves. Angler has the ability to successfully infect an estimated 40 percent of the end users it targets using attack code that surreptitiously exploits vulnerabilities in browsers and browser plugins. In many cases, the security flaws have already been patched, but, in some cases the kits exploit zero-day vulnerabilities for which there is no currently available fix.

A large number of infected users were connecting to servers operated by service provider Limestone Networks. With the co-operation of Limestone and examining some of the servers they found that the single operation was targeting as many as 90,000 users a day.

“This is a significant blow to the emerging hacker economy where ransomware and the black market sale of stolen IP, credit card info and personally identifiable information  are generating hundreds of millions of dollars annually, Talos researchers wrote in a eport about the takedown.

More information at http://talosintel.com/angler-exposed/

My Experiences of Windows 10 and Privacy Issues

August 14, 2015 // Posted in Computer Tips, General, Main (Tags: , , , , , , , , , , , , , , , , , , , , , , , ) |  No Comments

The best one yet

‘The best one yet’??

 

Ok, so I have been using Windows 10 for several days now and here are some of the issues I have found.

First of all there is the Windows Updates: When Windows 10 performs updates on close down, you do not get the old familiar Windows 7 messages “Installing Update x of xx, do not switch off your PC”, instead you just get a Black Screen with continuous hard drive activity, and it is easy to just hit the power switch thinking nothing is happening.

Then theres the Memory issues: One of which cause images to become just Black Squares in apps and thumbnails and icons, some browsers just go black when there a lot of images on a page. Now whether this is a Video Card Driver that Win 10 installed, or a memory management problem in Windows 10, I have yet to ascertain,  but I keep getting an error on shutdown that is something like “Access Violation, Memory error, windows is trying to access an invalid memory location”, which I never got on Windows 7.

Then there’s the Privacy Issues:  Some Windows 10 features, such as Cortana and Bing search, continue sending data to Microsoft, even when they are turned off. Some apps and services will communicate with the Microsoft servers, even when you tell them not to by the individual software’s privacy settings.

For example: Windows 10 will periodically send data, purported to be used for OneDrive,  for reasons unknown, even on a local account that isn’t connected to a Microsoft account. Why it is being sent is a mystery.

In at least one case, it has been found that information that can identify the user is also sent.

Cortana, will send data to Microsoft, even if it is disabled, and that data contains a computer ID that allows Microsoft to determine all the Cortana requests from the same computer.

And what’s more some of these connections would connect to Microsoft’s servers through unencrypted channels.

IMO, If you disable these services as you don’t want to use them, then that should really disable them and any data they would transmit.

My Experience of Windows 10 – Part 2

August 8, 2015 // Posted in Computer Tips, General, Main (Tags: , , , , , , , , , , , , , , , , , , , , , ) |  No Comments

 Logging Into Windows 10, Updates and Memory

One thing I do not like about Windows 10, is that many functions require you to be logged into windows using an online Microsoft Account.

  1. I do not want to log in to windows using an Internet based Account.
  2. I do NOT want my personal data stored on a ‘Cloud’ based server.
  3. What happens if it is set to an online account to login and there is no Internet connection.
  4. Why can’t it just log in to the online account just to use that function such as Cortana, which has to have login via the online account?
  5. So Cortana is useless if you have no Internet connection?
  6. There are too many security issues logging in via an online account.
  7. I prefer to log in locally where my data is secure.

Windows 10 is also very memory hungry compared to Win 7, and even with my 4GB USB Ramdisk, is constantly buffering memory to a hard disk cache and has made some apps very slow because of this.

Windows 10 did an update Friday without asking, and I did a reboot of the machine, (that’s how I noticed it was doing something), there was no information that it was happening and on shutdown the screen went black although the hard disk was going crazy, so it was doing something. I left it for 3 hours and the hard drive had stopped being used but the screen was still black, and took a chance and switched off the machine and back on, then I got an opening message ‘Windows is configuring Updates 10%..’ etc and after another hours or so I got the welcome screen. I checked the windows update area and it says all updates were successful.

Not as clean and informative as Win 7.

More to follow

HTML5 and CSS3 OR NOT HTML5 and CSS3 Web Developer Dilemma

December 25, 2013 // Posted in Computer Tips, Main (Tags: , , , , , , , , , , , , , , , , , , , , , , , , , , ) |  No Comments

New Formats

New Formats

Dilemma for web site developers with HTML5 and CSS3.

 

As you are no doubt aware, HTML5, CSS3 and now a new version of jQuery that is aimed at HTML5 and CSS3 have been released and are now supported to some extent in the latest versions of major browsers. Also some Web authoring software has also been updated to use these, such as Serif WebPlus X7.

This is all well and good if you know that everyone that will use your web site has a browser that supports the latest HTML5 and CSS3 etc. But how can you determine that, the short answer is “You can’t”. This means that users with older browsers will not see your site as you intended it to look, and many, if you use the new CSS elements to identify form required fields etc, will not be able to use your forms for contact or submitting information. This is even more prevalent when it comes to mobile sites. How many mobile phone users do you know that update their phone software every time a new version is available?  I thought so, almost none! So they will still be using browsers equivalent to IE6 or 7, which have no support for the new html code.

There are also millions of PC users throughout the world that use IE6 and 7 browsers and other browsers that do not support HTML5 etc. So are you going to create a site that cannot be accessed by millions of potential visitors?  If your site is a retail business you could be losing a high percentage of your business.

Even the latest versions of all major browsers do not all support all of the new HTML5 and CSS3 functions, some support some and not other functions, and others support some different functions and not those that others do.

So which HTML5 and CSS3 features do you use? This is a question I cannot answer for you, you will have to make your own decision on this one.

And then there is the old IE thing, IE10 and IE11, although allegedly HTML5 and CSS3 compatible, has some major issues on formatting and extent of compliance, particularly with image compatibility on things like transparent pngs, text formatting, and JavaScript issues etc.

You you need to make some important decisions when you create your new web sites:

  • Do you target your sites at visitors with specific browsers? (IMO not a good idea.)
  • Do you create two sites, one for the new protocols and one that is compatible for the old protocols? (Also probably not a good idea unless the extra work involved is not a problem.)
  • If you choose the above, do you include a script that automatically detects the browser and switches accordingly, or do you ask the user to select a version?
  • Do you stick with the earlier versions of HTML and CSS3 code and stay compatible with most browsers? (Maybe a good choice for the time being until the percentage of users with later versions of browsers increases substantially)

The other issue is the latest jQuery, which has many changed functions and code. I did see a statement that said it was backward compatible with older versions, but trust me when I say that it is not. I have found this out after spending hours trying to find out why things that used to work fine have all of a sudden stopped working.

WebPlus X7, for example now uses the later version of jQuery, and if you have say, a webplus light box on your page the later version of jQuery is then added.

You then add features from jquery-ui 1.7,1.8 etc not adding jquery as WebPlus has already added it for the light box, and the jquery-ui functions no longer work. So you either have to use the later jquery-ui (which doesn’t allow some of the functions of the older versions – bah!) or manually add a different system for light boxes and the earlier jquery manually.

Other third party tools also present a similar issue as many were developed before the new version of jQuery was released.

So if you find that things suddenly do not work when you upgrade your site to HTML5, CSS3 and/or the Latest version of jQuery, perhaps now you will have an idea of where to start looking, and not have to spend hours trying to locate the issues as I have recently.

I hope that this post helps someone in some way.

 

Steve

 

 

 

Are your Facebook Posts not being seen?

December 22, 2013 // Posted in Computer Tips, Main (Tags: , , , , , , , , , , , , , , , , , , , , ) |  No Comments

#facebook

#facebook

You may have noticed that recently your posts on facebook are not being seen by many people.

There is an explanation for this.

Facebook announced recently that users posts will not be seen by all ‘page likers’ unless you pay for them to be seen, and the numbers of people who do see them will keep reducing over the coming months.

In some cases no-one will see your posts.

Whilst this is OK for businesses that are selling something as they should pay for the service, when you are posting free content or your personal posts, facebook are now saying that you too will have to pay if you want your posts to be seen. You may have noticed the number of pop-ups that have started to appear with messages such as “Boost your post for only XXX.XX”, “Reach more people…”  etc.

Facebook can of course do whatever they want, after all it is their system, but this may lead to many users leaving facebook, if their posts are not seen by anyone, after all what’s the point of posting stuff that only you will see?

I, for one, am not going to pay facebook for people to view my personal posts or free content posts, so am now looking at other alternatives to share my posts, such as Google+, and will post more on my blogs. I am also going to set up a mailing list so that my ‘page likers’ can subscribe and have my content delivered to their inboxes.

If you do not want to pay facebook for people to be able to view your posts, then you may also want to consider the alternatives.

I hope that this post has helped you understand why your posts reach on facebook have reduced substantially, and will allow you to find alternatives before your posts are just for you to see.

Steve

www.richosoft.co.uk

www.myphpsite.co.uk

 

The Dummies Guide to being a Moron on the Internet

December 8, 2013 // Posted in General, Main (Tags: , , , , , , , , , , , , , , , , , , , , , , , , , , , , , ) |  No Comments

Dummies Guide

Dummies Guide

How to be an absolute moron on the Internet

The Process in 10 Easy Steps

STEP 1

Go to Google, Yahoo and any other free email services and set up hundreds of new email addresses. You will need some that are absolutely meaningless like QwvFHJH@gmail.com and some that will be useful in later steps such as barclaysbank.custserv@hotmail.com.

 

 

STEP 2

Scan internet pages for email addresses, and save them in a database for future steps, or better still set up a web bot to do it for you, it can get them while you are sleeping then.

STEP 3 (Optional)
Write a facebook app and call it something like CityVille or FarmVille or similar, you will be able to get your hands on millions of emails and post to millions of walls once you have got this.
STEP 4

Find some free web hosts and get some web space, get a domain name that means nothing like qtyrew.com and set up some sub domains like paypal.admin.qtyrew.com so they look like they belong to PayPal, banks etc.

STEP 5
Use the email addresses you set up in Step 1 to send emails out to all the addresses you got in step 2, telling them that you have access to millions of dollars and want to get it out of your country and ask them to send their bank details to you. You could also send out some saying you are from a bank or paypal (see how useful that barclaysbank.custserv@hotmail.com is going to be) telling them to enter their login details onto a page you set up on the webspace in STEP 4.   You won’t get many people that fall for it but if just 1 out of a million emails sent does, it must be worth it, yes?
Repeat Step 5 a short while later in case they didn’t reply, and again a short while later, it might work.
STEP 6
Join an affiliate program for a sex site, online drug shop or cheap loans company or the like.
STEP 7
Visit every bulletin board,blog or forum on the Internet, or better still set up a web bot to do it for you, and post links to the sites you are affiliated to. Don’t forget to add your affiliate ID or you won’t get paid if some other moron actually clicks your link and makes a purchase.
STEP 8
Use the affiliate links you got in step 6 in emails to send out to all the addresses you got in step 2. Use a different email address, one of the ones you set up in step 1, to the one you used for other scams and phishes.
STEP 9

Remember that app you set up in Facebook? Well by now it has collected hundreds of email addresses, user names and granted you access to millions of users walls and news feeds. Fill your boots!

Send out links using the affiliate links you got in step 8 to all of their news feeds, with a message something like ‘This user Likes xxxx. Click the link to view’.
What the hell, you might as well send emails like you sent in step 5, to all of these too, got to have half a chance with these, after all they were dumb enough to use your app!
STEP 10
After all this, if you haven’t made any money, and frankly, there’s not much chance you will, but at least you’ve pissed off a lot of people, and that’s probably the police at your door now, you could always try and sell all the email addresses you have gleaned to some other moron who’s thinking of trying the same things.
Hope you enjoy.
Steve

Top 10 FREE Traction Building Ideas for a New Web Site

November 12, 2013 // Posted in Tips and Tricks (Tags: , , , , , , , , , , , , , , , , , , , , , , , , , , , , , ) |  No Comments

The dot com era proved that just building it isn’t enough. The chicken and the egg issue exists you need customers to get customers… and attempting to launch a web site, is that issue on steroids. So, how to get traction?

Here are Ten FREE Traction building Ideas we are trying:

1) Email Your Friends:
Find everyone you know that relates to your target market and introduce them to your website via email… as you know them, leverage every piece of emotional capital you have with them to encourage them to take a look at your new site and join.

2) Ask Your Friends to Refer Others:
If you send an email to people who are your target market, clearly articulate why it is valuable to ‘THEM’ (not just you) to join your site… and then ask and make it easy for them to refer people they know. Here’s an example of an email I wrote that asks for a referral –

“Please forward to anyone that may be interested… entrepreneurs, advisors, people with Blogs, press contacts etc! Even forwarding to four or five contacts will make a big difference for us!

Happy New Year and thanks!

++

I’ve just discovered a new web service bringing potential business advisors together with entrepreneurs and early stage businesses. For Advisors – It’s a great way to discover new deal flow and get involved in a hot new company. For Entrepreneurs – a great way to take your business to the next level in 2007!

The site is called Advisor Garage – http://www.AdvisorGarage.com and was recently featured in Business Week!

Please sign up and forward this email to great advisors and entrepreneurs.
++

After three or four weeks of steps 1 & 2 we found that we had begun to get a few people onboard… So now what?

3) Write a Press Release and get it OUT there…
I can almost hear a few folks swallowing and already considering looking for the next blog… it really isn’t that tough and it isn’t expensive. In fact, its FREE! Don’t believe me? Consider signing up to PR Leap (http://www.prleap.com/learn_more). Not only do they have some good articles which explain for dummies (like me!) how to write a press release but they also offer a free submission service to multiple channels such as Google News, Google Search, Yahoo! Search, Topix.net, Technorati, MSN, Ask News, Moreover, NewsNow and others. According to their website – PR Leap is the best way to send your news release(s) to all major search engines, newswires, and websites. And basic accounts are free!

So what happened with us? Well we signed up, created a one page press release (took about 30 minutes), submitted it and it was approved earlier today. It will appear tomorrow. If you are interested, the link to the press release is: http://www.prleap.com/pr/61185/

The basic plan (read… Free) comes with stats, so I’ll let you know in a few days if the press release was actually read by anyone and if it was picked up by any sites, bloggers, press etc. Let’s see how good PR Leap and our press release writing skills are!

4) A Personalized Toolbar:
A great startup called Conduit (http://www.Conduit.com) offers people the opportunity to create their own, personalized toolbar for FREE. Conduit has a wizard embedded within their website which takes you through the setup process step-by-step. It took about twenty minutes and once you’re done, they create a link to your toolbar download site which you can then share through an email signature or through a click through download on your new networking site. There are a number of cool ways to tailor the toolbar… your branded search, create links to particular pages on your own site, add weather, a radio and so on to make sure its a value download for your customers.

5) Design Your Site with the Customer In Mind and Make Inviting Others Easy
If, like us, your marketing budget is measured by the quarters rattling around in your pocket, then do your site a favor and design it so the ‘Invite Others’ button is never far away. No matter what page the users happen to be on. Bold it, make it big, underline it if you have to but referrals from happy customers are always easier to get than attracting new customers.

6) Friends & Contacts revisited:
Do any of your friends know anyone in the press or people who have blogs ? Well you won’t know until you ask… ASK!

7) Join Linked In (http://www.linkedin.com)
If you haven’t already, consider joining linked in. Yes, its another networking site, and you could consider them the competition (In your dreams!)… but after joining you can search through the directory and find people that may either a) be interested in joining your site or b) encouraging others to do so. If you aren’t a member already, take a look

8) Groups & Forums:
Are there Yahoo (http://groups.yahoo.com) or Google Groups (http://groups.google.com) or other online forums that include the types of people you want to attract to your new networking site? If so, join them but beware… most groups want members to contribute to the discussions and no groups appreciate spam. So find the best forums for your target customers, join and spend some time getting to know what subjects are being discussed. Give it a week or two then jump in and add some value… and make sure that your post includes your email and perhaps the web address. If it is valuable, then members may check out your new site…

One last thing, if there aren’t any good groups with your target customers… consider creating your own… and make it it feeds your new networking site. Here’s one I started and yes… I know it only has a few members… but its more links in the internet for your website which appears in your google or Alexa results: http://groups.google.com/group/Harvard_Entrepreneurs_Startups?lnk=oa&hl=en

9) Write to your Existing Members:
Do you have a few members? If so, email them occasionally (Not every day!) and remind them of the value of your site… perhaps highlight a particularly useful tool or feature of your website. Maybe reach out to some of the individual members and ask them if you can write about them joining the site, a person feature if you will. At the bottom of each of these emails… give them a few sentences (above for example) to send on to others they know. Stress how much you would appreciate their help and how important they are to you and your young business.

10) Drum roll… .badda badda badda… .Create a Blog!
Here’s hoping that a blog is the tenth and most valuable means of getting the message out there about a new networking site. (WordPress.com is FREE)

Originally posted by : Andrew D. Ive

%d bloggers like this: