XOOPS 
Forum
Forum Index General Forums Community Support Modules Support Themes Support Development International Support Module Hack Reviews Theme Designer Talk
  1. Board index / 
  2. XOOPS Community Support forums / 
  3. Beginner's Corner 
  4.  / getting hacked every day
Register
11
McDonald
Re: getting hacked every day

  • 2007/5/19 19:00

  • McDonald

  • Home away from home

  • Posts: 1072

  • Since: 2005/8/15


The Frameworks folder shouldn't be necessary because none of the modules mentioned in an earlier post requires this.

The reason for the admin page losing its format is a wrongly declared XOOPS_TRUST_PATH in mainfile.php

Also upgrading from XOOPS 2.0.13 to 2.0.16 will increase the security level of your website.
12
Anonymous
Re: getting hacked every day

  • 2007/5/19 19:07

  • Anonymous

  • Posts: 0

  • Since:


Quote:
ttremeth wrote:

// XOOPS Physical Path
// Physical path to your main XOOPS directory WITHOUT trailing slash
define('XOOPS_ROOT_PATH', '/home/myfolder/public_html/cms');
define('XOOPS_TRUST_PATH', '/home/myfolder/XOOPS_TRUST_PATH');

etc etc


Just a small point.......

Your trust path must be exactly "parallel" with your main website folder... assuming that the directory /cms hast your XOOPS site in it then your "trust path" should be defined:

define('XOOPS_TRUST_PATH', '/home/myfolder/public_html/trust_folder_name');

where "trust_folder_name" is a unique name that you choose - it can be anything you like.

HTH
13
ttremeth
Re: getting hacked every day

  • 2007/5/21 22:10

  • ttremeth

  • Just popping in

  • Posts: 25

  • Since: 2003/5/29


thanks, we got protector up and running ok, except someone still managed to hack user.php which i easily uploaded from backup. Any ideas how they did? Alos WF-Sections V1.02 is not found on the web link suggested.
14
McDonald
Re: getting hacked every day

  • 2007/5/21 22:23

  • McDonald

  • Home away from home

  • Posts: 1072

  • Since: 2005/8/15


WF-Sections 1.02 can be downloaded here.
WF-Sections 1.02 is an old, not anymore supported module and might contain security issues.
It's better to switch to SmartSection or other article module.
15
ttremeth
Re: getting hacked every day

  • 2007/5/21 22:52

  • ttremeth

  • Just popping in

  • Posts: 25

  • Since: 2003/5/29


thanks, but this is 2.01? Is that still ok to use to upgrade from 1.01. i am looking at migrating but I just want to secure the site for now as It obviously takes a lot of time.
« 1 (2)

Login

Register now!  |  Lost Password?

Search

Advanced Search

Recent Posts

Who's Online

343 user(s) are online (236 user(s) are browsing Support Forums)

Members: 0

Guests: 343

more...

Donat-O-Meter

Stats
Goal: $100.00
Due Date: Nov 30
Gross Amount: $0.00
Net Balance: $0.00
Left to go: $100.00
Make donations with PayPal!

Latest GitHub Commits