473,661 Members | 2,506 Online
Bytes | Software Development & Data Engineering Community
+ Post

Home Posts Topics Members FAQ

I'm being hacked regularly

Hi all,

The site protection has never been an issue due to the main purpose of my
site: it's a community website and has nothing very important, just
informations.

Now the problem is that hackers don't only put my website regularly offline
but the worse thing is that they put spam script on my site and send
thousand spams from my account.

My site is build using $_GET["page"] so all my site has the same design
(index.php being the general design and including the forms from different
files).
The first attack was to put an URL in the page param so I had an attack like
http://www.example.com/index.php?pag...thehackertools....
The site of the hacker tool had a PHP script that was used to get
information on everything on my pages and also had a script to send emails.

Now I protect against this kind of param by checking them and they can't
access my site this way..

Now the pirate has installed a iroffer (an IRC server) directly on my
account.

So my questions are:
- how they do enter on my site ?
- where to find informations on protecting my website (PHP scripts) ?
- How the pirate can have access to my FTP account ? Or can he install an
IRC server directly from one of my scripts ?
- Also can be a problem of the hosting instead of mine ?

Please help, I'm tired to re-install my server every week.

Thanks
Dec 28 '07 #1
2 1691
Now the pirate has installed a iroffer (an IRC server) directly on my
account.

So my questions are:
- how they do enter on my site ?
- where to find informations on protecting my website (PHP scripts) ?
- How the pirate can have access to my FTP account ? Or can he install an
IRC server directly from one of my scripts ?
- Also can be a problem of the hosting instead of mine ?

Please help, I'm tired to re-install my server every week.
Well, first thing to help is to tell what OS you are using. In general,
never accept things from outside blindly. If the person hacking your
machine can monitor traffic, FTP passwords are easily caught. There are
enough secure alternatives. Look into them.

Also, go through the PHP settings and see what you do not need. If you
do not need PHP to contact other servers, you can disable it, the
functions that do and/or switch on "safe mode".

Disable error display, but log all errors and warnings. If the attacker
is trying thing, he himself will not see the weaknesses of your setup,
but you do.

Good luck,
--
Willem Bogaerts

Application smith
Kratz B.V.
http://www.kratz.nl/
Dec 28 '07 #2
On Dec 28, 7:42 am, "Bob Bedford" <b...@bedford.c omwrote:
Hi all,

The site protection has never been an issue due to the main purpose of my
site: it's a community website and has nothing very important, just
informations.

Now the problem is that hackers don't only put my website regularly offline
but the worse thing is that they put spam script on my site and send
thousand spams from my account.

My site is build using $_GET["page"] so all my site has the same design
(index.php being the general design and including the forms from different
files).
The first attack was to put an URL in the page param so I had an attack likewww.example .com/index.php?page= www.siteoftheha ckertools....
The site of the hacker tool had a PHP script that was used to get
information on everything on my pages and also had a script to send emails.

Now I protect against this kind of param by checking them and they can't
access my site this way..

Now the pirate has installed a iroffer (an IRC server) directly on my
account.

So my questions are:
- how they do enter on my site ?
- where to find informations on protecting my website (PHP scripts) ?
- How the pirate can have access to my FTP account ? Or can he install an
IRC server directly from one of my scripts ?
- Also can be a problem of the hosting instead of mine ?

Please help, I'm tired to re-install my server every week.

Thanks
try OWASP PHP TOP TEN, as it suggests top ten ways hackers get to you
and what you should do to stop them.
if you are being targetted, and have written your own scripts as it
seems then you can protect yourself with mod_security to a degree -
this will stop various standard attacks, see cool rules as well to add
functionality to the engine.
If you are using third party software which you download then you
should make sure it is fully patched and up to date.
there are no hard and fast rules after these steps have been taken,
just write secure code, keep everything including your php/apache
installs up to date and try not to attract to much attention.
Oh and log everything, using your script to detect patterns is the
first step to banning if you go that route, after all is your site
massive enough to need to accept connections from taiwan for instance?
If not, start there.
Dec 28 '07 #3

This thread has been closed and replies have been disabled. Please start a new discussion.

Similar topics
6
1711
Have been hacked ????
by: Bob Bedford | last post by:
My database suddently dissapeared from my ISP. I've logged in and the database doesn't exist anymore. I don't know anything about website hacking, so my code is possibly open for hackers. I've my local code and would like to know if my code is open for hackers. I'd like to see if it's possible to drop a database by simply insert mysql statement in any field (text box or anything). Does anybody know how to check ?
PHP
0
1705
can't be hacked!
by: arkain denial | last post by:
this site can't be hacked: http://www.bleacheatingfreaks.com/?ref=Goat_Punisher
C / C++
0
1342
runtime access to program state via a hacked libpq sql interface
by: Christian Schuhegger | last post by:
Hi, I remember that I've seen some time ago (perhaps a year or so) a project on freshmeat where a guy hacked a postgres c-interface library (i guess it was libpq / or perhaps he just used the libpq network interface) to allow for runtime access to program state via sql queries. You had to register variables that you want to make available my the sql interface with the library and then you could query the program state while the program...
C / C++
10
7130
How are websites hacked and how do you protect against it?
by: Doc | last post by:
I keep reading about various websites being hacked into and wonder, how is this done? Not for any nefarious reasons, but to take measures to protect mine. Apparently this has been done to some high profile sites that you would think would have good security in place. In fact, if memory serves, wasn't one of Microsoft's site hacked? Since you have to put in a password to get into the server, obviously there's some other way to do it. How...
HTML / CSS
2
2498
phpBB sites hacked.
by: codefixer | last post by:
Hello: The phpBB sites are hacked. If you search for "HACKED BY CYBER-ATTACK" on msn.com you will get a list of all the sites hacked. Anyone knows what is the way to clean this up ? Thanks.
PHP
1
1909
CultureInfo getting hacked during page load.
by: rerdavies | last post by:
OS: WIndows Server 2003. Currently logged in user is running with German(German) regional settings. Code fragment: System.Globalization.CultureInfo culture = new System.Globalization.CultureInfo("de-DE") string name= culture.Name; // Produces "de-DE" string s = (3.5).ToString(culture); // produces "3.5". Should produce "3,5" string t = (new System.DateTime()).ToString("T",culture); // produces "2/16/2004". Should produce "16.2.2004" ...
ASP.NET
5
1974
Have I been Hacked???????
by: David Carter | last post by:
Hello I switched my computer on today and found that a new login of "ASP.net" had been added, it was a full priviledge account. Can anyone tell me what has happened? I have no idea what ASP is so I haven't used it. Thanks Dave
ASP.NET
8
1508
Hacked with system()
by: Oski | last post by:
Hello, our server got hacked through a security hole in an open source php chat script. (nothing new so far, ok!) This chat script allowed the user to create a new php script on our server, with the following content: (the code between the two "..." from the hacker):
PHP
0
1056
itmagz.com was hacked
by: vikassaxena | last post by:
website was hacked on 24 march , the script the browser is gettting from server was normal but still the the browser shows it's being hacked when after saving the view source i open it on explorer "OFFLINE" it shows the hacked site while the text displayed is not present in the view source how it's possible
ASP / Active Server Pages
0
8432
marktang
What is ONU?
by: marktang | last post by:
ONU (Optical Network Unit) is one of the key components for providing high-speed Internet services. Its primary function is to act as an endpoint device located at the user's premises. However, people are often confused as to whether an ONU can Work As a Router. In this blog post, we’ll explore What is ONU, What Is Router, ONU & Router’s main usage, and What is the difference between ONU and Router. Let’s take a closer look ! Part I. Meaning of...
General
0
8856
Oralloy
Problem With Comparison Operator <=> in G++
by: Oralloy | last post by:
Hello folks, I am unable to find appropriate documentation on the type promotion of bit-fields when using the generalised comparison operator "<=>". The problem is that using the GNU compilers, it seems that the internal comparison operator "<=>" tries to promote arguments from unsigned to signed. This is as boiled down as I can make it. Here is my compilation command: g++-12 -std=c++20 -Wnarrowing bit_field.cpp Here is the code in...
C / C++
1
8545
The easy way to turn off automatic updates for Windows 10/11
by: Hystou | last post by:
Overview: Windows 11 and 10 have less user interface control over operating system update behaviour than previous versions of Windows. In Windows 11 and 10, there is no way to turn off the Windows Update option using the Control Panel or Settings app; it automatically checks for updates and installs any it finds, whether you like it or not. For most users, this new feature is actually very convenient. If you want to control the update process,...
Windows Server
0
7365
agi2029
AI Job Threat for Devs
by: agi2029 | last post by:
Let's talk about the concept of autonomous AI software engineers and no-code agents. These AIs are designed to manage the entire lifecycle of a software development project—planning, coding, testing, and deployment—without human intervention. Imagine an AI that can take a project description, break it down, write the code, debug it, and then launch it, all on its own.... Now, this would greatly impact the work of software developers. The idea...
Career Advice
0
5653
Couldn’t get equations in html when convert word .docx file to html file in C#.
by: conductexam | last post by:
I have .net C# application in which I am extracting data from word file and save it in database particularly. To store word all data as it is I am converting the whole word file firstly in HTML and then checking html paragraph one by one. At the time of converting from word file to html my equations which are in the word document file was convert into image. Globals.ThisAddIn.Application.ActiveDocument.Select();...
C# / C Sharp
0
4179
Trying to create a lan-to-lan vpn between two differents networks
by: TSSRALBI | last post by:
Hello I'm a network technician in training and I need your help. I am currently learning how to create and manage the different types of VPNs and I have a question about LAN-to-LAN VPNs. The last exercise I practiced was to create a LAN-to-LAN VPN between two Pfsense firewalls, by using IPSEC protocols. I succeeded, with both firewalls in the same network. But I'm wondering if it's possible to do the same thing, with 2 Pfsense firewalls...
Networking - Hardware / Configuration
0
4347
Windows Forms - .Net 8.0
by: adsilva | last post by:
A Windows Forms form does not have the event Unload, like VB6. What one acts like?
Visual Basic .NET
1
2762
transfer the data from one system to another through ip address
by: 6302768590 | last post by:
Hai team i want code for transfer the data from one system to another through IP address by using C# our system has to for every 5mins then we have to update the data what the data is updated we have to send another system
C# / C Sharp
2
1747
bsmnconsultancy
Comprehensive Guide to Website Development in Toronto: Expert Insights from BSMN Consultancy
by: bsmnconsultancy | last post by:
In today's digital era, a well-designed website is crucial for businesses looking to succeed. Whether you're a small business owner or a large corporation in Toronto, having a strong online presence can significantly impact your brand's success. BSMN Consultancy, a leader in Website Development in Toronto offers valuable insights into creating effective websites that not only look great but also perform exceptionally well. In this comprehensive...
General

By using Bytes.com and it's services, you agree to our Privacy Policy and Terms of Use.

To disable or enable advertisements and analytics tracking please visit the manage ads & tracking page.

BYTES.COM © 2024
About Bytes
Terms Of Use
Privacy Policy
Sitemap
Advertise on Bytes
How to Post and Respond on Bytes
How to Promote and Link on Bytes
How to increase your Ranking on Bytes
Become a Recognized Expert on Bytes
Feedback Welcomed! Contact Us