Re: My Xoops site has been hacked! I'm locked out! [Beginner's Corner]

1

My Xoops site has been hacked! I'm locked out!

2008/7/27 2:31
driftwork
Just popping in
Posts: 13
Since: 2006/12/18

Hey Folks,

I've had my XOOPS site up for about 3 years now. I use it to promote my scuba diving club. The site basically takes care of itself but about a week ago, I suddenly lost the ability to get into the site. I cannot login using my ADMIN login / password. I cannot register as another user (even though that privilege is an open one) I cannot even use the 'contact us' feed back module to send myself an email. Basically, the whole site is frozen.

I am using XOOPS 2.0

Help Please!

Can anyone tell me what I might do to get back into my site?

If I can't, can I go in and change some code to get back in?

I am a noob but have been using XOOPS for years now... which is why its been such an excellent CMS for me so far.

Any ideas would be swell.

Thanks in advance.

2

Re: My Xoops site has been hacked! I'm locked out!

2008/7/27 4:00
jdseymour
Friend of XOOPS
Posts: 3782
Since: 2004/11/11

It could be a corrupt session table. If you have phpmyadmin put a check in the square by the xoops_session in your database, scroll to the bottom, and in the "with selected" dropdown choose empty. This will empty the table of all sessions. Afterwards put a check in the box again, scroll to the bottom and this time select "repair".

As with any time you mess with the database create a backup first.

Proactive Support for Sites and Servers

WebServerMasters.com | XOOPS Tutorials

3

Re: My Xoops site has been hacked! I'm locked out!

2008/7/30 3:41
driftwork
Just popping in
Posts: 13
Since: 2006/12/18

Thanks for the advice.

I'll get my Sys.Admin to check that out.

Meanwhile, does anyone else have any other ideas?

Does this situation look like its a hack-job?

4

Re: My Xoops site has been hacked! I'm locked out!

2008/7/30 4:37
anna85
Just popping in
Posts: 47
Since: 2008/6/19

Hi,

So many of hacks recently. I am just wondering why they are targeting at xoops.

Also remember to have different passwords for your email account and admin XOOPS acc.
My account in XOOPS had hacked before. Thats 2 years ago. I learned my lesson not to use same password anymore.

Hope that helps.

Best regards
Xoopsuser

5

Re: My Xoops site has been hacked! I'm locked out!

2008/7/30 6:36
Mamba
Moderator
Posts: 11377
Since: 2004/4/23

Quote:

So many of hacks recently. I am just wondering why they are targeting at xoops.

Not all of this are hacker attacks. In a lot of cases it is related to ISP updating PHP to Version 5. Several of the old modules will cause blank screens, etc. so some of the problems are related to it.
However, we always should keep our sides protected by using Protector and other security measures.

Support XOOPS => DONATE
Use 2.5.10 | Docs | Modules | Bugs

6

Re: My Xoops site has been hacked! I'm locked out!

2008/7/30 15:11
anna85
Just popping in
Posts: 47
Since: 2008/6/19

Hi Mamba,

I ever encounter of blank page due PHP5 also. I had reinstall the XOOPS again and edit some modules variable to work.

But seriously the hackers had hacked and leaving their website to show that they had hacked site.

That worries...me

Best regards
Xoopsuser

Stats
Goal:	$100.00
Due Date:	Jun 30
Gross Amount:	$0.00
Net Balance:	$0.00
Left to go:	$100.00

My Xoops site has been hacked! I'm locked out!

Re: My Xoops site has been hacked! I'm locked out!

Re: My Xoops site has been hacked! I'm locked out!

Re: My Xoops site has been hacked! I'm locked out!

Re: My Xoops site has been hacked! I'm locked out!

Re: My Xoops site has been hacked! I'm locked out!

Login

Search

Recent Posts

Re: Test 3

Test 3

Re: Test2

Re: Test2

Re: Test2

Test2

Re: Xlanguage Module - Default Language Issue

Re: Xlanguage Module - Default Language Issue

Re: Xlanguage Module - Default Language Issue

Re: Xlanguage Module - Default Language Issue

Who's Online

Donat-O-Meter

Latest GitHub Commits

{{ record.sha.slice(0, 7) }} - {{ record.commit.message | truncate }}