Corkky Posted October 22, 2006 Posted October 22, 2006 Our site continuously gets hacked, over and over again. Hackers abuse it to upload fake banking files (phishing). We cannot find out how they do this, i think we did set the CHMOD permissions correctly. - Is this a know issue? - Does anyone have suggestions how to solve this problem? An example of one of our sites is http://www.iankasshop.nl. Thanks in advance - any help is welcome! Corkky
berkedam Posted October 22, 2006 Posted October 22, 2006 Our site continuously gets hacked, over and over again. Hackers abuse it to upload fake banking files (phishing). We cannot find out how they do this, i think we did set the CHMOD permissions correctly. - Is this a know issue? - Does anyone have suggestions how to solve this problem? An example of one of our sites is http://www.iankasshop.nl. Thanks in advance - any help is welcome! Corkky I would lodge my complaints with : 123winkel.net.It's their shop you are using, they are responsible for the shopsoftware you rent there. And a would be a good thing to mount your own shop with a different ISP. "If you're working on something new, then you are necessarily an amateur."
Corkky Posted October 22, 2006 Author Posted October 22, 2006 I would lodge my complaints with : 123winkel.net.It's their shop you are using, they are responsible for the shopsoftware you rent there. And a would be a good thing to mount your own shop with a different ISP. Thank you... but i am 123winkel.net myself.
boxtel Posted October 22, 2006 Posted October 22, 2006 Our site continuously gets hacked, over and over again. Hackers abuse it to upload fake banking files (phishing). We cannot find out how they do this, i think we did set the CHMOD permissions correctly. - Is this a know issue? - Does anyone have suggestions how to solve this problem? An example of one of our sites is http://www.iankasshop.nl. Thanks in advance - any help is welcome! Corkky what example Treasurer MFC
berkedam Posted October 22, 2006 Posted October 22, 2006 Thank you... but i am 123winkel.net myself.You can't even trust whois anymore :( "If you're working on something new, then you are necessarily an amateur."
GemRock Posted October 22, 2006 Posted October 22, 2006 Our site continuously gets hacked, over and over again. Hackers abuse it to upload fake banking files (phishing). We cannot find out how they do this, i think we did set the CHMOD permissions correctly. - Is this a know issue? - Does anyone have suggestions how to solve this problem? It IS a well-known issue (ever since the WWW was born), but not one with osCommerce particularly. 1) 'hacker(s)' has physical access to your server machine, an internal security problem; 2) your server is not secured properly; 3) site(s) hosted on the server has got their FTP account details stolen, by whatever means. Ken commercial support - unProtected channel, not to be confused with the forum with same name - open to everyone who need some professional help: either PM/email me, or go to my website (URL can be found in my profile). over 20 years of computer programming experience.
Guest Posted October 22, 2006 Posted October 22, 2006 Look at the user that owns the files that are being uploaded to your site. Does that user have permissions that they shouldn't have? Are there security updates to your web server that you have not applied? Most OSes have agents to check for new security patches. Are you running an FTP server as well? Is anonymous FTP is enabled? Are the directories accessible via anonymous FTP also accessible via HTTP? Are you running other software on these servers with known security issues? (i.e. older versions of phpbb, etc) -jared
New 
Recommended Posts
Archived
This topic is now archived and is closed to further replies.