I just released a major update for my SQL Reports plugin. The new version, 3.06.14, has a lot of exiting new features like automatic scheduled backups of your database, and the ability to save archives of your DB and have them emailed to you. You can also retore these backups directly into your native WP DB or to an external database. The plugin uses the WordPress CRON API to schedule hourly and/or daily DB backups.
I also added a quick and easy shortcode for displaying a single variable from an SQL query. Just wrap your SQL query in the sqlgetvar short code like this:
[sqlgetvar]SELECT COUNT(*) FROM wp_users[/sqlgetvar]
Have fun with these new features and let me know if you have any ideas or suggestions for improvements.
In the last two weeks I have been working on perfecting a patch for the wp-login.php page that will prevent a swarm of brute-force attacks from guessing your password or bringing down your server. When I first released this patch it was a bit overzealous and caused a few people to be temporarily locked out of their own blogs as their login attempts were incorrectly identified as brute-force attacks.
This patch of mine has also caused a small wave of paranoia because it displays the unconventional (and a possibly spooky) message “Just what do you think you are doing, Dave?“ whenever brute-force or too many failed logins is detected. This message is a quote from the movie 2001: A Space Odyssey. Even though I intended this message to bring out the humor of the situation, I also feel it is very relevant (unless your name is not Dave :-)
The linked response “Open the Pod bay doors, HAL!“ also a quote from the same movie and it’s just there to link you back to the login page should you wan to try to login again.
I have also received many inquiries as to why the wp-login.php file is flagged as an WP Login Exploit on every install of WordPress, even brand new installs of the most current version. This is simply because WordPress has no built-in brute-force protection and it’s login page is exploitable. It has been clearly demonstrated through the widespread attacks on login pages around the world as of late that it is not only vulnerable to password cracks via brute-force but it also has been shown to overload and bring down a whole server if the attacks are too numerous. That is why my patch also prevents the loading of the WordPress bootstrap if a brute-force attack is detected so that your server’s resources are not tied up just telling hackers if they guessed the right password or not.
I hope this helps answer your questions about this new threat and my approach to solving it. Feel free to leave a comment if I could do better explaining anything.
Now, with a shortcode for the single most powerful PHP function there is (preg_replace), I dare to imagine that there is nothing that this simple plugin cannot do.
If you know what this amazing function, preg_replace, is capable of then put it to the test.
Here is an example of the syntax for the new new shortcode that calls preg_replace:
[preg_replace replace=”/to be searched/” with=”I replaced”]<li>The content to be searched</li>[/preg_replace]
and this is what you get:The content I replaced
I released an update to this Comment Testimonials plugin that makes it easy to manually change the Comment Karma from the main comments section in your WordPress Admin.
You can also move comments, from the page or post that they were made on, to any page or post you want them to be on.
I created this plugin that uses a shortcode to call wp_remote_get with parameters you pass to parsed and display a bit of HTML from a page on another site. You can include this shortcode in your page or post.
Here is an example of the shortcode that will display the Download Stats page for this Plugin on WordPress.org:
[remote_get url="http://wordpress.org/extend/plugins/shortcurl/stats/" start='<div class="block-content"' stop='!-- block-content--' length="-1" replace="='/extend" with="='http://wordpress.org/extend" replace2="%2Fextend%2F" with2="http%3A%2F%2Fwordpress.org%2Fextend%2F"].
and this is what you get:
Downloads Per Day
Internet freedom needs a global network behind it. fightforthefuture.org has launched The Internet Defense League. Now you can defend the net by broadcasting action messages on your own sites using this widget. You can also tell the world that you are a member of the league by displaying one of the IDL badges hosted by internetdefenseleague.org.
I created a new Plugin for WordPress that uses 0gravatar.com to generate an image of the user’s display_name if they do not yet have a Gravatar. This Plugin replaces the get_avatar function in pluggable.php to pass an alternate image to gravatar.com to use if they do not yet have a gravatar.
Comment on this post with an email address that you have not setup a gravatar on and see how it woks.
I added a whole new SHAREABLE Widget to my old TERRIBL Plugin. Now it’s even easier to share a link to your site. Check out my Shareable Link at the top of the left sidebar.
This new SHAREABLE Widget features customizable styles and easy-to-copy link code that others can put on there site. It also tracks Impressions and Click Through stats just like the the old TERRIBL Widget.
Check it out and lit me know how you like it. I’m always open to new ideas.
Now you can place your choice Comments on any Page or Post using a Shortcode.
[TESTIMONIALS title="Random Testimonial" number="1" /]
This would display 1 random Comments with the Karma Value of 0 under the heading Random Testimonial
[TESTIMONIALS title="Client Testimonials" karma="100" number="8" order="DESC" /]
This would display your 8 most recent Comments with the Karma Value of 100 under the heading Client Testimonials
Please Let me know if have any questions, comments, or suggestions.
I wrote this little Widget for my Anti-Malware Pligins’ site, GOTMLS.NET. I get so many wonderful testimonials via comments from my … and I wanted to display some of my favorites in the sidebar. I’ve release this little Testimonials Widget on the WordPress Repository because I didn’t see any other plugin that did this simple task.
Just set the Comment Karma on your favorite comments then set the Karma value in the Widget settings to match. Otherwise this plugin just queries all the comments with the default Karma of 0.
I plan on adding a few more features when I have time but the idea here is to keep it simple: Display some rotating comments as Testimonials.
Let me know what you think in the comments.