Got hacked, changed password, now what

[randomlande]

My dreamhost account just got hacked by some turkish dude who just changed all the index pages on my sites to "hacked by blah blah blah"

I fixed em all, and changed my password. anything else i should do so this doesnt happen again?

sorry i havnt been around in a while. been realllllllyyyy busy.

 

[droolingmnky]

Check your log files for unusual activity. Change all the passwords on all the accounts within your DH account. If your using any scripts at all check for updated versions.


If you still can't find any thing I'd be willing to go through and check to make sure all your forms on your site (if any) are all properly handled. IE not directly passed through but cleaned of any non necessary characters.

 

[jerxs]

I cant stand those fuckers! They are always doing stupid fucking shit and its always some low life retard from Turkey or France hacking sites that have no relevance to their so called mission, "Turkish Hacker, IsUCKdiK hacked this site, Free the repressed gay prostitutes of Turkey" or some shit, Id like to get my hands on one of these fags, really!

Sorry to here about your bad luck.........

 

[bubbles]

Just make sure you know how he got in, and fix it.

I got hacked a few years ago, changed pws and stuff, got hacked again. Just figure out how he got in, and fix it. Then you should be good.

 

[tigertom]

Would you believe, there's nothing personal about it? They just go after known vulnerabilities, and it's all automated. It's a good idea to use 'robots.txt' to ban SE's indexing open source softwares on your site, if you don't need them for traffic.

Otherwise, change the footer files so they don't give the name and version number.

If you want to see how much company you have, type "Hacked by [Their Name]" into a search engine.

And don't use PHPNuke or PHPBB!

 

[07landstar]

Hackers

Damn those Bastards with nothing better than fuck up someones machine!

 

[CreationNation]

What TigerTom said.

More than likely you have a vulnerable program/script you are using, a news script, phpbb, it could be anything. Make sure all your scripts/programs are 100% up to date.

Also, I agree, never use Nuke related stuff or PHPBB!

 

[randomlande]

They might have gotten in through one of my comment scripts, thanks for all your help guys. Gotta get to changing all those mysql passwords just in case.

and i did type in their name in google and got about 300 results, all of which seem pretty permanent. guess people dont check on their sites too often.

 

[Brad101]

And don't use PHPNuke or PHPBB!

Yes, standard phpBB security is poor. However, there are several mods available that provide a high-level of protection from XSS exploits, worms, brute-force attacks, etc. One such mod is: CrackerTracker available from CBACK.DE - Der Online Computerguide