I just released a major update for my SQL Reports plugin. The new version, 3.06.14, has a lot of exiting new features like automatic scheduled backups of your database, and the ability to save archives of your DB and have them emailed to you. You can also retore these backups directly into your native WP DB or to an external database. The plugin uses the WordPress CRON API to schedule hourly and/or daily DB backups.
I also added a quick and easy shortcode for displaying a single variable from an SQL query. Just wrap your SQL query in the sqlgetvar short code like this:
[sqlgetvar]SELECT COUNT(*) FROM wp_users[/sqlgetvar]
Have fun with these new features and let me know if you have any ideas or suggestions for improvements.
In the last two weeks I have been working on perfecting a patch for the wp-login.php page that will prevent a swarm of brute-force attacks from guessing your password or bringing down your server. When I first released this patch it was a bit overzealous and caused a few people to be temporarily locked out of their own blogs as their login attempts were incorrectly identified as brute-force attacks.
This patch of mine has also caused a small wave of paranoia because it displays the unconventional (and a possibly spooky) message “Just what do you think you are doing, Dave?“ whenever brute-force or too many failed logins is detected. This message is a quote from the movie 2001: A Space Odyssey. Even though I intended this message to bring out the humor of the situation, I also feel it is very relevant (unless your name is not Dave :-)
The linked response “Open the Pod bay doors, HAL!“ also a quote from the same movie and it’s just there to link you back to the login page should you wan to try to login again.
I have also received many inquiries as to why the wp-login.php file is flagged as an WP Login Exploit on every install of WordPress, even brand new installs of the most current version. This is simply because WordPress has no built-in brute-force protection and it’s login page is exploitable. It has been clearly demonstrated through the widespread attacks on login pages around the world as of late that it is not only vulnerable to password cracks via brute-force but it also has been shown to overload and bring down a whole server if the attacks are too numerous. That is why my patch also prevents the loading of the WordPress bootstrap if a brute-force attack is detected so that your server’s resources are not tied up just telling hackers if they guessed the right password or not.
I hope this helps answer your questions about this new threat and my approach to solving it. Feel free to leave a comment if I could do better explaining anything.
This is a great project from my friend Dan that we all need to support.
The world needs more clean energy but for many people, the cost is too high. Building on the successes of conventional wind power technology, Pacific Sky Power has developed affordable wind turbines that can be used at many different locations. If you don’t have a good spot for installation, we also have towers. These systems are good starter kits for learning about this technology.
Wind turbines convert kinetic energy from the wind into mechanical energy which spins a generator to produce clean electricity. Our wind turbine is rated at 15 watts which can be used for charging 12 volt batteries. They’re great for camping, on boats and science projects. The 30 and 45 watt wind turbine systems include multiple turbines on a specialized tower.
Startup wind speed: 8 mph
Survival wind speed: 40 mph
Rotor type: Horizontal axis
Number of blades: 2
Blade material: GWS plastic
Rotor diameter: 15″
Generator type: Brushed 30 volt DC motor
Battery charging: 12 volt DC
Operable rpm: 200 to 1800 rpm
Weight: 1 lb
Power cable length: 10 ft
Output: 15 watts
Over speed protection: Yes
Now, with a shortcode for the single most powerful PHP function there is (preg_replace), I dare to imagine that there is nothing that this simple plugin cannot do.
If you know what this amazing function, preg_replace, is capable of then put it to the test.
Here is an example of the syntax for the new new shortcode that calls preg_replace:
[preg_replace replace=”/to be searched/” with=”I replaced”]<li>The content to be searched</li>[/preg_replace]
and this is what you get:The content I replaced
Even though officially Google is no longer offering free Google Apps for Business accounts, there is still a way to sign up for Google Apps and get it linked to your own domain. Just sign up for Google App Engine and add your domain to that account. You’ll get Google Apps along with it for free.
Here’s how to do this:
- Head over to Google App Engine and sign in with your Google Account
- Click “Create Application” with any date and purpose information you choose.
- Open the Dashboard, then click Application Settings.
- In Application Settings, scroll down and select “Add Domain” to add your personal domain to App Engine.
- Google should present you with a link to sign up for Google Apps here, and the option to connect it with your domain.
via Use Google App Engine to Get Google Apps for Your Domain for Free.
I released an update to this Comment Testimonials plugin that makes it easy to manually change the Comment Karma from the main comments section in your WordPress Admin.
You can also move comments, from the page or post that they were made on, to any page or post you want them to be on.
I created this plugin that uses a shortcode to call wp_remote_get with parameters you pass to parsed and display a bit of HTML from a page on another site. You can include this shortcode in your page or post.
Here is an example of the shortcode that will display the Download Stats page for this Plugin on WordPress.org:
[remote_get url="http://wordpress.org/extend/plugins/shortcurl/stats/" start='<div class="block-content"' stop='!-- block-content--' length="-1" replace="='/extend" with="='http://wordpress.org/extend" replace2="%2Fextend%2F" with2="http%3A%2F%2Fwordpress.org%2Fextend%2F"].
and this is what you get:
Downloads Per Day
Internet freedom needs a global network behind it. fightforthefuture.org has launched The Internet Defense League. Now you can defend the net by broadcasting action messages on your own sites using this widget. You can also tell the world that you are a member of the league by displaying one of the IDL badges hosted by internetdefenseleague.org.