2009-03-18, 04:23 AM
Hi,
My forum was hacked again - this is the third (yes, 3) time. I did a lot of investigating on how was that done and I found that five(5) files where changed:
(all under the /inc/language folder)
1. /index.htm
2. /english/index.htm
3. /english/index.lang.php
4. /hebrew/index.htm
5. /hebrew/index.lang.php
All files had the same content.
What actions I did to (try and) prevent this next time:
1. Changed my admin's password
2. Changed my FTP and site's Control Panel password (both are on the same place)
3. Changed premissions of this files to 644
As I'm now preparing to do some shouting on my ISP (the domain holder/publisher), I would like to know if:
1. Can this files be changed via MyBB itself (either via the AdminCP or other method).
2. Has anyone encountered this type of hacking?
3. What do you think my best way to prevent this from happening again?
4. Is what I did good, bad or not enough?
Please help as soon as you can,
Ori...
My forum was hacked again - this is the third (yes, 3) time. I did a lot of investigating on how was that done and I found that five(5) files where changed:
(all under the /inc/language folder)
1. /index.htm
2. /english/index.htm
3. /english/index.lang.php
4. /hebrew/index.htm
5. /hebrew/index.lang.php
All files had the same content.
What actions I did to (try and) prevent this next time:
1. Changed my admin's password
2. Changed my FTP and site's Control Panel password (both are on the same place)
3. Changed premissions of this files to 644
As I'm now preparing to do some shouting on my ISP (the domain holder/publisher), I would like to know if:
1. Can this files be changed via MyBB itself (either via the AdminCP or other method).
2. Has anyone encountered this type of hacking?
3. What do you think my best way to prevent this from happening again?
4. Is what I did good, bad or not enough?
Please help as soon as you can,
Ori...