WordPress .htaccess and Permalink Cheat Sheet

WordPress is still incredibly popular and sometimes you have a to move a WordPress installation or you want to change your permalink structure. Regardless of your motivation, you probably don’t want to hurt your SEO.

I’ve spent some time writing and testing .htaccess for Apache2 redirects recently, so I thought I’d share a list of commonly needed WordPress redirects using regular expressions or just removing segments.

By default I’ll assume you use a .htaccess file that looks something like this:

Continue reading “WordPress .htaccess and Permalink Cheat Sheet”

SQL Dump Probing

I witnessed this attack recently, basically it’s just some web crawler trying different file names that somebody could have given a mysql dump that they by accident left inside a public directory of a web project.

Disclaimer: What’s explained in this post could be used in dual use cases. Explaining how the attacker works will ultimately help everybody preventing attacks and raise awareness for the attacks.

Continue reading “SQL Dump Probing”