Index edited
- Thread starter Tavicu
- Start date
nobaloney
NoBaloney Internet Svcs - In Memoriam †
In general once you've been hacked you should probably rebuild your server as you have no idea what the hacker has done.
What do you see on the DA login page? Can you post the link to the nonworking login?
From your subject line it appears that you've been hacked by a php script which has replaced every index.html file on your server. If that's all that's been done you can find and rebuild all the index.html files. But how do you know if that's all that's been done?
Jeff
What do you see on the DA login page? Can you post the link to the nonworking login?
From your subject line it appears that you've been hacked by a php script which has replaced every index.html file on your server. If that's all that's been done you can find and rebuild all the index.html files. But how do you know if that's all that's been done?
Jeff
i have been help by DA support and now is all good but i need a man who can help me to secure the srv.
The hacker has run 2 commands
#echo by Thehacker>/etc/index.html
#find /home/* -name index.* -exec cp /etc/index.html {} ;
I don't know how has runing that command but i think with a php file with chmod 777.Now i have turn on safe mod and turn of fopen function...Can you say more indeas and settings how to secure my server?
Please.
Thank You
The hacker has run 2 commands
#echo by Thehacker>/etc/index.html
#find /home/* -name index.* -exec cp /etc/index.html {} ;
I don't know how has runing that command but i think with a php file with chmod 777.Now i have turn on safe mod and turn of fopen function...Can you say more indeas and settings how to secure my server?
Please.
Thank You