ezeman Posted January 22, 2006 Posted January 22, 2006 Someone [you choose the bad name, I've thought of plenty!!] hacked my shop and ran a phishing site on my /catalog/images directory and my ISP disconnected my server !! :( OK my server was a old and highly patched RAQ4 but I thought it was secure. This means I REALLY NEED assurance that setting /catalog/images and the others to permission 777 is really a good thing. On investigation, I also found a phishing scam pointing to a different OSC shop - also on the /catalog/images! This 2nd shop is not mine - different owner, different developer, different web server and even different country. This means that I found 2 instances of phishing sites in in the same 777 permission directory on 2 different OSC installations!! I noticed in MS2.2 that there's no .htaccess or index.html in the /catalog/images directory, should ther be? How do I make OSC secure? I run 2 shops and am about to build 2 more so I kinda need to know this. Cheers eZeMan :sweating: If you learn more than you forget then that's a good thing.
AlanR Posted January 22, 2006 Posted January 22, 2006 Same issue in this thread... http://www.oscommerce.com/forums/index.php?showtopic=191000 Local: Mac OS X 10.5.8 - Apache 2.2/php 5.3.0/MySQL 5.4.10 • Web Servers: Linux Tools: BBEdit, Coda, Versions (Subversion), Sequel Pro (db management)
ezeman Posted January 22, 2006 Author Posted January 22, 2006 Thanks AlanR, I'll reply in the other thread. eZeMan If you learn more than you forget then that's a good thing.
New 
Recommended Posts
Archived
This topic is now archived and is closed to further replies.