[Wylug-admin] Spam on WyLUG RSS feed

Jim Jackson jj at franjam.org.uk
Mon Mar 24 12:44:41 UTC 2008 

Hi Dave,

I'm assuming you will be dealing with these two messages?

cheers
Jim

---------- Forwarded message ----------
Date: Sat, 22 Mar 2008 00:16:55 +0000
From: Hugo Mills <hugo at lug.org.uk>
To: Hugo Mills <hugo at lug.org.uk>
Cc: wylug at wylug.org.uk, admin at lug.org.uk
Subject: Re: [admin] Spam on WyLUG RSS feed

On Sat, Mar 22, 2008 at 12:08:16AM +0000, Hugo Mills wrote:
>    We've just spotted that the top article[1] on your website has spam
> in the RSS feed. It looks like your Wordpress installation has some
> kind of security vulnerability. It is possible, although not certain,
> that it's the one listed here[2]. Please will you do the following:

    My apologies -- I'd thought that you were hosted on the lug.org.uk
server instead of your own. Please take the list of actions in my last
email as advice rather than the firm request that it was worded as.
If you let me know when you've cleaned up the site, though, I'll add
wylug back into the lug.org.uk aggregator.

    Hugo.

---------- Forwarded message ----------
Date: Sat, 22 Mar 2008 00:08:16 +0000
From: Hugo Mills <hugo at lug.org.uk>
To: wylug at wylug.org.uk
Cc: admin at lug.org.uk
Subject: Spam on WyLUG RSS feed

    Hi,

    We've just spotted that the top article[1] on your website has spam
in the RSS feed. It looks like your Wordpress installation has some
kind of security vulnerability. It is possible, although not certain,
that it's the one listed here[2]. Please will you do the following:

1. Find out from your logs how this happened, if possible.

2. Update your Wordpress installation to the latest version.

3. Audit all of the content on your site for hidden spam, and remove
    what you find. It's visible in the page source, but not directly on
    the page.

4. Ensure that you have subscribed to the relevant security
    announcement mailing list, so that you can keep your installation
    up to date.

5. Let us know when you've done these things, so that we can re-enable
    the RSS aggregation for WyLUG on lug.org.uk.

    Thanks,
    Hugo.

[1] http://www.wylug.org.uk/2008/03/wylug-monthly-meeting-monday-10-mar-2008/

--
Hugo Mills <hugo at lug.org.uk>
lug.org.uk admin team

More information about the Wylug-admin mailing list