Comments on: WP-MalWatch WordPress Security Plugin http://how-to-blog.tv Blogging Tips, Tutorials, and WordPress Theme Guidance Sat, 08 Oct 2011 03:14:30 +0000 hourly 1 http://wordpress.org/?v=3.3.1 By: Derick Schaefer http://how-to-blog.tv/security/wp-malwatch/comment-page-1/#comment-2038 Derick Schaefer Mon, 11 Oct 2010 17:51:39 +0000 http://how-to-blog.tv/?page_id=935#comment-2038 So, WordPress has a default uploads directory of /wp-content/uploads . The example in the plugin, using "mydomain.com" is just an example and clicking on that will definately render a 404 error as whomever owns mydomain.com definately doesn't have WordPress installed it. Go to your options section from with the WordPress admin and make sure your uploads directory is correct. In many cases, a hosting provider will feed this variable as a full path that will look something like /var/www/mydomain.com/wp-content/uploads . No need for all of the internal hosting garb in that path as any plugin (or theme for that matter) will understand the value of /wp-content/uploads . Let me know if this corrects it for you. So, WordPress has a default uploads directory of /wp-content/uploads . The example in the plugin, using “mydomain.com” is just an example and clicking on that will definately render a 404 error as whomever owns mydomain.com definately doesn’t have WordPress installed it. Go to your options section from with the WordPress admin and make sure your uploads directory is correct. In many cases, a hosting provider will feed this variable as a full path that will look something like /var/www/mydomain.com/wp-content/uploads . No need for all of the internal hosting garb in that path as any plugin (or theme for that matter) will understand the value of /wp-content/uploads .

Let me know if this corrects it for you.

]]> By: BlogGrrl http://how-to-blog.tv/security/wp-malwatch/comment-page-1/#comment-1990 BlogGrrl Tue, 05 Oct 2010 22:52:40 +0000 http://how-to-blog.tv/?page_id=935#comment-1990 I get same problem as NVO Logistic above. Can you help to make the plugin work properly. When I click on the link it gives a 404 Error. Thanks I get same problem as NVO Logistic above. Can you help to make the plugin work properly. When I click on the link it gives a 404 Error. Thanks

]]> By: Derick Schaefer http://how-to-blog.tv/security/wp-malwatch/comment-page-1/#comment-1975 Derick Schaefer Sun, 03 Oct 2010 16:08:16 +0000 http://how-to-blog.tv/?page_id=935#comment-1975 Can you provide a little more detail? Drop an email to our info [AT] how-to-blog account Can you provide a little more detail? Drop an email to our info [AT] how-to-blog account

]]> By: SD http://how-to-blog.tv/security/wp-malwatch/comment-page-1/#comment-1967 SD Thu, 30 Sep 2010 22:30:44 +0000 http://how-to-blog.tv/?page_id=935#comment-1967 I'm having the same problem as NOV LOGISTICS, above. The plugin is working fine on my sub-domain site, but not on my main domain. Can you tell me how to fix? Thanks. I’m having the same problem as NOV LOGISTICS, above. The plugin is working fine on my sub-domain site, but not on my main domain. Can you tell me how to fix? Thanks.

]]> By: Derick Schaefer http://how-to-blog.tv/security/wp-malwatch/comment-page-1/#comment-1891 Derick Schaefer Fri, 24 Sep 2010 02:46:37 +0000 http://how-to-blog.tv/?page_id=935#comment-1891 What is your current upload folder? (send it without your domain name. . .meaning http://domain.com/wp-content. . . .) What is your current upload folder? (send it without your domain name. . .meaning http://domain.com/wp-content. . . .)

]]> By: Daniel http://how-to-blog.tv/security/wp-malwatch/comment-page-1/#comment-1881 Daniel Wed, 22 Sep 2010 10:14:57 +0000 http://how-to-blog.tv/?page_id=935#comment-1881 Hi, Derick, I got the same problem. The plugin asked me to turn back the default upload folder. But it seems a bit difficult. I wonder whether I have any good way to use the great plugin. Thanks so much. Hi, Derick, I got the same problem. The plugin asked me to turn back the default upload folder. But it seems a bit difficult. I wonder whether I have any good way to use the great plugin. Thanks so much.

]]> By: Emerald http://how-to-blog.tv/security/wp-malwatch/comment-page-1/#comment-1714 Emerald Mon, 30 Aug 2010 12:04:08 +0000 http://how-to-blog.tv/?page_id=935#comment-1714 I installed this (version 2.1.2) on my Wordpress blog (3.0.1) and am unable to see the detailed report. I click the 'see detailed report' link from the mini-report which is flagging suspicious files on the dashboard, and I can see the headings, but no information on any of the files is visible. I installed this (version 2.1.2) on my WordPress blog (3.0.1) and am unable to see the detailed report. I click the ‘see detailed report’ link from the mini-report which is flagging suspicious files on the dashboard, and I can see the headings, but no information on any of the files is visible.

]]> By: OpenCamp Dallas – Photos and Session Coverage – Online Marketing Consultant Mark Barrera http://how-to-blog.tv/security/wp-malwatch/comment-page-1/#comment-1709 OpenCamp Dallas – Photos and Session Coverage – Online Marketing Consultant Mark Barrera Sun, 29 Aug 2010 20:30:04 +0000 http://how-to-blog.tv/?page_id=935#comment-1709 [...] first page of Digg and other popular sites.  Jerod also mentioned a great Wordpress plugin called WP-Malware that will monitor your Wordpress installation for malware attacks which have been very common [...] [...] first page of Digg and other popular sites.  Jerod also mentioned a great WordPress plugin called WP-Malware that will monitor your WordPress installation for malware attacks which have been very common [...]

]]> By: bowei http://how-to-blog.tv/security/wp-malwatch/comment-page-1/#comment-1545 bowei Sun, 01 Aug 2010 18:43:08 +0000 http://how-to-blog.tv/?page_id=935#comment-1545 Following up on my previous post, in the wordpress admin interface, I go to Super Admin -> Sites -> click on 'Edit' for a site -> scroll down to 'Upload Path'. By default, it shows "wp-content/blogs.dir/index-number-here/files", which is specific for that site. I don't think it would be wise to change this to "wp-content/uploads'. Yet, the readme.txt for the latest version says: Sub-domain installations and "One Click" installations have been found to put a fully qualified file system path in the "Miscellaneous -> Store Uploads In This Folder setting". The default is "wp-content/uploads". WP-MalWatch WILL NOT activate if the uploads folder is not set to the default setting. Does this mean that WP-Malwatch isn't meant for a multisite wordpress install? Following up on my previous post, in the wordpress admin interface, I go to
Super Admin -> Sites -> click on ‘Edit’ for a site -> scroll down to ‘Upload Path’. By default, it shows “wp-content/blogs.dir/index-number-here/files”, which is specific for that site. I don’t think it would be wise to change this to “wp-content/uploads’.

Yet, the readme.txt for the latest version says:

Sub-domain installations and “One Click” installations have been found to put a fully qualified file system path in the “Miscellaneous -> Store Uploads In This Folder setting”. The default is “wp-content/uploads”. WP-MalWatch WILL NOT activate if the uploads folder is not set to the default setting.

Does this mean that WP-Malwatch isn’t meant for a multisite wordpress install?

]]> By: bowei http://how-to-blog.tv/security/wp-malwatch/comment-page-1/#comment-1543 bowei Sun, 01 Aug 2010 06:57:12 +0000 http://how-to-blog.tv/?page_id=935#comment-1543 I get the same thing. I had this when I was on Wordpress 2.9.x, and now as well after I've upgraded to Wordpress 3.0.1. The WP-Malwatch plugin is also upgraded to the latest (2.1.2). I downloaded a fresh copy of wordpress 3.0.1 from wordpress.org, unzipped it, and searched for options-misc.php, but found nothing. Looking at the WP-Malwatch code, I see that administrative-warning.php is the source of the error message, where it calls <a href="' . admin_url('options-misc.php') . '" rel="nofollow">here</a>.' I find the definition of the function in load_scripts.php, but it doesn't have parameters defined. Maybe there's something with inheritance in the code or something, but could it be that administrative-warning.php requires a code change to admin_url() (i.e. no parameters) instead? I tried changing this, and it just goes to the default admin page. Not sure where I'd actually make the change for WP-Malwatch. I think the options-misc.php page is from an older version of Wordpress - perhaps WP-Malwatch needs to be updated? As I note above, I'm not sure what that would change to. I get the same thing. I had this when I was on WordPress 2.9.x, and now as well after I’ve upgraded to WordPress 3.0.1. The WP-Malwatch plugin is also upgraded to the latest (2.1.2).

I downloaded a fresh copy of wordpress 3.0.1 from wordpress.org, unzipped it, and searched for options-misc.php, but found nothing. Looking at the WP-Malwatch code, I see that administrative-warning.php is the source of the error message, where it calls here.’ I find the definition of the function in load_scripts.php, but it doesn’t have parameters defined. Maybe there’s something with inheritance in the code or something, but could it be that administrative-warning.php requires a code change to admin_url() (i.e. no parameters) instead? I tried changing this, and it just goes to the default admin page. Not sure where I’d actually make the change for WP-Malwatch.

I think the options-misc.php page is from an older version of WordPress – perhaps WP-Malwatch needs to be updated? As I note above, I’m not sure what that would change to.

]]>