So I was wrong before—I got everything cleaned up and running and updated and then within a couple of hours I was compromised again, and this time more unfuckably so.
I had missed something the first time around or I had a version of something hanging around that was eminently penetrable.
Either way, there was nothing for it but to sigh and really try to do a good job of it rather than a cleanup job of it. So I backed up the DB, wiped 75 percent of the filesystem, emptied out the DB, then reinstalled WordPress 4.8.2 from scratch, restored the DB, restored a bunch of files from backups, etc.
It took way, way too long. This makes me want to absolutely throttle these assholes even more. Who has time for this?
It also makes me want to be a little more careful about:
- Leaving old installs of things laying around the filesystem
- Running updates on a prompt basis
- Not installing quite so many plugins
But in any case, hopefully it all sticks this time, unless I managed to restore from backup something that still has a vulnerability in it. That would make me sad.
I wouldn’t be surprised if a few things are broken or a few entries are borked or something.
It’s hard to run your own little website these days. It’s almost not worth it. But here it is—I’ve just spent 16 hours fighting it back into shape. So let’s say that for the moment, at least, it’s still on the “worth it, just” side of the fence.
I guess that’s one way to spend a Sunday.