| View previous topic :: View next topic |
| Author |
Message |
don_worden
-
Joined: 18 Dec 2003
Posts: 2
|
 Posted: Fri Jun 16, 2006 1:37 pm Post subject: I hate to burst y'alls bubble.... |
 |
|
I had been having hacking problems while using the microsoft server, so I switched to the abyss x1 server.
I had everything all set, the anti-hacking feature on and running, and in the past week I have had my site defaced 4 times.
Each time, I block IP addresses, and lo and behold, they hit with a different IP. What more can I do? |
|
| Back to top |
  |
 |
AbyssUnderground
-
Joined: 31 Dec 2004
Posts: 3855
|
| Posted: Fri Jun 16, 2006 1:56 pm Post subject: |
|
|
Fix your sites code. Abyss cannot be hacked, its your sites code that is being hacked.
_________________
Andy (AbyssUnderground) (previously The Inquisitor)
www.abyssunderground.co.uk |
|
| Back to top |
 |
|
cmxflash
-
Joined: 11 Dec 2004
Posts: 872
|
| Posted: Fri Jun 16, 2006 2:12 pm Post subject: |
|
|
| Could you please give me the URL to your website, and I'll check it for security holes. |
|
| Back to top |
|
|
pkSML
-
Joined: 29 May 2006
Posts: 955
Location: Michigan, USA
|
| Posted: Fri Jun 16, 2006 3:57 pm Post subject: |
|
|
Can you list some of the IP's that are hitting your site?
If you've read the documentation, you know you can block a range of IP's in one shot. You should find the documentation here: http://127.0.0.1:9999/doc/patternsformat.html.
For example, you can block a range of IP's like this:
182.132.*
OR: 182.132.1.1-182.132.255.255
They both mean the same thing.
Let us know if any of our posts help you.
_________________
Stephen
Need a LitlURL?
http://CodeBin.yi.org |
|
| Back to top |
|
|
aprelium
-
Joined: 22 Mar 2002
Posts: 6800
|
| Posted: Sat Jun 17, 2006 12:07 pm Post subject: Re: I hate to burst y'alls bubble.... |
|
|
| don_worden wrote: | | I have had my site defaced 4 times. |
Abyss Web Server is programmed in such a way to not allow any access to files you do not explicitly allow it to serve.
But most hackers take advantage of security holes in scripts. If a script is badly programmed or has flaws, the server cannot control it or even stop the damage. So update your scripts regularly (if you have not written them) or audit your code to fix it.
_________________
Support Team
Aprelium - http://www.aprelium.com |
|
| Back to top |
 |
|
loloyd
-
Joined: 03 Mar 2006
Posts: 435
Location: Philippines
|
| Posted: Fri Jun 30, 2006 9:39 am Post subject: |
|
|
don_worden, could you please give us more details on how you were hacked? certainly, you were not hacked via the webserver exploits route as there isn't much you can do with abyss's tight security. normally, you can trace the attack vectors by going through your webserver logs. were your hackers defacing your website through your scripts or through other services/processes you have on your server?
_________________
 http://home.loloyd.com/ is online if the logo graphic at left is showing. |
|
| Back to top |
|
|
don_worden
-
Joined: 18 Dec 2003
Posts: 2
|
| Posted: Sat Aug 12, 2006 6:24 pm Post subject: Defacing Problem |
|
|
I went trhrough and fixed the problem.... was running an asp portal, which someone used a back door to go through... not running portal any more.
am now running another type of portal. |
|
| Back to top |
|
|
bprsk8r4272
-
Joined: 07 Mar 2006
Posts: 124
Location: Rochester, NY
|
| Posted: Sat Aug 12, 2006 7:06 pm Post subject: |
|
|
if you wanna run a portal i would run php-nuke as thats pretty hard to hack it you updated it right
_________________
 |
|
| Back to top |
  |
|
|
