Hi, My site is getting hacked every other day and to increase the security I changed username and passwords for the whole site - including MySQL databases and users. The problem is that I assumed that it would be a matter of simply editing config.php with the new info and wordpress would be up and running again but I can't make it work. Can anyone help me out with how to do this please? I'd be most grateful! Thanks, Jez.
Hi Don, Well, short term I am getting "Error establishing a database connection" on where the blog should be after changing all the usernames and passwords including MySQL. Long term I don't know how I can stop the hackers hacking my main site. The blog is not the main site but an add on in a separate /blog folder. I have been onto the hosts who have looked at the VPS and couldn't see any issues. I have fixed any open permissions that I had stupidly left open and the passwords they are hacking are strong.
Remove all plugins and scan your wp-content folder for backdoors. Then install a plugin called WordPress File Monitor. To change your MySQL password or username contact your hosting provider.
open wp-conf.php file using your ftp and change username and pass there You can also use these plugins * http://wordpress.org/extend/plugins/security-captcha/ * http://wordpress.org/extend/plugins/secure-wordpress/ Hope it will solve the problem