Additional work on plugins after upgraded to WP 3.6

I’ve just finished upgrade WP 3.6 and related plugins. There are two plugins generate Error message

PHP Strict Standards: call_user_func_array() expects parameter 1 to be a valid callback, non-static method GoogleSitemapGeneratorLoader::Enable() should not be called statically in /wp-includes/plugin.php on line 406, referer: http://www.refmanual.com/wp-admin/plugin-editor.php?file=google-xml-sitemaps-v3-for-qtranslate%2Fsitemap-core.php&plugin=google-xml-sitemaps-v3-for-qtranslate%2Fsitemap-ui.php

PHP Strict Standards: Non-static method GoogleSitemapGeneratorLoader::GetBaseName() should not be called statically in /wp-content/plugins/google-xml-sitemaps-v3-for-qtranslate/sitemap.php on line 114, referer: http://www.refmanual.com/wp-admin/plugin-editor.php?file=google-xml-sitemaps-v3-for-qtranslate%2Fsitemap-core.php&plugin=google-xml-sitemaps-v3-for-qtranslate%2Fsitemap-ui.php

PHP Strict Standards: call_user_func_array() expects parameter 1 to be a valid callback, non-static method GoogleSitemapGeneratorLoader::CallHtmlShowHelpList() should not be called statically in /wp-includes/plugin.php on line 173, referer: http://www.refmanual.com/wp-admin/plugin-editor.php?file=google-xml-sitemaps-v3-for-qtranslate%2Fsitemap-core.php&plugin=google-xml-sitemaps-v3-for-qtranslate%2Fsitemap-ui.php

PHP Strict Standards: Declaration of W3_Cache_Memcached::delete() should be compatible with W3_Cache_Base::delete($key, $group = '') in /wp-content/plugins/w3-total-cache/lib/W3/Cache/Memcached.php on line 15, referer: http://www.refmanual.com/wp-admin/plugins.php Continue reading

Prevent DNS attacks

Recently, our network suffered from heavy DNS attack, udp flood, reflection attack..etc.

After a lots of tcpdump, capturing data from the network, and we found there are a lot of IPs from China, resolving IP from our public DNS server (actually just open for all clients only).

And because of this, they flood our international circuit. DNS reflection attack work in the way as normal name service lookup, but attacker continuously send request to DNS server, and because return IP packet contain information that make the packet size 3-5 times larger than what attacker sent us.

To prevent this happen again, we have to restrict DNS server to reply recursion request only for known networks/hosts.

# cat /etc/named.conf Continue reading

GeoIP aware SMTP service – 3

Building Central Hub

Component list:
Postfix (build from rpm source);
QMail (mini version);
MySQL for SASL authentication;
PAM_MySQL PAM module support mysql password db;
GeoIP database;
GeoIP perl module;
perl scripting;

Build Postfix

Postfix 2.6 support tcp_table, the feature I needed in this project, but it does not build into standard rpm package. So, what I need to do is download source rpm and build it. Continue reading