1. Howdy! Welcome to our community of more than 125.000 members devoted to web hosting. This is a great place to get special offers from web hosts and post your own requests or ads. To start posting sign up here. Cheers! /Peo, FreeWebSpace.net
    Dismiss Notice
  2. Add your web host to our brand new web hosting directory (beta).
    Dismiss Notice

My homepage hacked. How can I protect myself?

Discussion in 'Host Talk' started by MrPixels, Sep 5, 2006.

  1. MrPixels

    MrPixels
    Expand Collapse
    b&

    Joined:
    Jun 22, 2006
    Messages:
    39
    Likes Received:
    0
    Hello.

    I put hours into making my site look good. Then woke up this morning and poof, its gone. Now my zpanel and user files were all ok. But, they signed up as dogtag. And uploaded a script called nstview.php and ran it. I looked at it and... what... its very complex and all in php so I dont know it. I thought I was secure. But oviously not. So, are there any tips on how I can revent this? Besides making backups? I know I know. Dumbass move, but oh well... Also, it sayed "hacked by goodbody" anyone heard of them?

    FireFightFM
    PS: I would release the code for you to look at but... I cant trust people.
     
  2. Fried

    Fried
    Expand Collapse
    New Member

    Joined:
    Sep 30, 2005
    Messages:
    317
    Likes Received:
    1
    I'll might be able to help you, talk on msn / send me the code in attachment. Im expierienced in PHP.

    My msn is gopzap@gopzap.net or just PM me the code.

    BTW Im not a hacker ;)
     
  3. utcrazy

    utcrazy
    Expand Collapse
    Wo ist mein handy
    NLC

    Joined:
    Jul 6, 2005
    Messages:
    2,891
    Likes Received:
    65
    Can't think of anything myself except OFFSITE backups. Whether this is burning a CD ad the DC and taking it to another location, or having the files automatically copy to another server every day. Anything can happen, even in the most protected DC. Redundant backups can save a website from being down too long as wlel. P.S: Don't trust someone with 13 posts, go with a more experienced FWSEer. You could trust someone like me with 1200 posts and a good rep, but I don't know PHP.
     
  4. serverorigin

    serverorigin
    Expand Collapse
    ServerOrigin.Com
    NLC

    Joined:
    Jun 21, 2006
    Messages:
    1,158
    Likes Received:
    19
    I would suggest finding a host that has secure servers for one thing. If certain restrictions were in place this usually cannot happen.
     
  5. repoman

    repoman
    Expand Collapse
    New Member

    Joined:
    Jun 5, 2006
    Messages:
    227
    Likes Received:
    0
    Also ones with offsite daily back-ups or at least weekly.
    also never heard of goodbody but there are many script kiddies now
     
  6. Erizo

    Erizo
    Expand Collapse
    Muffin
    NLC

    Joined:
    Jan 26, 2006
    Messages:
    1,123
    Likes Received:
    24
    secure servers, logging ip logs (o.o), changing passwords, a thing by a thing to make it more secure :p
     
  7. shinyblogs.com

    shinyblogs.com
    Expand Collapse
    New Member

    Joined:
    Sep 3, 2006
    Messages:
    28
    Likes Received:
    0
    That script is a big collection of tools to help people hack servers, but it all depends on what you let your users do. You had a too-lenient configuration that let people you host do things that weren't safe. It's too hard to tell what the hole they got in with was from your post, it could have been any number of things.
     

Share This Page