I just finished this new Backup Plugin for WordPress. It started from a spin-off features I’ve added to my SQL Reports Plugin. I have really dialed in all the important aspects of a database backup in this new plugin and not going to stop there. I have plans to add more backup options soon.
Thanks to Andrew Kurtis of webhostinghub.com my plugin has now been translated into Spanish of by Jelena Kovacevic. The new language files were tested and packaged in the last release. Now, if you have WPLANG defined as ‘es_ES’ in your wp-config.php file then the Anti-Malware Settings and Scan pages will be output en Español :-)
I’m also thinking of creating a facebook page for my plugin to get more feedback and collaboration form my users. Have some big ideas I would like share and get some help with to move this plugin forward. Leave a comment here and let me know what you think. Would you follow me on facebook? comment, Yes or No.
I just released a major update for my SQL Reports plugin. The new version, 3.06.14, has a lot of exiting new features like automatic scheduled backups of your database, and the ability to save archives of your DB and have them emailed to you. You can also retore these backups directly into your native WP DB or to an external database. The plugin uses the WordPress CRON API to schedule hourly and/or daily DB backups.
I also added a quick and easy shortcode for displaying a single variable from an SQL query. Just wrap your SQL query in the sqlgetvar short code like this:
[sqlgetvar]SELECT COUNT(*) FROM wp_users[/sqlgetvar]
Have fun with these new features and let me know if you have any ideas or suggestions for improvements.
In the last two weeks I have been working on perfecting a patch for the wp-login.php page that will prevent a swarm of brute-force attacks from guessing your password or bringing down your server. When I first released this patch it was a bit overzealous and caused a few people to be temporarily locked out of their own blogs as their login attempts were incorrectly identified as brute-force attacks.
This patch of mine has also caused a small wave of paranoia because it displays the unconventional (and a possibly spooky) message “Just what do you think you are doing, Dave?“ whenever brute-force or too many failed logins is detected. This message is a quote from the movie 2001: A Space Odyssey. Even though I intended this message to bring out the humor of the situation, I also feel it is very relevant (unless your name is not Dave :-)
The linked response “Open the Pod bay doors, HAL!“ also a quote from the same movie and it’s just there to link you back to the login page should you wan to try to login again.
I have also received many inquiries as to why the wp-login.php file is flagged as an WP Login Exploit on every install of WordPress, even brand new installs of the most current version. This is simply because WordPress has no built-in brute-force protection and it’s login page is exploitable. It has been clearly demonstrated through the widespread attacks on login pages around the world as of late that it is not only vulnerable to password cracks via brute-force but it also has been shown to overload and bring down a whole server if the attacks are too numerous. That is why my patch also prevents the loading of the WordPress bootstrap if a brute-force attack is detected so that your server’s resources are not tied up just telling hackers if they guessed the right password or not.
I hope this helps answer your questions about this new threat and my approach to solving it. Feel free to leave a comment if I could do better explaining anything.
Now, with a shortcode for the single most powerful PHP function there is (preg_replace), I dare to imagine that there is nothing that this simple plugin cannot do.
If you know what this amazing function, preg_replace, is capable of then put it to the test.
Here is an example of the syntax for the new new shortcode that calls preg_replace:
[preg_replace replace=”/to be searched/” with=”I replaced”]<li>The content to be searched</li>[/preg_replace]
and this is what you get:
I released an update to this Comment Testimonials plugin that makes it easy to manually change the Comment Karma from the main comments section in your WordPress Admin.
You can also move comments, from the page or post that they were made on, to any page or post you want them to be on.
I created this plugin that uses a shortcode to call wp_remote_get with parameters you pass to parsed and display a bit of HTML from a page on another site. You can include this shortcode in your page or post.
Here is an example of the shortcode that will display the Download Stats page for this Plugin on WordPress.org:
[remote_get url="https://wordpress.org/plugins/shortcurl/stats/" start='<div class="block-content"' stop='!-- block-content--' length="-1"].
and this is what you get:
Downloads Per Day
Internet freedom needs a global network behind it. fightforthefuture.org has launched The Internet Defense League. Now you can defend the net by broadcasting action messages on your own sites using this widget. You can also tell the world that you are a member of the league by displaying one of the IDL badges hosted by internetdefenseleague.org.
I created a new Plugin for WordPress that uses 0gravatar.com to generate an image of the user’s display_name if they do not yet have a Gravatar. This Plugin replaces the get_avatar function in pluggable.php to pass an alternate image to gravatar.com to use if they do not yet have a gravatar.
Comment on this post with an email address that you have not setup a gravatar on and see how it woks.