1. You are viewing our forum as a guest. For full access please Register. WindowsBBS.com is completely free, paid for by advertisers and donations.

Resolved Homepage is hacked

Discussion in 'Security and Privacy' started by zhshqzyc, 2012/08/22.

  1. 2012/08/22
    zhshqzyc

    zhshqzyc Inactive Thread Starter

    Joined:
    2008/12/15
    Messages:
    140
    Likes Received:
    0
    Hello,

    Recently my homepage has been hacked several times. I use filezilla to upload my source code to the hosting server.

    I am not sure whether this ftp client is safe or not. Once at time the password was stolen.
    I changed the password on Monday but yesterday the home page was hacked again.

    Any ideas?
    Thanks.
     
    zhshqzyc,
    #1
  2. 2012/08/22
    Arie

    Arie Administrator Administrator Staff

    Joined:
    2001/12/27
    Messages:
    15,174
    Likes Received:
    412
    If you are not using an FPT client that uses an encrypted connection your password will always be sent in 'clear text', so anyone watching will be able to see it. Good chance that if your 'homepage' was hacked, there's software installed that will read your new password.

    Change your provider if they aren't able to protect your site or advise you how to.
     
    Arie,
    #2


  3. to hide this advert.

  4. 2012/08/22
    zhshqzyc

    zhshqzyc Inactive Thread Starter

    Joined:
    2008/12/15
    Messages:
    140
    Likes Received:
    0
    The support team answered:

    On further checking the index page was hacked due to subdirectories and files set with world write permissions. This includes /index.html. We have changed the permission for the file now.


    How can a hacker do it? Is the password required?
     
    zhshqzyc,
    #3
  5. 2012/08/23
    Arie

    Arie Administrator Administrator Staff

    Joined:
    2001/12/27
    Messages:
    15,174
    Likes Received:
    412
    If your files are set world writable they can easily overwrite them with their own code.
     
    Arie,
    #4
  6. 2012/08/24
    TonyT

    TonyT SuperGeek Staff

    Joined:
    2002/01/18
    Messages:
    9,072
    Likes Received:
    400
    Probably because they first cracked a weak password or sniffed the clear text password, and once they had access, they changed the permissions of the files on the server and also placed a script there that sends them login info.

    Also, any directory that DOES NOT contain and index.html or index.htm or index.php files SHOULD contain at least an empty one. That prevents the contents of directories from being listed by a browser.

    You should also use .htaccess (if the Web server is Apache) to block the wget program. wget is a command line utility to download server files or the entire site.
     
    TonyT,
    #5
  7. 2012/08/24
    zhshqzyc

    zhshqzyc Inactive Thread Starter

    Joined:
    2008/12/15
    Messages:
    140
    Likes Received:
    0
    Can I use a secure FTP client software to upload / download files to and from FTP servers?
     
    zhshqzyc,
    #6
  8. 2012/08/26
    TonyT

    TonyT SuperGeek Staff

    Joined:
    2002/01/18
    Messages:
    9,072
    Likes Received:
    400
    Yes, IF your Web host supports sftp or ssh. You must contact them to ask what protocols may be used for managing the site.
     
    TonyT,
    #7

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...