Support Forums - All Posts - XOOPS Web Application System

21

Re: Got hacked?

2005/3/6 19:32
hawkeyegop
Just popping in
Posts: 83
Since: 2004/9/18

I would never have thought to check any of those directories. The directory that was supposedly compromised was my wife's personal website, her blog, that I had converted to XOOPS about 2 months ago. Since that time we have both been so busy so I had inactivated her site and put password protection on all subdirectories of that site. Also, I don't think there was a download module even installed since my wife didn't have a need for that.

22

Re: Got hacked?

2005/3/6 18:27
hawkeyegop
Just popping in
Posts: 83
Since: 2004/9/18

Mith, have you gotten an email yet? I got this response back from them:

Quote:

If he's not aware of the problems with xoops.. then he definitely needs a wake up call. I"ll have to shoot him a e-mail.

23

Re: Got hacked?

2005/3/4 16:33
hawkeyegop
Just popping in
Posts: 83
Since: 2004/9/18

Something tells me they won't contact you. Something also tells me that they don't know what they're talking about. I'm sure something happened, but I'm not sure it was XOOPS.

On another note, their support sucks. I have had great experiences since I have been with them, as far as server loads/hardly any downtime, etc, but when you have a question and need an answer, it takes forever. And apparently now we know that they don't always know what they're talking about.

24

Re: Got hacked?

2005/3/4 13:59
hawkeyegop
Just popping in
Posts: 83
Since: 2004/9/18

OK, thanks for all the responses so far. I wish I could post more info about specific settings for this directory but it is disabled so I can't get into it to look at anything.

Also, mithrandir, I asked them if someone there would email you regarding the "vulnerabilities". Hopefully they do.

25

Got hacked?

2005/3/4 6:24
hawkeyegop
Just popping in
Posts: 83
Since: 2004/9/18

I'm a hosting reseller and got an email from my hosting company tonight:

Quote:

Subject: Directory /home/mack/public_html/kate/ disabled and will not be re-enabled.

Request Details:
Your account appears to have been compromised and the following directory disabled.

/home/mack/public_html/kate/

It was engaged in malicious activity that nearly crashed the server. We will not re-enable this directory.. and we do need you to look into this on your side as well. As we need to be assured this wont happen again. Failure to get back to us will result in the account being suspended.

Below is an example of two of the processes your account was running...

nobody 30143 0.0 0.0 4148 1048 ? S 19:28 0:00 sh -c cd /home/mack/public_html/kate/uploads/iroffer1.3.b10/upload;cp * /home/mack/public_h
nobody 13402 1.7 0.0 3468 456 ? D 19:28 0:22 cp [AnimeDVD_Raws]_Argento_Soma_01_[91B8801F].avi [AnimeDVD_Raws]_Argento_Soma_2.avi [ANJ].

I emailed back asking for more information because I have no idea what any of that means. This was the response:

Quote:

It looks like one of the scripts on your website have been compromised/hacked and the attackers were using the kate folder to store malicious applications and using it as a world writable download space.

I replied back and said that the only script I had in that directory was XOOPS and that I choose it because it was more secure than most other CMS's. This was the response:

Quote:

Xoops is one of those scripts that is hacked regularly. Probably #2 on our list of most highly exploitable scripts. I *wish* it weren't so popular so we could discontinue usage of it entirely.

I can't remember right off hand but I am 99% positive that I had installed 2.0.9.2 based on the date that was released, because I installed it sometime in January.

Certainly what this guy is telling me isn't true is it, that XOOPS is highly exploitable? I hope not because if this happens again they are deleting my account and all of those under me, which is about 25 sites. At least 10 of them are running XOOPS

26

Re: myalbum-p 2.84 - 2 questions

2005/1/11 1:23
hawkeyegop
Just popping in
Posts: 83
Since: 2004/9/18

Heh, you're right. It appears that it will only switch pictures every XX amount of seconds, and the default was 60 seconds. I kept refreshing the page, but apparently i got bored before the minute was up.

Thanks,

Chris

27

Re: myalbum-p 2.84 - 2 questions

2005/1/10 21:40
hawkeyegop
Just popping in
Posts: 83
Since: 2004/9/18

I tried posting over there 4 or 5 days ago, but not a response yet by anyone.

I've never looked at that other module i guess. I used to use xoopsgallery or whatever it is called, and it has worked really well for me in the past, but it requires either ImageMagick or... I can't remember what the other thing is called. Anyways, the webhost for this site doesn't have either of those, but it does have GD (?) which works with MyAlbum. Hmm, I wonder if this one you mentioned would work....

Thanks,

Chris

28

Re: myalbum-p 2.84 - 2 questions

2005/1/10 20:13
hawkeyegop
Just popping in
Posts: 83
Since: 2004/9/18

Anyone?

I figured out the layout issue, so now I have that looking the way I want, but does anyone know of a hack to have a random photo block instead of recent photos?

THanks,

Chris

29

myalbum-p 2.84 - 2 questions

2005/1/6 19:16
hawkeyegop
Just popping in
Posts: 83
Since: 2004/9/18

Hello,

I installed myalbum-p 2.84 last night and all seems to be working fine but i was wondering if somebody could help me out with 2 things.

First, does anyone know of a hack for the recent photos block to make it display random pictures? I guess if I could have my way, I'd like it to display perhaps always 3 random images.

Secondly, I was wondering if somebody knew of how to modify the template. What I'd like is for the images to display horizontally instead of vertically.

Out of these two, I guess the 2nd one is more important to me. If anyone can help me out with this, I'd appreciate it.

Thanks,

Chris

30

Re: Multi-Menu 1.5

2005/1/5 4:42
hawkeyegop
Just popping in
Posts: 83
Since: 2004/9/18

I haven't had any bugs yet, but i'll let you know.

I also did see the sitemap. I think that will be a great addition when it is finished.

Thanks so much!

Chris

Stats
Goal:	$100.00
Due Date:	Apr 30
Gross Amount:	$0.00
Net Balance:	$0.00
Left to go:	$100.00

Forum Index

Re: Got hacked?

Re: Got hacked?

Re: Got hacked?

Re: Got hacked?

Got hacked?

Re: myalbum-p 2.84 - 2 questions

Re: myalbum-p 2.84 - 2 questions

Re: myalbum-p 2.84 - 2 questions

myalbum-p 2.84 - 2 questions

Re: Multi-Menu 1.5

Login

Search

Recent Posts

Re: Rebuilding and Updating a 20 years old Xoops Website from 2.0.18? to 2.5.11

Rebuilding and Updating a 20 years old Xoops Website from 2.0.18? to 2.5.11

Re: NewBB v 5.1.0 b 6

Re: NewBB v 5.1.0 b 6

NewBB v 5.1.0 b 6

Re: XOOPS 2.5.11 search user is not working

Re: oledrion

Re: oledrion

Re: oledrion

Re: oledrion

Who's Online

Donat-O-Meter

Latest GitHub Commits

{{ record.sha.slice(0, 7) }} - {{ record.commit.message | truncate }}