Littafin Adireshi
Kusan kashi 90% na faruwa ne ta hanyar "lambar ɓarna".
WordPressFiye da 80% na gidajen yanar gizo plugins ne waɗanda ke kawo lambar ɓarna a cikin asusun gidan yanar gizon (akwai plugins na gidan yanar gizon hukuma, plugins masu yawo kan layi, da sauransu).
Ɗayan kuma shine jigon (siffar fage, jigon pirated) shine "lambar ɓarna" ko "dokin bayan gida" wanda ke shiga uwar garken don yada lalacewa.
yanzu haka,Chen WeiliangShin zai nuna maka yadda ake samun shi kafin lokaci ta hanyar nazarin lambar jigon WordPress?
Yi nazari da keɓance lambar mugunta a cikin function.php
Mafi yawan abu game da "lambar mugunta" a cikin WordPress shine aiki(s) .php a cikin kundin jigo.
A ƙarshen fayil ɗin function.php, yawanci akwai sharhi na rufewa kamar haka:
//全部结束 ?>
Idan ka ga cewa babu irin wannan bayanin rufewa to ka tabbata cewa an lalata fayil ɗin function.php ɗinka kuma kana buƙatar duba shi.
Menene mugun code na jigon WordPress?
Misali, layin code mai zuwa:
- aikin _checkactive_widgets
- aikin _check_active_widget
- aiki _samun_allwidgets_cont
- aiki _get_all_widgetcont
- aiki stripos
- aiki stripos
- scandir aiki
- aiki _getprepare_widget
- aikin _prepared_widget
- aiki __popular_posts
- add_action ("admin_head", "_checkactive_widgets");
- add_action ("init", "_getprepare_widget");
- _verify_isactivate_widgets
- _check_isactive_widget
- _samu_allwidgetscont
- _shirya_widgets
- _Shahararrun posts
- Kowace jere tana zaman kanta.
- Idan kana da ɗaya daga cikin lambar da ke sama a cikin functional.php to ana iya kamuwa da lambar mugunyar cuta.
- Daga cikin su, aiki, add_action, da sauransu yawanci lambobin da ke cikin "lambar ɓarna" da "aikin shiri".
Yadda za a cire function.php malicious virus code?
Hakanan yana da sauƙin tsaftacewa.
Kawai a cikin fayil function.php, nemo lambar da ke sama kuma share shi.
Amma da zarar kamuwa da cuta, duk jigogin da ke cikin kundin adireshin za su kamu da cutar.
Don haka kawai ku san cewa jigon da ake amfani da shi a halin yanzu ba shi da inganci, kuma da zarar an share shi, za a samar da shi cikin sauri.
Bayan tsaftace lambar jigo, saita fayil ɗin ayyuka.php zuwa izini 444 sannan tsaftace wasu jigogi.
A ƙarshe, kuna buƙatar canza izini zuwa fayil ɗin functional.php,Chen WeiliangAna ba da shawarar cewa izini 444 suna da aminci sosai.
Lokacin da kake son gyara shi, ba laifi a gyara shi sannan.
Hope Chen Weiliang Blog ( https://www.chenweiliang.com/ ) shared "Mene ne malicious code na WordPress theme?Yanar Gizo Malicious Code Analysis" don taimaka muku.
Barka da zuwa raba hanyar haɗin wannan labarin:https://www.chenweiliang.com/cwl-1579.html
Barka da zuwa tashar Telegram na Chen Weiliang's blog don samun sabbin abubuwa!
📚 Wannan jagorar ya ƙunshi ƙima mai yawa, 🌟Wannan dama ce da ba kasafai ba, kar a rasa ta! ⏰⌛💨
Share da like idan kuna so!
Rarraba ku da abubuwan so sune ci gaba da ƙarfafa mu!