• twitter image
  • facebook image
  • youtube image
  • linkedin image
Language: CMS Made Simple Czech CMS Made Simple France CMS Made Simple Spain CMS Made Simple Hungary CMS Made Simple Russia CMS Made Simple Netherlands

All times are UTC




Post new topic Reply to topic  [ 13 posts ] 
Author Message
 Post subject: Suggestion for hacked sites
PostPosted: Mon Sep 19, 2011 6:36 pm 
Offline
New Member
New Member

Joined: Fri Sep 16, 2011 1:27 pm
Posts: 3
Hi
I think CMSMS is a great program, the only problem I have had is I have had 6 sites hacked in the last 6 months. Usually spammers.
Yes They may not have been the latest versions.. but they were close. The problem is once the site has been compromised it is difficult to find and remove non CMSMS files.
My suggestion is to have a feature in admin that compares the files in the site with the files for the release. and lists all non CMSMS files. content compare would be even better except for files that change config etc.
Thanks for your consideration and keep up the great work
Keith


Top
  Profile  
 
Share On:
Share on Facebook Share on Twitter Share on Google+
 Post subject: Re: Suggestion for hacked sites
PostPosted: Mon Sep 19, 2011 6:51 pm 
Offline
Dev Team Member
Dev Team Member
User avatar

Joined: Wed Oct 25, 2006 8:29 pm
Posts: 4968
Location: Raalte, the Netherlands
I dont know how recent your versions are, but since at least 2 years, the version have SystemVerification inside, which can compare the original files with the current ones in the install. The check-file is downloadable in the Download-area, and can be compared to your install.

Ronny


Top
  Profile  
 
Share On:
Share on Facebook Share on Twitter Share on Google+
 Post subject: Re: Suggestion for hacked sites
PostPosted: Mon Sep 19, 2011 6:55 pm 
Offline
Forum Members
Forum Members

Joined: Sun Jan 07, 2007 4:32 pm
Posts: 221
Location: Italy
anyway a lot of softwares do this, in FTP mode also


Top
  Profile  
 
Share On:
Share on Facebook Share on Twitter Share on Google+
 Post subject: Re: Suggestion for hacked sites
PostPosted: Tue Sep 20, 2011 12:53 pm 
Offline
New Member
New Member

Joined: Fri Sep 16, 2011 1:27 pm
Posts: 3
Thanks for tip Ronny,
I had missed this feature... if it lists additional non cmsms files it would be what I need. but I just tried it and it didn't list any of the files I had uploaded in the site so I suspect it wont find additional spammer files???
anyone know??
Keith


Top
  Profile  
 
Share On:
Share on Facebook Share on Twitter Share on Google+
 Post subject: Re: Suggestion for hacked sites
PostPosted: Tue Sep 20, 2011 1:32 pm 
Offline
Forum Members
Forum Members

Joined: Sun Jan 07, 2007 4:32 pm
Posts: 221
Location: Italy
malicious code are into database normally, and overwrite/modify or add code into your template, news, css, article ...

search <__iframe> tag calling external site or other <www> into database

bye


Top
  Profile  
 
Share On:
Share on Facebook Share on Twitter Share on Google+
 Post subject: Re: Suggestion for hacked sites
PostPosted: Tue Sep 20, 2011 4:50 pm 
Offline
Forum Members
Forum Members

Joined: Fri Mar 04, 2011 2:40 pm
Posts: 59
\$1:
anyway a lot of softwares do this, in FTP mode also


Which software for example?
Can you name any?
Would find that information very helpful.
Thank you.


Top
  Profile  
 
Share On:
Share on Facebook Share on Twitter Share on Google+
 Post subject: Re: Suggestion for hacked sites
PostPosted: Tue Sep 20, 2011 5:02 pm 
Offline
Forum Members
Forum Members

Joined: Sun Jan 07, 2007 4:32 pm
Posts: 221
Location: Italy
I use Beyond Compare that's an ftp client also.

N.B. .hope I'm not infringing forum rules when quoting commercial product :-[

anyway try googling "file compare" for a free one


Top
  Profile  
 
Share On:
Share on Facebook Share on Twitter Share on Google+
 Post subject: Re: Suggestion for hacked sites
PostPosted: Tue Sep 20, 2011 6:41 pm 
Offline
Forum Members
Forum Members

Joined: Fri Mar 04, 2011 2:40 pm
Posts: 59
Thank you very much.


Top
  Profile  
 
Share On:
Share on Facebook Share on Twitter Share on Google+
 Post subject: Re: Suggestion for hacked sites
PostPosted: Wed Sep 21, 2011 8:42 am 
Offline
Dev Team Member
Dev Team Member
User avatar

Joined: Wed Oct 25, 2006 8:29 pm
Posts: 4968
Location: Raalte, the Netherlands
In terms of checking. You can generate your own checksum as well. This means that you can test the default upload/install. Whne you installed modules etc, you can go to SystemVerification, and create a set for your current setup. And use that for comparison at a later moment.

Ronny


Top
  Profile  
 
Share On:
Share on Facebook Share on Twitter Share on Google+
 Post subject: Re: Suggestion for hacked sites
PostPosted: Wed Sep 21, 2011 9:13 am 
Offline
Forum Members
Forum Members

Joined: Sun Jan 07, 2007 4:32 pm
Posts: 221
Location: Italy
@RonnyK

have you ever seen a site has been hacked through
modification of php files ? most of them are hacked via db, I suppose

thanks


Top
  Profile  
 
Share On:
Share on Facebook Share on Twitter Share on Google+
 Post subject: Re: Suggestion for hacked sites
PostPosted: Wed Sep 21, 2011 6:27 pm 
Offline
Dev Team Member
Dev Team Member
User avatar

Joined: Wed Oct 25, 2006 8:29 pm
Posts: 4968
Location: Raalte, the Netherlands
gianpiero,

most hacked sites that I saw, where indeed modified php-files. They mostly originated from x-access on shared-hosts.

Ronny


Top
  Profile  
 
Share On:
Share on Facebook Share on Twitter Share on Google+
 Post subject: Re: Suggestion for hacked sites
PostPosted: Wed Sep 21, 2011 6:29 pm 
Offline
Forum Members
Forum Members

Joined: Sun Jan 07, 2007 4:32 pm
Posts: 221
Location: Italy
Thanks :)


Top
  Profile  
 
Share On:
Share on Facebook Share on Twitter Share on Google+
 Post subject: Re: Suggestion for hacked sites
PostPosted: Sun Sep 25, 2011 4:56 am 
Most hacks are thru SHARED hosting accounts.

To find if your site is still infected, download whole site by FTP, and scan those files with Avast!

Search for my posts on this.


Top
   
 
Share On:
Share on Facebook Share on Twitter Share on Google+
Display posts from previous:  Sort by  
Post new topic Reply to topic  [ 13 posts ] 

All times are UTC


Who is online

Users browsing this forum: No registered users


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Search for:
Jump to:  
A2 Hosting