XOOPS 
Forum
Forum Index General Forums Community Support Modules Support Themes Support Development International Support Module Hack Reviews Theme Designer Talk
  1. Board index / 
  2. XOOPS Community Support forums / 
  3. XOOPS general usage questions 
  4.  / My website has been hacked ;-( ...
Register
1
alyussiu
My website has been hacked ;-( ...

  • 2004/8/11 4:40

  • alyussiu

  • Not too shy to talk

  • Posts: 119

  • Since: 2004/4/9 9


Hello people... I just woke up and saw my website... hacked...

I don't know if some attributes of my files changed when I moved my website to a new host, anyway, the truth is here...

Well, I've contacted him... If he's a *real* hacker, he'll tell me how to correct that... I've just to hope...
2
incama
Re: I've been hacked ;-( ...

  • 2004/8/11 4:55

  • incama

  • Friend of XOOPS

  • Posts: 513

  • Since: 2003/10/24


Didn't know that conf_global.php is a part of Xoops,..Looks to me he only adjusted the theme.html. But I'm not the man who can tell you such things:(. Anyway, hope one of the developers reacts fast to this post, because I want to know what's really wrong.
3
alyussiu
Re: I've been hacked ;-( ...

  • 2004/8/11 4:57

  • alyussiu

  • Not too shy to talk

  • Posts: 119

  • Since: 2004/4/9 9


I search for this file, and it's a file from ipboard module...

Don't know how he's doing, but he wrote his information in this file...
4
alyussiu
Re: I've been hacked ;-( ...

  • 2004/8/11 5:40

  • alyussiu

  • Not too shy to talk

  • Posts: 119

  • Since: 2004/4/9 9


Oki, I've uploaded a new config file and now the website looks ok.

Anyway, he came once, other could come as well and maybe delete all of the things (he didn't delete anything except this config file...).

I'd like to know how to protect my website against hacking. I actually needed to give 777 permission to this file, and read that on several forums about invasion board...

Help me please
5
djsckizo
Re: I've been hacked ;-( ...

  • 2004/8/11 6:46

  • djsckizo

  • Just can't stay away

  • Posts: 401

  • Since: 2003/5/9 8


here is a suggestion that I think I'm going to start doing. change the permissions of the conf file to 444 until you need to change something in it. then change it to 777 when you change something, then back again. this way it is secure.
6
alyussiu
Re: I've been hacked ;-( ...

  • 2004/8/11 7:15

  • alyussiu

  • Not too shy to talk

  • Posts: 119

  • Since: 2004/4/9 9


Thanks, I'll try that...

Just hope it'll work ;-(...

I've read that :
http://www.phpsecure.info/v2/tutos/frog/InvisionPowerBoard.txt

about some problems with ipb, but my file was already secured... I don't know how he was able to get access to my config file...
7
alyussiu
Re: I've been hacked ;-( ...

  • 2004/8/11 9:50

  • alyussiu

  • Not too shy to talk

  • Posts: 119

  • Since: 2004/4/9 9


Oki, as the *hacker* left his email address, I contacted him, and he mailed me back saying me the problem. It seems it was really because of this permission setting.

Hummm... A lot of websites say "change the permission to 777 if it doesn't work with other permission". Take care people or you could being hacked (I'm lucky that the person who did that was nice...).
8
peterr
Re: I've been hacked ;-( ...

  • 2004/8/11 10:05

  • peterr

  • Just can't stay away

  • Posts: 518

  • Since: 2004/8/5 9


Hi,

Personally, I would never set any PHP file higher than a 644

Peter
9
theprof
Re: My website has been hacked ;-( ...

  • 2004/8/11 11:57

  • theprof

  • Quite a regular

  • Posts: 225

  • Since: 2004/7/14


Correct me if I am wrong, I thought some php files must have a;; three open, read, write and exceute to actually function properly...?


prof!
10
peterr
Re: My website has been hacked ;-( ...

  • 2004/8/11 12:11

  • peterr

  • Just can't stay away

  • Posts: 518

  • Since: 2004/8/5 9


Hi,

All my XOOPS PHP files are a 644, except for mainfile.php , which is a 444, and I may move that to a path outside of the webroot anyway.

The 644 is ........

user - read write
group - read
world - read

In theory, I would think that a PHP file, being a server side, would have to actually be executed (commands parsed by the server and returned to the client), however a read will suffice for the public (world).

Peter
(1) 2 »

Login

Register now!  |  Lost Password?

Search

Advanced Search

Recent Posts

Who's Online

164 user(s) are online (98 user(s) are browsing Support Forums)

Members: 0

Guests: 164

more...

Donat-O-Meter

Stats
Goal: $100.00
Due Date: Apr 30
Gross Amount: $0.00
Net Balance: $0.00
Left to go: $100.00
Make donations with PayPal!

Latest GitHub Commits