Hello and welcome to our community! Is this your first visit?
Register
Enjoy an ad free experience by logging in. Not a member yet? Register.
Results 1 to 4 of 4
  1. #1
    Regular Coder
    Join Date
    Oct 2003
    Posts
    603
    Thanks
    2
    Thanked 1 Time in 1 Post

    security problems

    ok im not sure how this is happening, but several of my websites keep getting footer.php file hacked into and a Malware javascript gets added to the bottom of the code... the file permission is set to 644 and the cpanel password was just changed to something extremely random/secure... im not sure how they keep getting in. i asked the host to look into it and they said there's no record of any SSH hacking or anything..... and there are no editors that change anything on footer.php so it isnt a problem in my admin script.... frustrating

  • #2
    Super Moderator
    Join Date
    Feb 2009
    Location
    England
    Posts
    539
    Thanks
    8
    Thanked 63 Times in 54 Posts
    This could be anything. Odd considering your 644. You probably want someone you trust to have a proper look around the server.
    lamped.co.uk :: Design, Development & Hosting
    marcgray.co.uk :: Technical blog

  • #3
    Senior Coder CFMaBiSmAd's Avatar
    Join Date
    Oct 2006
    Location
    Denver, Colorado USA
    Posts
    3,130
    Thanks
    2
    Thanked 328 Times in 320 Posts
    My guesses in decreasing order of probability -

    Your admin script allows someone who is not logged in to access the content on your form/form processing pages.

    You are including files in your admin script that when browsed to directly don't care about the log in check on your admin pages.

    You have an upload function that allowed a script to be uploaded that then allowed a hacker to do anything he wanted to your site.

    You are including content based on a GET parameters and allow_url_fopen/allow_url_include permitted raw php code to be included and executed on your server.

    SQL injection allowed a hacker to either obtain your admin script password and/or create his own admin account that then permitted access to the content in your scripts.

    It would take seeing your code to determine which one(s) of these or any other possible exploits exist.
    If you are learning PHP, developing PHP code, or debugging PHP code, do yourself a favor and check your web server log for errors and/or turn on full PHP error reporting in php.ini or in a .htaccess file to get PHP to help you.

  • #4
    Regular Coder
    Join Date
    Oct 2003
    Posts
    603
    Thanks
    2
    Thanked 1 Time in 1 Post
    well none of my scripts include anything from $_GET vars, and my admin doesnt manage any php files... and the logins for the admin are HTACCESS and not stored in a database.... and there are no upload forms outside of the htaccess-protected admin area. so im not sure what is going on.


  •  

    Posting Permissions

    • You may not post new threads
    • You may not post replies
    • You may not post attachments
    • You may not edit your posts
    •