Hacked.

Contact host, start changing passwords, verify that he’s using the latest version of WP available.

hi
my site has also been hacked at least 5 times – each time the mysql database has either been deleted or changed. i am using the latest wordpress and have repeatedly changed my user name and passord a number of times.

i reported the issue to my host (startlogic.com – they are quite big with over 80 000 customers) and this is what they say:

Your php application is leaving an open
door for hackers to enter the site
since some of your files are set
to the required 777 permissions.

You can try researching a more secure
blog application or one that does not
required permissions above 700.

appreciate any help as i really would like to keep wordpress but obviously need to secure it to prevent hacking

thanks

You can keep WP – just don’t keep files/folders world writable (=chmod 666 or 777).

nice to hear that but one of the plugins i have (to create a google sitemap) requires 2 files it creates to store the sitemap, to have chmod 666. this also applies to the backup plugin – what do i do about that if i want to keep the plugins?

thanks

clive

I don’t know. Maybe don’t leave those files/folder ALL the time with those permissions?
(I don’t use them, so I am bit out of ideas)