Results 1 to 5 of 5

Thread: Help!Site hacked

  1. #1
    Kent Grimes's Avatar
    Kent Grimes is offline Junior Member
    Join Date
    Feb 2011
    Posts
    7
    Ranking
    0

    Default Help!Site hacked


    Hello everyone,

    I appeal to your emergency lights: my website was hacked yesterday (sql injection in advance), I cleaned up the bases and I thought I had corrected the flaw, but this morning Rebelote the famous hacker speak again him.

    I do not really know where to look and I miss a little time, so if an expert could help me, I'd be eternally grateful.

    Thank you in advance!

  2. #2
    Seth Cameron's Avatar
    Seth Cameron is offline Junior Member
    Join Date
    Feb 2011
    Posts
    8
    Ranking
    0

    Default

    If you have your own dedicated and you do not even know where the logs ... honestly it's dangerous there. Taking a dedicated, it must manage its server and be very careful what we do, all update and prevent most problems.Your logs are safely in the Apache folder in the subfolder logs with different files like access.log and error.log.

  3. #3
    Tracy Dyer's Avatar
    Tracy Dyer is offline Junior Member
    Join Date
    Feb 2011
    Posts
    8
    Ranking
    0

    Default

    What are the symptoms of piracy? Is there only data changes, modification of site files, in both cases how much? What systems are used on the site (SPIP, Wordpress?) And their versions? Otherwise the logs for all depends how you have configured virtual hosts, it seems that by default is C: \ wamp \ www \ logs \

  4. #4
    Marion Bond's Avatar
    Marion Bond is offline Junior Member
    Join Date
    Feb 2011
    Posts
    8
    Ranking
    0

    Default

    For symptoms: not for the moment of insertion and modification of data (creation of accounts with admin rights and then change the home page news via these accounts.)

    For the IP address I'm ok, but it seems to be a non-fixed IP, so hard to block his access.

    For now, here's what I did:
    - Activation of magic quotes in the configuration Wamp
    - Added function htmlentities on most variables in my various forms
    - Removal of rights "structure" to the account used to query the database (to avoid duties like "DROP" or "GRANT")

    What can I do to secure a minimum?

  5. #5
    Sergio Hensley's Avatar
    Sergio Hensley is offline Junior Member
    Join Date
    Feb 2011
    Posts
    7
    Ranking
    0

    Default

    To the minimum in my opinion it would be:
    - Change passwords for all accounts that can create new users
    - Change passwords for MySQL accounts and Windows
    - Look in the Windows audit logs for evidence of connections that are not yours
    - For users of the site MySql only allow SELECT, UPDATE, INSERT, DELETE
    - When using WiFi, buy a pair of keys and move the website to HTTPS (expensive, but unfortunately sometimes necessary).

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  
SEO by SubmitEdge
SEO by SubmitEdge

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94