1. Howdy! Welcome to our community of more than 125.000 members devoted to web hosting. This is a great place to get special offers from web hosts and post your own requests or ads. To start posting sign up here. Cheers! /Peo, FreeWebSpace.net
  2. Add your web host to our brand new web hosting directory (beta).

My homepage hacked. How can I protect myself?

Discussion in 'Host Talk' started by MrPixels, Sep 5, 2006.

  1. MrPixels

    MrPixels b&

    Joined:
    Jun 22, 2006
    Messages:
    39
    Likes Received:
    0
    Trophy Points:
    0
    Hello.

    I put hours into making my site look good. Then woke up this morning and poof, its gone. Now my zpanel and user files were all ok. But, they signed up as dogtag. And uploaded a script called nstview.php and ran it. I looked at it and... what... its very complex and all in php so I dont know it. I thought I was secure. But oviously not. So, are there any tips on how I can revent this? Besides making backups? I know I know. Dumbass move, but oh well... Also, it sayed "hacked by goodbody" anyone heard of them?

    FireFightFM
    PS: I would release the code for you to look at but... I cant trust people.
     
  2. Fried

    Fried New Member

    Joined:
    Sep 30, 2005
    Messages:
    317
    Likes Received:
    1
    Trophy Points:
    0
    I'll might be able to help you, talk on msn / send me the code in attachment. Im expierienced in PHP.

    My msn is gopzap@gopzap.net or just PM me the code.

    BTW Im not a hacker ;)
     
  3. utcrazy

    utcrazy Wo ist mein handy NLC

    Joined:
    Jul 6, 2005
    Messages:
    2,891
    Likes Received:
    65
    Trophy Points:
    0
    Can't think of anything myself except OFFSITE backups. Whether this is burning a CD ad the DC and taking it to another location, or having the files automatically copy to another server every day. Anything can happen, even in the most protected DC. Redundant backups can save a website from being down too long as wlel. P.S: Don't trust someone with 13 posts, go with a more experienced FWSEer. You could trust someone like me with 1200 posts and a good rep, but I don't know PHP.
     
  4. serverorigin

    serverorigin ServerOrigin.Com NLC

    Joined:
    Jun 21, 2006
    Messages:
    1,158
    Likes Received:
    19
    Trophy Points:
    0
    I would suggest finding a host that has secure servers for one thing. If certain restrictions were in place this usually cannot happen.
     
  5. repoman

    repoman New Member

    Joined:
    Jun 5, 2006
    Messages:
    227
    Likes Received:
    0
    Trophy Points:
    0
    Also ones with offsite daily back-ups or at least weekly.
    also never heard of goodbody but there are many script kiddies now
     
  6. Erizo

    Erizo Muffin NLC

    Joined:
    Jan 26, 2006
    Messages:
    1,123
    Likes Received:
    24
    Trophy Points:
    118
    secure servers, logging ip logs (o.o), changing passwords, a thing by a thing to make it more secure :p
     
  7. shinyblogs.com

    shinyblogs.com New Member

    Joined:
    Sep 3, 2006
    Messages:
    28
    Likes Received:
    0
    Trophy Points:
    0
    That script is a big collection of tools to help people hack servers, but it all depends on what you let your users do. You had a too-lenient configuration that let people you host do things that weren't safe. It's too hard to tell what the hole they got in with was from your post, it could have been any number of things.
     

Share This Page