Page 2 of 2
Re: Recent hacks and vulnerabilities
Posted: Sun Jun 29, 2008 12:49 pm
by sponna
Hello,
Just for clarification on the previous point, do we delete the java postlet or is it ok sat in there please? It looks like the associated php files have been "nuked" to delete their content during the "diff" overwrite - does this effectively render the java postlet safe?
Thanks
Dave
Re: Recent hacks and vulnerabilities
Posted: Mon Jun 30, 2008 12:09 pm
by cyberman
If you want a more secure install I suggest - delete it.
Re: Recent hacks and vulnerabilities
Posted: Mon Jun 30, 2008 3:31 pm
by EGS
To make it more simple for CMSMS users, I would suggest scheduling daily, weekly, and/or monthly back-ups with your web hosts - depending on how frequently you update your site's content.
I automatically back-up all of my sites daily to a shared hosting account, for example. This way, if a hacker does get in, you can simple restore it back to the last back-up file you have, and then change the database name, username, and password then update the config file and not have to go through all of the trouble that calguy listed.
Though...if you aren't making back-ups etc, you will have to follow calguy's steps.
Re: Recent hacks and vulnerabilities
Posted: Tue Jul 01, 2008 11:26 pm
by Pierre M.
xmas3 wrote:
Last week a few of my sites based on CMS MS 1.2.x were hacked.
...I can send you the script if needed.
The crackers' script isn't interesting : what is very interesting is the http logS of its attack. Knowing the attack makes it possible to strengthem hardening the filtering rules in the "small security guide".
Pierre M.