salon428 Posted December 22, 2004 Posted December 22, 2004 Got home today and find that my site has been defaced! Does anyone know which files are affected and how to prevent this in the future? >_<
salon428 Posted December 23, 2004 Author Posted December 23, 2004 Got home today and find that my site has been defaced! Does anyone know which files are affected and how to prevent this in the future? >_< <{POST_SNAPBACK}> Ok Basically almost everything was Erased Or modified . I think I just about have this worked out except I am not exactly sure what goes here on the includes /functions/database.php. Ie.. I need an example please: function tep_db_connect($server = DB_SERVER, $username = DB_SERVER_USERNAME, $password = DB_SERVER_PASSWORD, $database = DB_DATABASE, $link = 'db_link') { global $$link; if (USE_PCONNECT == 'true') { $$link = mysql_pconnect($server, $username, $password); } else { $$link = mysql_connect($server, $username, $password); } Thanks
wwfc_barmy_army Posted December 23, 2004 Posted December 23, 2004 Ok Basically almost everything was Erased Or modified . I think I just about have this worked out except I am not exactly sure what goes here on the includes /functions/database.php.? Ie.. I need an example please: function tep_db_connect($server = DB_SERVER, $username = DB_SERVER_USERNAME, $password = DB_SERVER_PASSWORD, $database = DB_DATABASE, $link = 'db_link') {? ? global $$link; ? ? if (USE_PCONNECT == 'true') {? ? ? $$link = mysql_pconnect($server, $username, $password);? ? } else {? ? ? $$link = mysql_connect($server, $username, $password);? ? } Thanks[right][post=510255]<{POST_SNAPBACK}>[/post][/right] Web Worm 13? I know theres a worm going around for PHPBB. For more information on this vulnerability, and to make sure your own web? server and phpBB installation are secure, please visit these links: News Story on ZDNet Required code change on phpBB Remember -- a phpBB upgrade is not enough. You *must* upgrade your PHP version as well. Haven't heard of one for Oscommerce. Pete.
salon428 Posted December 23, 2004 Author Posted December 23, 2004 Web Worm 13? I know theres a worm going around for PHPBB.Haven't heard of one for Oscommerce. Pete. <{POST_SNAPBACK}> AKA Perl.Santy
wwfc_barmy_army Posted December 23, 2004 Posted December 23, 2004 AKA Perl.Santy <{POST_SNAPBACK}> I know its name. I was meaning 'Worm 13?' as 'What the hell is worm 13?' :P So you do mean phpBB? Pete.
salon428 Posted December 23, 2004 Author Posted December 23, 2004 I know its name. I was meaning 'Worm 13?' as 'What the hell is worm 13?' :P So you do mean phpBB? Pete. <{POST_SNAPBACK}> Yes, Searched it on symantec say's that it was discovered 12-21-2004 Figures I crashed on 12-22-2004. Can you help with the db question B)
wwfc_barmy_army Posted December 23, 2004 Posted December 23, 2004 Shouldn't your database still be intact? To be honest i think it may be better if you go to the phpBB forum and asked about this as it is not Oscommerce. - http://www.phpbb.com/phpBB/index.php Pete.
salon428 Posted December 23, 2004 Author Posted December 23, 2004 Shouldn't your database still be intact? To be honest i think it may be better if you go to the phpBB forum and asked about this as it is not Oscommerce. - http://www.phpbb.com/phpBB/index.php Pete. <{POST_SNAPBACK}> DUDE this crashed my OS COMMERCE CART! I need to reconnect to my db via my database.php file can you help?
wwfc_barmy_army Posted December 23, 2004 Posted December 23, 2004 DUDE this crashed my OS COMMERCE CART! I need to reconnect to my db via my database.php file can you help? <{POST_SNAPBACK}> Ok, well heres a good place then :P Well shouldn't your phpBB database and oscommerce database be seperate? I'm not any good with the modifying stuff, so you should wait till someone more experienced comes on. :) Pete.
Guest Posted December 23, 2004 Posted December 23, 2004 easiest fix for this, is install php 4.3.10 and then restore your files.
Guest Posted December 23, 2004 Posted December 23, 2004 ummmm, why are you editing this file? actual db, username, pwd are in the configure.php files Ok Basically almost everything was Erased Or modified . I think I just about have this worked out except I am not exactly sure what goes here on the includes /functions/database.php. Ie.. I need an example please: function tep_db_connect($server = DB_SERVER, $username = DB_SERVER_USERNAME, $password = DB_SERVER_PASSWORD, $database = DB_DATABASE, $link = 'db_link') { global $$link; if (USE_PCONNECT == 'true') { $$link = mysql_pconnect($server, $username, $password); } else { $$link = mysql_connect($server, $username, $password); } Thanks[right][post=510255]<{POST_SNAPBACK}>[/post][/right]
user99999999 Posted December 23, 2004 Posted December 23, 2004 What you need to do is contact your hosting company! This worm can still be running on your server... You didn't provide any error messages but since your concerned about database.php I am assuming you got a error messenger like [TEP STOP] database.php line xxx The real error is something else like configure.php was deleted or renamed to .txt or who knows. Thats why database.php cant connect without that info. Contact your host get a clean system change all your passwords and start over.
New 
Recommended Posts
Archived
This topic is now archived and is closed to further replies.