[wp-hackers] wp-hackers Digest, Vol 105, Issue 37

Thu Oct 24 19:39:19 UTC 2013

Whilst PHP.NET is down here is a great cheat sheet for php (and others).

http://overapi.com/php/

On Thu, Oct 24, 2013 at 2:30 PM, <wp-hackers-request at lists.automattic.com>wrote:

> Send wp-hackers mailing list submissions to
>         wp-hackers at lists.automattic.com
>
> To subscribe or unsubscribe via the World Wide Web, visit
>         http://lists.automattic.com/mailman/listinfo/wp-hackers
> or, via email, send a message with subject or body 'help' to
>         wp-hackers-request at lists.automattic.com
>
> You can reach the person managing the list at
>         wp-hackers-owner at lists.automattic.com
>
> When replying, please edit your Subject line so it is more specific
> than "Re: Contents of wp-hackers digest..."
>
>
> Today's Topics:
>
>    1. Re: iOS WP app: Featured image size problems (Nicholas Ciske)
>    2. php.net site got malware?? (Haluk Karamete)
>    3. Re: php.net site got malware?? (Andrew Nacin)
>    4. Re: php.net site got malware?? (Nikola Nikolov)
>    5. Re: php.net site got malware?? (Peter van der Does)
>    6. Re: iOS WP app: Featured image size problems (Micky Hulse)
>    7. SSL loading unsecured content Headache (James Tryon)
>    8. Re: SSL loading unsecured content Headache (Nikola Nikolov)
>
>
> ----------------------------------------------------------------------
>
> Message: 1
> Date: Thu, 24 Oct 2013 07:06:07 -0500
> From: Nicholas Ciske <nl at thoughtrefinery.com>
> To: wp-hackers at lists.automattic.com
> Subject: Re: [wp-hackers] iOS WP app: Featured image size problems
> Message-ID: <263C2CB4-F724-44A8-8ACD-250B35F26842 at thoughtrefinery.com>
> Content-Type: text/plain;       charset=us-ascii
>
> Not a true solution, but a viable workaround: you could install WP Thumb
> which will create missing image sizes on the fly (and then cache them for
> future use).
>
> http://wordpress.org/plugins/wp-thumb/
>
> _________________________
> Nick Ciske
> http://thoughtrefinery.com/
> @nciske
>
> On Oct 23, 2013, at 1:58 PM, Micky Hulse wrote:
>
> > Hello,
> >
> > Thanks so much for the replies J.D. and Simon, I really appreciate your
> help.
> >
> > On Wed, Oct 23, 2013 at 5:25 AM, J.D. Grimes <jdg at codesymphony.co>
> wrote:
> >> I don't think that wp_get_attachment_image_src() accepts parameters of
> the format you are using ('300px').
> http://codex.wordpress.org/Function_Reference/wp_get_attachment_image_src
> >> The $size can either be a keyword (thumbnail, medium, large or full) or
> an array (array(300,300)).
> >
> > My bad. I apologize that I did not mention the rest of my setup.
> >
> > In my functions file, I have:
> >
> > function mytheme_setup() {
> > add_theme_support('post-thumbnails');
> > set_post_thumbnail_size(150, 150);
> > }
> > add_action('after_setup_theme', 'mytheme_setup');
> > // ... and later on in this file:
> > # Add new image sizes:
> > add_image_size('130px', 130); // Thumbnail size: 130 x 130
> > add_image_size('300px', 300); // Medium size: 300 x 300
> > add_image_size('470px', 470);
> > add_image_size('640px', 640);
> > add_image_size('810px', 810);
> > add_image_size('980px', 980); // Large size: 980 x 980
> > add_image_size('1320px', 1320);
> > add_image_size('1620px', 1620);
> > add_image_size('1960px', 1960);
> >
> > The new image size names are based on another system we use ... I
> > wanted to keep the "XXXpx" naming conventions the same across systems.
> >
> > With that said, the use of (for example):
> >
> > wp_get_attachment_image_src(get_post_thumbnail_id($post->ID), '300px')
> > wp_get_attachment_image_src(get_post_thumbnail_id($post->ID), '640px')
> >
> > ... work for all images, except for images uploaded as a featured
> > image using the WP iOS app.
> >
> > Other image getting functions also work, but it's the iOS images that
> > just return the original source image size.
> >
> > On Wed, Oct 23, 2013 at 7:57 AM, Simon Vart <simon.vart at exigences.biz>
> wrote:
> >> I think you could also add a new image size in functions.php :
> >> add_image_size( '300px', 300, 300, true );
> >> and then your call to wp_get_attachment_image_src() will be understood.
> When
> >> you upload an image, WP will create a image of this size with the
> keyword
> >> '300px'
> >
> > Sorry again, that I did not detail my setup. Thank you for the help,
> > and thankfully I do have that setup in my functions.php file. I
> > should've made that clear in my first message. :(
> >
> > Question(s):
> >
> > When you folks use the iOS WP app, and set a featured image, are you
> > able to get at the different sizes on your templates?
> >
> > For some reason, my setup isn't allowing me to access the custom image
> > sizes (only for iOS-uploaded featured images), even though they are
> > generated and sitting there in my uploads folder.
> >
> > Maybe I'm not setup properly in my functions.php file? I have all of
> > my add_image_size() calls just sitting out in the open. Do I need to
> > have these inside of an action? Should they go inside the
> > "after_setup_theme" action along side my
> > add_theme_support('post-thumbnails') call?
> >
> > Please let me know if I can provide more information.
> >
> > Thank you!
> >
> > M
> > _______________________________________________
> > wp-hackers mailing list
> > wp-hackers at lists.automattic.com
> > http://lists.automattic.com/mailman/listinfo/wp-hackers
>
>
>
> ------------------------------
>
> Message: 2
> Date: Thu, 24 Oct 2013 05:45:55 -0700
> From: Haluk Karamete <halukkaramete at gmail.com>
> To: wp-hackers at lists.automattic.com
> Subject: [wp-hackers] php.net site got malware??
> Message-ID:
>         <CAHERW=0hP+k_bFbDD7sfw_gqdCcMaowdEG+4sJ6QL=
> SggpTnbA at mail.gmail.com>
> Content-Type: text/plain; charset=ISO-8859-1
>
> This morning, chrome warned me with this message:
>
> The Website Ahead Contains Malware!
> Google Chrome has blocked access to php.net for now.
> I needed to visit the site for a function look up. But I had to stop.
> Just sharing for what it's worth...
>
> What do we do? proceed or wait?
>
>
> ------------------------------
>
> Message: 3
> Date: Thu, 24 Oct 2013 08:54:54 -0400
> From: Andrew Nacin <wp at andrewnacin.com>
> To: "Discussion list for WordPress developers."
>         <wp-hackers at lists.automattic.com>
> Subject: Re: [wp-hackers] php.net site got malware??
> Message-ID:
>         <
> CAP29PvhpcYHCOa-ZjN+5M8rviWGAFh5M0o-vL1yu49kKyr5s8Q at mail.gmail.com>
> Content-Type: text/plain; charset=ISO-8859-1
>
> See https://twitter.com/rasmus/status/393258147025932288 and generally
> @rasmus's last few dozen tweets. It appears to be either nothing, or a
> problem with a mirror.
>
>
> On Thu, Oct 24, 2013 at 8:45 AM, Haluk Karamete <halukkaramete at gmail.com
> >wrote:
>
> > This morning, chrome warned me with this message:
> >
> > The Website Ahead Contains Malware!
> > Google Chrome has blocked access to php.net for now.
> > I needed to visit the site for a function look up. But I had to stop.
> > Just sharing for what it's worth...
> >
> > What do we do? proceed or wait?
> > _______________________________________________
> > wp-hackers mailing list
> > wp-hackers at lists.automattic.com
> > http://lists.automattic.com/mailman/listinfo/wp-hackers
> >
>
>
> ------------------------------
>
> Message: 4
> Date: Thu, 24 Oct 2013 15:56:34 +0300
> From: Nikola Nikolov <nikolov.tmw at gmail.com>
> To: wp-hackers at lists.automattic.com
> Subject: Re: [wp-hackers] php.net site got malware??
> Message-ID:
>         <
> CAOwx47dkxSWtwFkwOh6VAS-78Nm-btCZ7i_LnGA_bbc_Gr-Uqw at mail.gmail.com>
> Content-Type: text/plain; charset=ISO-8859-1
>
> I got a message on the WordFence list stating that it got flagged as
> malware(I was experiencing some un-availability of the site at some point
> in the last couple of days). Here's their guess on the issue:
>
> The report Google is issuing for php.net is available
> here<http://www.google.com/safebrowsing/diagnostic?site=php.net> .
> We haven't been able to verify if php.net has been hacked, but Google
> states they crawled the site yesterday and found 4 trojans hosted on 4
> domains. If you're a WordPress developer and need to visit php.net to
> access PHP documentation, please take care until this is resolved. It is
> quite likely a false positive or due to simple backlinks to malicious
> domains appearing on php.net, but the worst case scenario is that the site
> has been hacked and malware is hosted on the site itself.
>
> So - I'd suggest to wait for now. It seems that they've already filed a
> Request for Review according to this thread -
>
> http://productforums.google.com/forum/#!topic/webmasters/puLmvjtK0m8%5B1-25-false%5D
>
>
> On Thu, Oct 24, 2013 at 3:45 PM, Haluk Karamete <halukkaramete at gmail.com
> >wrote:
>
> > This morning, chrome warned me with this message:
> >
> > The Website Ahead Contains Malware!
> > Google Chrome has blocked access to php.net for now.
> > I needed to visit the site for a function look up. But I had to stop.
> > Just sharing for what it's worth...
> >
> > What do we do? proceed or wait?
> > _______________________________________________
> > wp-hackers mailing list
> > wp-hackers at lists.automattic.com
> > http://lists.automattic.com/mailman/listinfo/wp-hackers
> >
>
>
> ------------------------------
>
> Message: 5
> Date: Thu, 24 Oct 2013 09:08:46 -0400
> From: Peter van der Does <peter at avirtualhome.com>
> To: wp-hackers at lists.automattic.com
> Subject: Re: [wp-hackers] php.net site got malware??
> Message-ID: <20131024090846.28ac3201 at Indy>
> Content-Type: text/plain; charset=US-ASCII
>
> On Thu, 24 Oct 2013 08:54:54 -0400
> Andrew Nacin <wp at andrewnacin.com> wrote:
>
> > See https://twitter.com/rasmus/status/393258147025932288 and generally
> > @rasmus's last few dozen tweets. It appears to be either nothing, or a
> > problem with a mirror.
> >
> >
>
> Not so much false, just no longer an issue, but their userprefs.js file
> seems to be compromised at one point:
>
> https://news.ycombinator.com/item?id=6604251
>
> --
> Peter van der Does
>
> GPG key: CB317D6E
>
> Site: http://avirtualhome.com
> GitHub: https://github.com/petervanderdoes
> Twitter: @petervanderdoes
>
>
>
> ------------------------------
>
> Message: 6
> Date: Thu, 24 Oct 2013 11:23:47 -0700
> From: Micky Hulse <mickyhulse.lists at gmail.com>
> To: wp-hackers at lists.automattic.com
> Subject: Re: [wp-hackers] iOS WP app: Featured image size problems
> Message-ID:
>         <
> CALri7MnpEb5cSrrVrwOUJNtw-TpvmzbeEK5n-yF3VZNT1kj+tw at mail.gmail.com>
> Content-Type: text/plain; charset=UTF-8
>
> Hi Nicholas, thanks for the reply!
>
> On Thu, Oct 24, 2013 at 5:06 AM, Nicholas Ciske <nl at thoughtrefinery.com>
> wrote:
> > Not a true solution, but a viable workaround: you could install WP Thumb
> which will create missing image sizes on the fly (and then cache them for
> future use).
> > http://wordpress.org/plugins/wp-thumb/
>
> That's actually an approach I'm familiar with. :)
>
> Back when I used EE, that's how we handled images. I do the same thing
> for Django apps. It's kinda nice having the freedom to resize images
> on the template level.
>
> I still have yet to test Nikola's suggestions, but I'm hoping to get
> to that today as I would like to know if there's something setup wrong
> with my theme.
>
> Anyway, I'll give wp-thumb a go. Thanks for tip!
>
> Have a nice day.
>
> Cheers,
> Micky
>
>
> ------------------------------
>
> Message: 7
> Date: Thu, 24 Oct 2013 15:24:43 -0400
> From: James Tryon <james at easilyamusedinc.com>
> To: wp-hackers at lists.automattic.com
> Subject: [wp-hackers] SSL loading unsecured content Headache
> Message-ID: <3DDE715D-99C6-469D-BBA5-1FA05F2F7A25 at easilyamusedinc.com>
> Content-Type: text/plain;       charset=us-ascii
>
> Hi Everyone,
>
> Not sure if I should be posting this here or not.
> I'm also looking for help in the linode forums.
>
> We are currently running 6 servers, but I think only 4 of them are set up
> as a cluster.
> The Cluster is running as our hosting environment for our clients.
> We are only hosting WordPress Sites. It's a Gentoo Base System release 2.1.
>
> When ever I try to get SSL to work I get endless redirects or none of the
> css or JavaScript will load securely.
> I have the sites url set to https in the settings file and checked the
> database, all https:
> When you look at the page source most of the links are http:// still.
>
> Now things get weird. I changed wp_home and wp_siteurl to https://test.comand reloaded the login page.
> This only Worked b/c i was on the login page. If you tryed to go to a
> different link, It would take you to test.com.
> Then I looked at the page source. Check out this screenshot:
> https://www.dropbox.com/s/b367bnc7nttiz ... .28.53.png
> Some links are http others are https and all set from the same value in
> the config file....
>
> This is what is there now.
> define('WP_HOME', 'https://skopospublishing.com');
> define('WP_SITEURL', 'https://skopospublishing.com');
>
> I have spent almost 20 hours chasing rabbits. I get the same problems with
> the default theme and no plugins.
> The Contractor that has been working on the server swears its WordPress.
> I think it has something to do with the server configuration and how he is
> serving the SSL's
>
> Same problem on https://studentlaunchpad.com/
>
> He also told he that "it's behind a proxy/SSL accelerator, home and
> siteurl contents are set up, and what we saw testing url generation"
>
> I'm not sure what he means. I do know that no matter what I change the
> site urls in the config or database, or what I change in the .htaccess files
> Something else is serving http:// in from of all the links...
>
> I'm lost and looking for more insight. I'm happy to provide more
> information please let me know what you need.
> If this is the wrong place for this type of question, please advise where
> to ask.
>
> - James Tryon
>
> Thank you for your time,
> James Tryon, Creative Director
>
> Easily Amused, Inc.
> http://easilyamusedinc.com
> P: (407) 278-5498 C: (407) 733-6473 T: easilyamused
>
>
>
> ------------------------------
>
> Message: 8
> Date: Thu, 24 Oct 2013 22:30:43 +0300
> From: Nikola Nikolov <nikolov.tmw at gmail.com>
> To: wp-hackers at lists.automattic.com
> Subject: Re: [wp-hackers] SSL loading unsecured content Headache
> Message-ID:
>         <CAOwx47dYDx+Pz05TAFX6=4nAnNe0iqAqVx=
> 4oppdT+jzxpQMLA at mail.gmail.com>
> Content-Type: text/plain; charset=ISO-8859-1
>
> Hi James,
>
> Have you tried using a plugin like
> http://wordpress.org/plugins/wordpress-https/ or
> http://wordpress.org/plugins/ssl-insecure-content-fixer/ for instance?
>
> By the way - the link to the screenshot seems broken - so I can't really
> see what's still getting http instead.
>
> Nikola
>
>
> On Thu, Oct 24, 2013 at 10:24 PM, James Tryon <james at easilyamusedinc.com
> >wrote:
>
> > Hi Everyone,
> >
> > Not sure if I should be posting this here or not.
> > I'm also looking for help in the linode forums.
> >
> > We are currently running 6 servers, but I think only 4 of them are set up
> > as a cluster.
> > The Cluster is running as our hosting environment for our clients.
> > We are only hosting WordPress Sites. It's a Gentoo Base System release
> 2.1.
> >
> > When ever I try to get SSL to work I get endless redirects or none of the
> > css or JavaScript will load securely.
> > I have the sites url set to https in the settings file and checked the
> > database, all https:
> > When you look at the page source most of the links are http:// still.
> >
> > Now things get weird. I changed wp_home and wp_siteurl to
> https://test.comand reloaded the login page.
> > This only Worked b/c i was on the login page. If you tryed to go to a
> > different link, It would take you to test.com.
> > Then I looked at the page source. Check out this screenshot:
> > https://www.dropbox.com/s/b367bnc7nttiz ... .28.53.png
> > Some links are http others are https and all set from the same value in
> > the config file....
> >
> > This is what is there now.
> > define('WP_HOME', 'https://skopospublishing.com');
> > define('WP_SITEURL', 'https://skopospublishing.com');
> >
> > I have spent almost 20 hours chasing rabbits. I get the same problems
> with
> > the default theme and no plugins.
> > The Contractor that has been working on the server swears its WordPress.
> > I think it has something to do with the server configuration and how he
> is
> > serving the SSL's
> >
> > Same problem on https://studentlaunchpad.com/
> >
> > He also told he that "it's behind a proxy/SSL accelerator, home and
> > siteurl contents are set up, and what we saw testing url generation"
> >
> > I'm not sure what he means. I do know that no matter what I change the
> > site urls in the config or database, or what I change in the .htaccess
> files
> > Something else is serving http:// in from of all the links...
> >
> > I'm lost and looking for more insight. I'm happy to provide more
> > information please let me know what you need.
> > If this is the wrong place for this type of question, please advise where
> > to ask.
> >
> > - James Tryon
> >
> > Thank you for your time,
> > James Tryon, Creative Director
> >
> > Easily Amused, Inc.
> > http://easilyamusedinc.com
> > P: (407) 278-5498 C: (407) 733-6473 T: easilyamused
> >
> > _______________________________________________
> > wp-hackers mailing list
> > wp-hackers at lists.automattic.com
> > http://lists.automattic.com/mailman/listinfo/wp-hackers
> >
>
>
> ------------------------------
>
> Subject: Digest Footer
>
> _______________________________________________
> wp-hackers mailing list
> wp-hackers at lists.automattic.com
> http://lists.automattic.com/mailman/listinfo/wp-hackers
>
>
> ------------------------------
>
> End of wp-hackers Digest, Vol 105, Issue 37
> *******************************************
>

-- 

*Briston Davidge*
e briston at luminopolis.com
c 816 812 7245
o 888 HEY LUMI

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
- - - - - - - - - -
 *Luminopolis** - Online Solutions for Enlightened Communities.*
 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
- - - - - - - - - - -