Delete all pending spam / comments of WordPress from phpMyAdmin

We do not really need wordpress comments option for websites most of the times. After developing a website in WordPress we often forget to disable comments. And that is what attracts the spammers. Spammers fill out comments option with bots and tries to create backlinks from your website. These garbage comments also increases the database size and creates pressure on the server. The comments option in WordPress doesn’t allow us to delete more than 20 comments at a time. If your website has been bombed with spams – it may have thousands of them before you realize those are there. So it becomes a hectic job deleting 20 such comments from the WordPress dashboard.

In such circumstances – you may delete all of those spam comments from the phpMyAdmin panel or using MySQL queries in database tools. Here is how you may delete such spam comments from the phpMyAdmin:

1. Go to the phpMyAdmin panel (Most of the hosting platforms offer it).

2. Click on the database in the left panel (you may have other databases there)

3. Click on the “wp_comments” table in the left panel or in the main page in right. (Assuming database table prefix is “wp”. replace “wp” to whatever else you have set as database prefix).

4. Now in the right side page – click on the “SQL” tab at the top.

5. Now run the following query:

DELETE FROM wp_comments WHERE comment_approved = 0

(replace “wp” with the table prefix you have in your wordpress database)

The above query will delete any comment which you haven’t approved.

Download link of Winamp – The best MP3 player in the world [updated]

MP3 and Winamp became synonymous since the end of 90’s. I have always used Winamp for listening to music. No doubt it was the most popular media player in the world. When Nullsoft Inc – the creator of Winamp announced it will no longer work on Winamp – was a shocking news for Winamp lovers like me. Although Nullsoft is not releasing new updates for the software – the old one is still good enough. If you were looking for download links of Winamp and its plugins – here you go:

DOWNLOAD WINAMP

Windows: Winamp 5.666

http://winampplugins.co.uk/Winamp/ (official fully patched build)
http://www.filehorse.com/download-winamp/ (patched)
http://www.filehorse.com/download-winamp/15619/ (unpatched)
http://www.tomsguide.com/us/download…p,0301-14.html (unpatched)

Important: Update Patches for Unpatched 5.666 (build 3516) only!

Mac OSX: Winamp Sync Beta 0.8.1
https://www.macupdate.com/app/mac/40721/winamp | dmg direct
http://mac.filehorse.com/download-winamp/

Android: Winamp 1.4.15 & Pro apps
Free APK | mirror
Pro Stub | mirror
Downloads & instructions

_______________________________________________

WINAMP SKINS

http://www.allwinampskins.com
http://www.1001skins.com
http://www.deviantart.com/?qh=&secti…q=winamp+skins
http://skinconsortium.com/index.php?…loads&typeID=1
http://uploadgeneration.info/Winamp/…com/skins.html
http://winampheritage.com/skins
http://www.winampskins.info
http:/www.customize.org

WINAMP PLUGINS

http://uploadgeneration.info/Winamp/…ins/index.html
http://winamp.dpedu.io/
http://winampheritage.com/plugins
http://www.getwinamp.net/mirror/download/
https://www.google.com/#q=winamp+plugins

GHOST vulnerability in Linux distributions and its Solution

A GNU C Library (glibc) vulnerability – termed as “GHOST Vulnerability” was announced to general public on 27  January 2015 – after a Cloud research company Qualys discovered this major security vulnerability. This vulnerability enables hackers to remotely take control of systems without even knowing any system IDs or passwords.

Ghost Vulnerability - A serious security hole in Linux systems

How to Quickly Identify if your system is vulnerable:

The GHOST vulnerability can be exploited on Linux systems that use versions of the GNU C Library prior to glibc-2.18. That is, systems that use glibc-2.2 to glibc-2.17 are at risk. Many Linux distributions like CentOS (6,7), Debian 7, RHEL (6,7), Ubuntu and Distributions with end of life are vulnerable and should be patched immediately.

You may check the version of glibc by looking up the version of ldd (which uses glibc) with the following command:

#ldd –version

The first line of the output will tell you the glib version, the output could be like this:

# ldd (GNU libc) 2.12

As mentioned earlier – if it is older than 2.18 – your system is vulnerable.

How to solve (patch the system) this problem:

Ubuntu / Debian:

Update all of your packages to the latest version available using this command:

# sudo apt-get update && sudo apt-get dist-upgrade

Respond to the confirmation prompt with: “y” and finally reboot using this command: # sudo reboot

 

CentOS / RHEL:

Update glibc to the latest version available via “yum”:

# sudo yum update glibc

Respond to the confirmation prompt with: “y” and finally reboot using this command: # sudo reboot

 

IF UPDATE FAILS:

To mitigate the problem you before the patch change the value of UseDNS to “no” in “etc/ssh/sshd_config”. This disables the Reverse DNS checks in public facing services.

Although you can be relived for the time being – make sure you patch your distribution whenever it is available using the steps mentioned above.

Facebook temporarily unavailable – January 27, 2015

Facebook was unavailable for about an hour today. Not sure what happened but this is what I found when I tried to browse FACEBOOK.COM

facebook unavailable - January 27, 2015

UPDATE: From further search on this issue I came to know that the famous Lizard Squad (Black Hat Hacking Group) is responsible for the Facebook down issue. A huge DOS attack has taken down Facebook, Instagram and other social media sites.

Lizard Squad - Black Hat Hacker Group

Free Joomla.com Subdomain

GRAB YOUR JOOMLA SUBDOMAIN – BEFORE OTHERS TAKE IT AWAY.

Like wordpress – Joomla.com is now offering subdomain. You can open your joomla.com subdomain with just 1 step – signup process.

Free joomla subdomain

This is indeed a great initiative by joomla. It will help the beginners to learn Joomla on realtime hosted environment.

However, if you signup multiple subdomain – you may face an additional captcha verification step

Free joomla subdomain

I got mine: hasibul.joomla.com 🙂

WhatsApp, Line and MyPeople Blocked in Bangladesh

WhatsApp Line and Mypeople blocked in Bangladesh

Three more instant messaging and Internet calling software got blocked in Bangladesh – just one day after blocking another popular program Viber. From an unconfirmed source – I could learn that these are blocked till 21st January with an excuse of security concern.

Although officials said these will be unblocked by 21st January – but many are fearing it will not be. The government blocked Youtube earlier a couple of years back. Many other Google services were interrupted due to this block. It took a long time for the unblock that time.

Whatever the reason for the block the Government may provide – it is never accepted positively among the users. The new generation is highly dependent on these services – which are known to be famous for their free text messaging and Internet voice calls.

Skype, Google Talk (Hangout) and Facebook calling services are still running fine but many are fearing blocks might be imposed on these too.

 

Why Google Drive is the better choice than Dropbox in Bangladesh

Google Drive is better than Dropbox

If you are residing in Bangladesh and you are using Dropbox as you cloud storage solution – It is good time to switch to Google Drive. There are many other reasons why Google drive is preferable – but the most important of those is the network speed issue in Bangladesh.

I would not start the debate on which one offers better service – or premium version of which one is cheaper (Although I will clearly put Google Drive ahead in this race).

Many of the ISPs in Bangladesh offer higher speed (compared to actual Internet Bandwidth) for YOUTUBE. For example: someone with 2mbps Internet connectivity may get 10mbps speed when (s)he streams through Youtube.

I am not sure how this higher bandwidth is supplied for Youtube, but as far as I remember reading a news which said Google to get some bandwidth from BTCL/BSCCL. Due to (whatever) arrangement Google had – people in Bangladesh are getting bandwidth in abundance when using Google services. This includes accessing Google Play store and Google Drive as well. I noticed I get way higher speed when I download attachment from Gmail as well.

Therefore, if you switch to Google drive from Dropbox – you’ll get higher speed for Google Drive. File transfer will be much faster.

THIS IS APPLICABLE IF YOUR ISP IS OFFERING HIGHER BANDWIDTH FOR YOUTUBE.

 

 

Solution for Deprecated function iconv_set_encoding() error while Joomla Installation in php 5.6

If you are trying to install Joomla (or other CMS) in php 5.6 environment and encounter the error : Deprecated: iconv_set_encoding()
– I’ve got a solution for you.

The error may look like following:

Deprecated: iconv_set_encoding(): Use of iconv.internal_encoding is deprecated in joomlaroot\libraries\joomla\string\string.php on line 27

Deprecated: iconv_set_encoding(): Use of iconv.input_encoding is deprecated in joomlaroot\libraries\joomla\string\string.php on line 28

Deprecated: iconv_set_encoding(): Use of iconv.output_encoding is deprecated in joomlaroot\libraries\joomla\string\string.php on line 29

Open the file string.php in “joomlaroot\libraries\joomla\string\” directory. Go to line 27.

Now change the following lines:

if (function_exists(‘iconv’))
{
// These are settings that can be set inside code
iconv_set_encoding(“internal_encoding”, “UTF-8”);
iconv_set_encoding(“input_encoding”, “UTF-8”);
iconv_set_encoding(“output_encoding”, “UTF-8”);
}

to the following:

if (function_exists(‘iconv’) && PHP_VERSION_ID < 50600)
{
// These are settings that can be set inside code
iconv_set_encoding(“internal_encoding”, “UTF-8”);
iconv_set_encoding(“input_encoding”, “UTF-8”);
iconv_set_encoding(“output_encoding”, “UTF-8”);
}
elseif (PHP_VERSION_ID >= 50600)
{
ini_set(‘default_charset’, ‘UTF-8’);
}

This should resolve the problem and let you progress to the next level during Joomla installation.

Quota Problem in WHM: Enabling second level quota on an OpenVZ node

I am talking about a very common problem in cPanel/WHM based server or VPS. Fresh WHM based server often do not show proper quota allocation for the hosting accounts. It show ZERO usage and Unlimited quota. Fixing the problem in a dedicated server is quite straight forward. The “Initial Quota Setup” in WHM or the command ” /script/fixquota” will solve the problem. But VPSs requires a second level quota setup as the first level quota is configured during VPS container setup.

Solution is to enable second level quota on the node. To do it execute these commands on the node:

vzctl stop CTID
vzctl set CTID –quotaugidlimit 100 –save
vzctl start CTID

Then, if you’re under WHM, do the “Initial quota setup” thing or run “/script/fixquota” through SSH.

NOTE:

CTID is the container/vps id number.

On the second command,  –quotaugidlimit 100 <- this is the number that defines the max file owners. Example: you have 100 users into the vps, set it to 120. You have 300 users into the vps, set it to something more than 300. I’ve used 100 on this example because it’s a common average value. Keep in mind that the more you set, the more kernel memory overhead will be created.

ConfigServer installation IPtables problem in OpenVZ or Virtuozzo (solved!)

ConfigServer Firewall (AKA csf) is an essential security tool for Linux based server and VPS.

The installation of CSF is pretty straight forward and is described here: http://configserver.com/free/csf/install.txt

However, some of the iptables modules required by the csf might not be present in the server and when the perl test command ( # perl /usr/local/csf/bin/csftest.pl ) is run in the VPS container while installing csf – the following fatal error may be encountered:

[root@vps-xyz ~]# perl /etc/csf/csftest.pl
Testing ip_tables/iptable_filter…OK
Testing ipt_LOG…FAILED [ 4294967295] – Required for csf to function
Testing ipt_multiport/xt_multiport…FAILED [FATAL Error: iptables: Unknown error 4294967295] – Required for csf to function
Testing ipt_REJECT…OK
Testing ipt_state/xt_state…FAILED [FATAL Error: iptables: Unknown error 4294967295] – Required for csf to function
Testing ipt_limit/xt_limit…FAILED [FATAL Error: iptables: Unknown error 4294967295] – Required for csf to function
Testing ipt_recent…FAILED [Error: iptables: Unknown error 4294967295] – Required for PORTFLOOD and PORTKNOCKING features
Testing xt_connlimit…FAILED [Error: iptables: Unknown error 4294967295] – Required for CONNLIMIT feature
Testing ipt_owner/xt_owner…FAILED [Error: iptables: Unknown error 4294967295] – Required for SMTP_BLOCK and UID/GID blocking features
Testing iptable_nat/ipt_REDIRECT…FAILED [Error: iptables v1.3.5: can’t initialize iptables table `nat’: Table does not exist (do you need to insmod?)] – Required for MESSENGER feature
Testing iptable_nat/ipt_DNAT…FAILED [Error: iptables v1.3.5: can’t initialize iptables table `nat’: Table does not exist (do you need to insmod?)] – Required for csf.redirect feature

SOLUTION:

To resolve the issue – You’ll need to have access to your Hardware node (main server – not the VPS container). If you do not have access to the main server you may provide this guide to your VPS provider. Now you need to do the following steps:

1. First, you need to define required iptables modules are available for VPS.
Edit /etc/sysconfig/iptables-config file on the Hardware Node (Main server) and make sure you have the following:

IPTABLES_MODULES="ipt_REJECT ipt_tos ipt_TOS ipt_LOG ip_conntrack ipt_limit ipt_multiport iptable_filter iptable_mangle ipt_TCPMSS ipt_tcpmss ipt_ttl ipt_length ipt_state iptable_nat ip_nat_ftp"

Edit /etc/sysconfig/vz file:

IPTABLES="ipt_REJECT
ipt_tos ipt_TOS ipt_LOG ip_conntrack ipt_limit ipt_multiport iptable_filter iptable_mangle ipt_TCPMSS ipt_tcpmss ipt_ttl ipt_length ipt_state iptable_nat ip_nat_ftp"

2. Restart Virtuozzo/OpenVZ:

# service vz restart

3. execute the command (Assuming your VPS’s CTID is 1001):

# vzctl set 1001 --netfilter full --save --setmode restart

4. Now run the perl test command once again in the VPS container and you should see the result successful:

root@vps-xyz [~]# perl /usr/local/csf/bin/csftest.pl
Testing ip_tables/iptable_filter...OK
Testing ipt_LOG...OK
Testing ipt_multiport/xt_multiport...OK
Testing ipt_REJECT...OK
Testing ipt_state/xt_state...OK
Testing ipt_limit/xt_limit...OK
Testing ipt_recent...OK
Testing xt_connlimit...OK
Testing ipt_owner/xt_owner...OK
Testing iptable_nat/ipt_REDIRECT...OK
Testing iptable_nat/ipt_DNAT...OK

RESULT: csf should function on this server

5. Finally restart CSF:

# Service csf restart