I have a site with a static home page which is just one of the pages. Ive been working on the site for several weeks. Today, when I went to clear the cache to see if some links were updated, the home page switched to displaying Posts (which is the other setting under the Settings->Reading) I went to settings and sure enough display Posts is checked. No one else, that I know of has the password to this site. Does anyone know why this happened or how I can prevent it from happeneing again?
There are so many variables to consider, but it has to be a direct database manipulation. So:
Someone did in fact change it, but no one knows who
A plugin or theme changed it. Unlikely, but certainly possible. Search your plugins/theme changelog and/or support threads for similar reported issues
One thing you could do is install the plugin Stream. This logs all (well, nearly every) database manipulation and tells you when, where, and who. This way, if it happens again, you can immediately pinpoint it.
Related
I created an LMS, where teachers approve students to view certain lessons, using the Educator plugin which is no longer available. I had never installed a Cache plugin cause I know nothing of it, but time performance led me to W3 and a tutorial on recommended.
Now, I am getting people unable to see their course work even when logged in. Meaning, they cannot access a blog post that is blocked by default to all users but them. I have the option of "dont cache for logged in users" checked.
Here's where I am at a loss: People in the same course can see the post... and i can always see it myself. Sometimes the person reloads and it works. And since I am just a 3rd party, I don't have names/emails of people with the issue. So I have no idea what they see, how they see it, and how to debug.
So, after this block of text, here's my hypothesis and what I need help with:
Hypothesis: Everything is blocked by default, thus a person who is re-entering after W3 was installed needs to basically wait for his browser-server to agree on what he can see again.
If this is wrong cause I know nothing of cacheing... how do I approach this? re-install and start adding cache options one by one, waiting a few days to see if any student has issues?
Sorry if this is not too technical a question, I just need that first clue to get started :)
you need to check the .htaccess file. most likely cache code has been added to this file. that's why you have problems with the cache.
I have the same problem on different WordPress based websites.
I developed some of them, while others are made by someone else.
They don't have that much in common: completely different websites, different themes/plugins and so on.
Recently in these websites, I've been experiencing this problem: WordPress is caching the backend in a really tough way and, after saving any edits, I have to force a refresh with ctrl+f5 to actually see the edits I made before.
After some digging I can assure that:
it doesn't seem to depend on the webserver (same problem on nginx and on apache)
it doesn't depend on varnish or wp caching plugins (it happens also on website without any cache solutions)
it happens just in some new wp releases, I'm not experiencing this problem on older websites
it doesn't depend on my pc/browser configuration because my colleagues are experiencing the exact same problem on their pc
Anyone who had the same problem and was able to find a solution?
EDIT: It actually happened also on a fresh WordPress installation. Once I created a page, I went back to the page list by clicking on the menu item and I couldn't see the page in the list. After forcing a page refresh the newly created page was there as it was supposed to be before.
this is I think a really unusual case. A little backstory, I outsourced a PSD to WP project a few months ago, but not currently working with the developer anymore as he stopped replying to my support questions. I'm trying to solve this on my own before I give this to the client, as I have no more budget to hire another developer.
I have two problems, first is I couldn't access the WP dashboard even though my login is an admin account. Been trying to solve this through numerous google searches and blog posts but to no avail, I couldn't fix it.
Here goes my main problem: So I finally found a way how to update the content on the site using the phpMyAdmin backend database. (good thing I know HTML CSS)
I managed to update the content, but when I tested the site using incognito window and other profiles / browsers, the changes from phpMyAdmin does not reflect on the site. I tried logging in, and weirdly, the changes are there. I log out, changes are there.
I just find it really weird and a hassle that I have to log in to see those changes. It's a client facing site, and the changes are really important so I hope someone has experienced this before and can help me out. Thanks in advance.
Last Wednesday a variety of the WordPress sites I manage got hacked, they were infected with a Viagra link (malware is so original).
I noticed in the wp-includes directory a file called utils.php (wp-includes/js/tinymce/utils/utils.php), also an addition to my general-template.php for the get_footer function.
This hack seems to only affect Google search results for sites, not the site when directly viewed by entering the URL, i.e your cached site will show a malware infested mess and lose ranking, meanwhile you will wonder why due to the site looking fine when viewed.
My host (TSO Host) have cleaned up the sites, didn't even need to ask, but I have no idea how the infection got there in the first place.
So my question is, does anyone know how the breach happens and what I can do to prevent it, other than the usual security tips?
This happened to a site that I spent weeks cleaning up. I can give you a few pointers:
Go through the Wordpress core files (under wp-admin and wp-includes) and delete all files that you don't see in the default wordpress instillation. I've never seen a plugin create a file in one of those 2 directories. After this, it'd be a good idea to re-install Wordpress, just in case they changed any of the existing files.
After that, change your Wordpress/FTP/SSH passwords as they've likly been cracked. Install WP Better Security. It seems a little annoying at first, but you can monitor everything with it, change the login slug, remove version info hackers can use to find security holes, black-list known hackers, and so much more.
Finally, this last one will take some time. Google your theme and each one of your plugins, and see if Wordpress has stopped using them because they were a security vulnerability. You'd be surprised at how many plugins haves holes. Try to avoid really new plugins, and try to use the same plugin for as many different sites as you can. If you're hosting more than one site on the same server and one of the sites gets hacked, they're all hacked.
It sounds like a pain, and it is a little bit, but after you're done you'll feel so much better knowing that you're in control of everything. Trust me.
So I have this problem. A client has a wordpress website and the content is managed by 3 admins. One of them deleted all the content and no one will admit that he did it. So I need to investigate who deleted all the posts.
Is it possible to do in any way? I googled it and didn't find anything about something like this.
I'm pretty sure Wordpress doesn't come with a user action log. There is loads of plugins out there which can do it though.
Can you not get the posts back by running a recent backup in place? I know it doesn't solve the problem but as I don't think there is anyway to track it, may as well prevent it from happening again or something.