Go Back   Technibble Forums > General Computers > Tech-to-Tech Computer Help

  Technibble Sponsor

Reply
 
Thread Tools Display Modes
  #1  
Old 02-18-2009, 10:58 PM
wmacquinn wmacquinn is offline
 
Join Date: Nov 2008
Posts: 55
wmacquinn is an unknown quantity at this point
Send a message via AIM to wmacquinn Send a message via Skype™ to wmacquinn
Default website hacked

Okay so a website I am staff on is now hacked. it's finestbattles com. How do you stop this. I know the best way to stop a hacker is to know how they do it. Are there any good books out there someone would recommend to teach me what they do so I can block it. Or better yet, help me block it all together. Thanks in advance
Reply With Quote
  #2  
Old 02-18-2009, 11:52 PM
14049752 14049752 is offline
 
Join Date: Mar 2008
Posts: 3,314
14049752 has a spectacular aura about14049752 has a spectacular aura about
Default

Do you run the server yourself or is it hosted somewhere?
If it's not hosted by you, you can start by having strong usernames and passwords.

If you host it on your own hardware, obviously the strong passwords still apply, but you need to check a lot more. Check to see what ports are open, if there are any that you don't use, fix them.
Make a list of all of the software you use (Apache, Wordpress, your OS, any remote admin software, etc) and then search for exploits, security patches and major updates. Make sure all of the passwords and admin defaults are changed. Set admin/remote access rights to only local users if you can.
That's just a very quick list to get you started. I'm sure others will have more.
Hosting your own site and keeping it secure is a tough job.
Reply With Quote
  #3  
Old 02-18-2009, 11:53 PM
Simmy's Avatar
Simmy Simmy is offline
Super Moderator
 
Join Date: Aug 2007
Location: Bristol, UK
Posts: 1,442
Simmy is on a distinguished road
Send a message via MSN to Simmy
Default

Have they taken the site down or have you done that until you sort out the problem? It would help to see what they have done and how your site is coded. When my site was hacked, it was the hosting companies fault as they had an outdated version of php that allowed sql code injection.

Changing your ftp/hosting password would be a good start. But essentially you should contact your hosting company (unless you host the site yourself?) as they should have access logs.
__________________

Computer Repair Bristol | Bristol IT Support
Vidahost Discount Code | FreeAgent Discount Code | PM Me For A TeamViewer Discount Code
Reply With Quote
  #4  
Old 02-19-2009, 12:07 AM
wmacquinn wmacquinn is offline
 
Join Date: Nov 2008
Posts: 55
wmacquinn is an unknown quantity at this point
Send a message via AIM to wmacquinn Send a message via Skype™ to wmacquinn
Default

I dont host the site myself. Whoever hacke the site locked it down. When you clivk on it it goes to another sitr the one they are from. It is a rivalry kinda thing it seems. I just wish I could find ou how and who they are.
Reply With Quote
  #5  
Old 02-19-2009, 12:26 AM
dhrandy's Avatar
dhrandy dhrandy is offline
 
Join Date: Feb 2009
Location: Huntersville, NC
Posts: 667
dhrandy is an unknown quantity at this point
Send a message via MSN to dhrandy Send a message via Yahoo to dhrandy
Default

I would just contact the host provider and then change all your usernames and passwords.
__________________
Reply With Quote
  #6  
Old 02-19-2009, 05:32 AM
Jory Jory is offline
 
Join Date: Oct 2007
Posts: 939
Jory is on a distinguished road
Default

Nobody will be able to help you because you didn't describe what is actually happening. I tried going to the site, but it seems to be down now. If the "hacker" did that you should probably check your DNS settings, and the email account linked to your registrar's account.
Reply With Quote
  #7  
Old 02-19-2009, 02:06 PM
tartis's Avatar
tartis tartis is offline
 
Join Date: Oct 2007
Location: Battle Creek, MI USA
Posts: 327
tartis is an unknown quantity at this point
Default

Most of the hacks that I have seen are SQL injections while using MySQL and PHP. Make sure that you have all your patches if you are running Mambo, Wordpress, OSCommerce, or any other PHP and MySQL site. Make sure that you host has the latest version of PHP. Once it is fixed, make backups of your data so that you can recover quicker in times like these.
__________________
=====================================
Big Dog Computer Services, LLC
http://bigdogservice.com
Web Design, Web Hosting, Email Solutions in Battle Creek, Michigan
Reply With Quote
  #8  
Old 02-20-2009, 05:41 PM
wmacquinn wmacquinn is offline
 
Join Date: Nov 2008
Posts: 55
wmacquinn is an unknown quantity at this point
Send a message via AIM to wmacquinn Send a message via Skype™ to wmacquinn
Default

Problem fixed. Turns out the so called hacker was on staff for the site. He got an offer to go to another site and decided to mess with us before he left. We recovered with a backup from the day before and ip banned him. Just in case we have all staff routinely changing their password more often,
Reply With Quote
  #9  
Old 02-20-2009, 05:48 PM
dhrandy's Avatar
dhrandy dhrandy is offline
 
Join Date: Feb 2009
Location: Huntersville, NC
Posts: 667
dhrandy is an unknown quantity at this point
Send a message via MSN to dhrandy Send a message via Yahoo to dhrandy
Default

Quote:
Originally Posted by wmacquinn View Post
Problem fixed. Turns out the so called hacker was on staff for the site. He got an offer to go to another site and decided to mess with us before he left. We recovered with a backup from the day before and ip banned him. Just in case we have all staff routinely changing their password more often,
Wow. That sucks.
__________________
Reply With Quote
  #10  
Old 02-20-2009, 05:56 PM
Simmy's Avatar
Simmy Simmy is offline
Super Moderator
 
Join Date: Aug 2007
Location: Bristol, UK
Posts: 1,442
Simmy is on a distinguished road
Send a message via MSN to Simmy
Default

What a little b***h. Glad to hear it's all sorted I would probably expect a months free hosting for that
__________________

Computer Repair Bristol | Bristol IT Support
Vidahost Discount Code | FreeAgent Discount Code | PM Me For A TeamViewer Discount Code
Reply With Quote
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump


All times are GMT. The time now is 06:15 AM.


Powered by vBulletin®
Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
Technibble.com is based out of MELBOURNE, AUSTRALIA.