OSSEC vs Wordpress conflicts
In fact, I'm unable to reach my web service for about 5 minutes after attempting to log into the Wordpress dashboard!!
I disabled OSSEC, and this solved the problem. The strange thing is, OSSEC did not fire any warnings to me at all. And there are no log entries to indicate what the issue is.
I've googled the topic, but have not been able to find any literature about a potential conflict between OSSEC and Wordpress.
Wondering if the brain trust @ Linode could shine some light on this for me?
My sites are still active from different connection however..
hard to know how to deal with this as my DSL IP is dynamic. So unless i switch off the wordpress rules, I can't see another solution.
I also have suhosin installed, and it is firing a warning into the php.log about the script trying to increase memory in php.ini.
This fires OSSEC to firewall my ip for 5 minutes or so.
So the fix is to disable the logging of this event by Suhosin.
am running lighttpd with php-cgi
i shut down lighttpd and kill all php-cgi spawn's, however when i restart lighttpd, the php.ini is not reloaded with the new configuration.
short of rebooting the linode, i'm not sure what i can do?
Also the suhosin forums have been in "maintenance" mode for months not very confidence inspiring.
But the important stuff is up there. Like the constant kick-back ads in their footer….
To bad nobody can get help on why suhosin breaks so much stuff….
I've done a reboot and the problem persists. I cannot stop suhosin from being loaded.
Just to confirm thou, i have commented out the suhosin.so extension line, however the suhosin.ini is still being loaded by php.
Should i also remove the suhosini.ini file? i would have thought that by removing the extension, that would also stop the .ini from being loaded.