it appears the greater wordpress community is going to spend the weekend doing a little quality pants shitting:
Old WordPress Versions Under Attack « Lorelle on WordPress.
I took the opportunity to move to an svn co based setup instead of an unpacked zip file. hopefully that means the next one of these is just an “svn up” not a half hour jaunt through memory lane (how the fuck did I set this up?).
Its interesting how much of wordpress is built around the “you are ftp’ing these files to a shared hosting providor” model. For instance, to install a theme you provide your ftp or sftp credentials. Thats it. It doesn’t even ask for a directory, so there’s no way it’d figure out where my install is tucked (not that /var/www/<site> is tricky). Same goes for the auto-upgrade option.
Oh and it blew away my theme.