WordPress 2.8.5

Wordpress

WP 2.8.5 dah keluar folks! Upgrade sebelum terlambat..

The headline changes in this release are:

A fix for the Trackback Denial-of-Service attack that is currently being seen.
Removal of areas within the code where php code in variables was evaluated.
Switched the file upload functionality to be whitelisted for all users including Admins.
Retiring of the two importers of Tag data from old plugins.

WordPress 2.8.5: Hardening Release

Old WordPress Versions Under Attack – UPGRADE ALERT

wordpress-logoKepada pengguna WordPress yang masih belum upgrade ke WP 2.8.4, sila upgrade blog anda kepada version yang terkini. Maklumat dari wordpress developers mengatakan pengguna blog versi lama terutama sekali pengguna yang mengaktifkan fungsi “Anyone can register”, paling mudah terkena serangan ini. Untuk pengguna versi sebelum 2.7, anda perlu upgrade secara manual.

Pengguna wordpress.com, anda tak perlu risau sebab kat situ memang diorang dah upgrade ke versi terkini.

Source : Lorelle

Otto42 of OttoDestruct, a key WordPress developer and supporter, reports that there is an “attack” on older versions of WordPress right now. The number of sites hit by this is growing every hour. Protect your WordPress blog now: UPDATE NOW!!!

How Do I Know If My Site Has Already Been Attacked?
There are two clues that your WordPress site has been attacked.

There are strange additions to the pretty permalinks, such as example.com/category/post-title/%&(%7B$%7Beval(base64_decode($_SERVER%5BHTTP_REFERER%5D))%7D%7D|.+)&%/. The keywords are “eval” and “base64_decode.”

The second clue is that a “back door” was created by a “hidden” Administrator. Check your site users for “Administrator (2)” or a name you do not recognize. You will probably be unable to access that account, but Journey Etc. has a possible solution.

WordPress.com blogs are not impacted as they are up-to-date. Only versions prior to WordPress 2.8.4 are impacted.

Tab gitar update

Aliff AzizSelepas lama tak update tabblog, hari ini mentang2 cuti, so aku buat 2 tab gitar, satu request dari cyperhackz, satu lagi lagu nostalgia masa sekolah dulu-dulu, ramai yang masih ingat rasanya lagu Anak Itik Tok Wi :p

Lepas ini kalau ada masa lapang tu aku rasa menarik jugak nak buat balik kod2 lagu2 kbsr tu rasanya kementerian pun tak pernah jual chordbook ke apa untuk lagu2 ni. Kecuali untuk panduan guru2 tu ada la. Mcm ayah aku dulu rasanya ada buku kod2 lagu kbsr tahap satu tahap dua tu tapi memandangkan dia dah lama pencen tak tahu la ada lagi ke tak chord book tu lagi.

So sapa2 nak layan lagu aliff ngna lagu kbsr tu boleh la tgk tab gitar nusantara yek.

Aliff Aziz – Ini Satu Kisah

Anak Itik Tok Wi

Tukar themes

Kerana kesangapan yang teramat sangat, aku dengan bangganya menukar theme wp kali ini.. oh yes, kerana terlalu busy dengan Mitsubishi Heavies, jangan kata nak buat theme baru, nak update blog pun tak sempat.. buat sementara ni cilok la dulu mana2 free theme.. hahaha.. aku pakai theme Fadtastic. Not bad jugak theme ini cuma default die takde widget-aware so kena tukar2 sikit coding dia untuk adjust sidebar. Kalau nak pakai sidebar widget jugak kena alter coding kat sidebar.php yang caranya ada kat sini.

theme Fadtastic