.htaccess hacked

[mamadletsgo]

hello

I access all files with root

but hacker by shell .htaccess and all files hacked

perimission .htaccess and all files 444 and chown root

How can I prevent getting hacked?

thanks

 

[24x7server]

If hacker entered into your server by Shell then you must first set complex password and change default SSH port.

 

[mamadletsgo]

If hacker entered into your server by Shell then you must first set complex password and change default SSH port.

ssh and directadmin just open by one ip address

But the Hacker has access to the files to delete

but acees to files root (uid , gid root)

What was in the files that the server can root access?

 

[Richard G]

I wouldn't even use password login anymore but use SSH keys with password, much safer.

Maybe your personal PC from which you access the server has a trojan or something, so the hacker has gotten your passwords some how.
Or he gotten in via a malicious script or leak script on your server.

Best is to update everything and also install things als chkrootkit and Maldetect.