Blog

RSS WordPress Blog
  • WordPress 6.6.1 Maintenance Release July 23, 2024
    WordPress 6.6.1 is now available! This minor release features 7 bug fixes in Core and 9 bug fixes for the Block Editor. You can review a summary of the maintenance updates in this release by reading the Release Candidate announcement. WordPress 6.6.1 is a short-cycle release. The next major release will be version 6.7 planned […]
    Tonya Mork
  • WP Briefing: Episode 84: A WordPress 6.6 Sneak Peek July 22, 2024
    Join WordPress Executive Director, Josepha Haden Chomphosy, as she offers an exclusive preview of the upcoming WordPress 6.6 release, accompanied by special guest Meher Bala, the release's coordinator. Don’t miss this opportunity for an insider’s look!
    Brett McSherry
  • WordPress 6.6 “Dorsey” July 16, 2024
    Say hello to the latest WordPress! WordPress 6.6 "Dorsey" is here to deliver on the promise of a better web with style, finesse, and a suite of enhanced tools to create beautifully coherent design elements and the confidence of automatic rollbacks for your plugin updates.
    Matt Mullenweg
  • WordPress 6.6 Release Candidate 3 July 9, 2024
    WordPress 6.6 RC3 is ready for download and testing! This version of the WordPress software is under development. Please do not install, run, or test this version of WordPress on production or mission-critical websites. Instead, please evaluate RC3 on a test server or a local environment. Reaching this phase of the release cycle is a […]
    marybaum
  • WP Briefing: Episode 83: Learning Pathways July 8, 2024
    Discover how Learning Pathways can guide you through your WordPress journey with clarity and purpose. In the latest episode of WordPress Briefing, host Josepha Haden Chomphosy welcomes special guest Wes Theron to discuss the newly introduced Learning Pathways. These curated lesson sets are tailored to various experience levels, roles, and use cases, ensuring a personalized […]
    Brett McSherry
  • WordPress 6.6 Release Candidate 2 July 2, 2024
    WordPress 6.6 RC2 is ready for download and testing! This version of the WordPress software is under development. Please do not install, run, or test this version of WordPress on production or mission-critical websites. Instead, please evaluate RC2 on a test server or a local environment. Reaching this phase of the release cycle is a […]
    marybaum
  • WordPress 6.6 Release Candidate 1 June 25, 2024
    The first release candidate (RC1) for WordPress 6.6 is ready for download and testing! This version of the WordPress software is under development. Please do not install, run, or test this version of WordPress on production or mission-critical websites. Instead, please evaluate RC1 on a test server or a local environment. Reaching this phase of […]
    marybaum
  • WordPress 6.5.5 June 24, 2024
    WordPress 6.5.5 is now available! This release features three security fixes. Because this is a security release, it is recommended that you update your sites immediately. This minor release also includes 3 bug fixes in Core. You can download WordPress 6.5.5 from WordPress.org, or visit your WordPress Dashboard, click “Updates”, and then click “Update Now”. […]
    Aaron Jorbin
  • WP Briefing: Episode 82: WCEU Hallway Track June 24, 2024
    Big events create big moments, and WordCamp Europe 2024 was no exception. Join host Josepha Haden Chomphosy on this episode of the WordPress Briefing as she shares her top insights and favorite highlights from the event. Discover what the WordPress community focused on during this exciting three-day gathering.
    Brett McSherry
  • WordPress 6.6 Beta 3 June 18, 2024
    WordPress 6.6 Beta 3 is here! Please download and test it. This beta version of the WordPress software is under development. Please do not install, run, or test this version of WordPress on production or mission-critical websites—you risk unexpected results if you do. Instead, test Beta 3 on a local site or a testing environment […]
    marybaum
RSS Sucuri Blog
  • How to Enable HTTP/2 On a Server July 24, 2024
    HTTP/2 is a game-changer in web protocol technology, offering significant improvements in speed, efficiency, and security over its predecessor, HTTP/1.1. With features like multiplexing, header compression, and server push, HTTP/2 can drastically reduce web page load times and enhance the overall user experience. Additionally, HTTP/2 is enabled by default for Sucuri’s Web Application Firewall (WAF), […]
    Kyle Knight
  • Attackers Abuse Swap File to Steal Credit Cards July 19, 2024
    When it comes to website security, sometimes the most innocuous features can become powerful tools in the hands of attackers. Such was the case in a recent incident we investigated, where bad actors exploited the humble swap file to maintain a persistent credit card skimmer on a Magento e-commerce site. This clever tactic allowed the […]
    Matt Morrow
  • Mastering WordPress File Permissions: A Guide for All Levels July 17, 2024
    File permissions might seem like a small part of managing a WordPress site, but they play a key role in your website’s security and functionality. Incorrect permissions can leave your site vulnerable to attacks, while overly restrictive settings can hinder its operation. This guide is designed to walk you through the essentials of WordPress file […]
    Rianna MacLeod
  • How to Set Cache Control Headers July 11, 2024
    When it comes to your website performance, every millisecond counts. Whether you’re managing a personal blog or a large-scale e-commerce site, the speed at which your pages load can profoundly impact everything from user experience to search engine rankings. This is where using HTTP headers, specifically cache control headers, can come in really handy. HTTP […]
    Rianna MacLeod
  • Input Validation for Web Forms & Website Security July 9, 2024
    Web forms are incredibly useful tools. They allow you to gather important information about potential clients and site visitors, collect comments and feedback, upload files, subscribe new users to your blog, or even collect payment details. But if your forms aren’t properly validating user inputs, you might be in for a nasty surprise: a variety […]
    Rianna MacLeod
  • New Variation of WordFence Evasion Malware July 5, 2024
    We recently came across an infected WordPress environment which contained a new variation of WordFence evasion malware using some sneaky tactics to conceal itself from view. The site administrator was reporting some issues with potential credit card theft malware on their website, but they had already removed that themselves by the time we arrived at […]
    Ben Martin
  • WordPress User Enumeration: Risks & Mitigation Steps July 3, 2024
    User enumeration is a technique used by attackers to discover valid usernames associated with a CMS or website. By exploiting certain features, bad actors can compile a list of usernames, which can then be used to launch brute force attacks. These attacks systematically try various password combinations to gain unauthorized access to user accounts on […]
    Rianna MacLeod
  • WordPress Vulnerability & Patch Roundup June 2024 June 28, 2024
    Vulnerability reports and responsible disclosures are essential for website security awareness and education. Automated attacks targeting known software vulnerabilities are one of the leading causes of website compromises. To help educate website owners about potential threats to their environments, we’ve compiled a list of important security updates and vulnerability patches for the WordPress ecosystem this […]
    Sucuri Malware Research Team
  • How to Troubleshoot & Fix the “This Site Can’t Be Reached” Error June 26, 2024
    Whether you’re a website owner or a visitor attempting to access web pages, encountering a “This Site Can’t be Reached” error can be both a frustrating and perplexing experience. Understanding the root causes and knowing how to fix them is key to maintaining a seamless browsing experience. In this post, we’ll dive into the various […]
    Rianna MacLeod
  • Decoding the Caesar Cipher Skimmer June 21, 2024
    Over the last several weeks we’ve observed an interesting new variation of “gtag” credit card skimming attack with a surprisingly high number of detections so far. As of the time of writing this article we have seen nearly 80 detections altogether in the first two weeks alone. Our research team and analysts have found this […]
    Ben Martin

Boot Partition Space

Posted by on 7:04 am in Server Administration | 0 comments

If your /boot partition is mounted separately , it is always a small compare to other partitions on the server. If the older kernels are not removed, then it gets full quickly.  In order to remove the older kernels safely we can use the package manager. For REHL/CentOS systems you can use below command. sudo yum install yum-utils && sudo package-cleanup --oldkernels --count=2 For the Debian and Ubuntu systems you can use below commands. First, check your kernel version, so you won’t delete the in-use kernel image, running: uname -r Now run this command for a list of installed kernels: dpkg --list 'linux-image*' | grep ^ii and delete the kernels you don’t want/need anymore by running this: sudo apt-get remove linux-image-VERSION Replace VERSION with the version of the kernel you want to remove. When you’re done removing the older kernels, you can run this to remove ever packages you won’t need anymore: sudo apt-get autoremove And finally you can run this to update grub kernel list: sudo...

read more

Bash Cases Statement

Posted by on 9:14 am in Bash Script | 7 comments

The case construct in bash shell allows us to test strings against patterns that can contain wild card characters. Bash case statement is the simplest form of the bash if else then condition statement. The simple example for this is if you are expecting different inputs from a user and want to execute specific command sets on the choice used.     case $variable in pattern1 ) statements ;; pattern2 ) statements ;; * ) statements ;; … esac   We can see the common use of the case statement in the init scripts of the services which has the options like start, stop, restart and status.  ...

read more