Guest Posted April 8, 2008 Share Posted April 8, 2008 My index.php file gets hacked and I cannot figure out how. :huh: The hacker will put "ownz" and then his name on my index file and delete everything else on it. I am able to re-upload my index file so I am ok there. But I need to figure out how this happens and how to stop it from happening. I just don't understand how someone can access my index file. Can anyone help me please? Link to comment Share on other sites More sharing options...
wetwipe Posted April 8, 2008 Share Posted April 8, 2008 My index.php file gets hacked and I cannot figure out how. :huh: The hacker will put "ownz" and then his name on my index file and delete everything else on it. I am able to re-upload my index file so I am ok there. But I need to figure out how this happens and how to stop it from happening. I just don't understand how someone can access my index file. Can anyone help me please? what is your oscommerce version? Link to comment Share on other sites More sharing options...
Guest Posted April 8, 2008 Share Posted April 8, 2008 what is your oscommerce version? I'm not sure. Is there a way I can find out? Link to comment Share on other sites More sharing options...
Guest Posted April 8, 2008 Share Posted April 8, 2008 I'm not sure. Is there a way I can find out? Look here. Link to comment Share on other sites More sharing options...
Guest Posted April 8, 2008 Share Posted April 8, 2008 Look here. I was able to find my version, which is 'osCommerce 2.2-MS2' I believe that is the latest version? Link to comment Share on other sites More sharing options...
Guest Posted April 8, 2008 Share Posted April 8, 2008 I was able to find my version, which is 'osCommerce 2.2-MS2'I believe that is the latest version? No, osCommerce Online Merchant v2.2 RC2a is the latest. It is highly probable that you do not have all of the latest security updates installed. If you download the latest from the solutions tab above, you will find an extras folder with the patches (slow process to up date files and load to the web). Link to comment Share on other sites More sharing options...
shooter-boy Posted April 8, 2008 Share Posted April 8, 2008 There was a security issue with this some time ago, but i believe osC 2.2 MS2 was not affected, it was before then. There was also an apache configuration issue with some hosts from memory. I know that doesn't offer much sorry... but it might jog someone else's mind. Rob Rob Bell - Inspired Graphix Customising osCommerce in Australia, and the world! View my profile for web and email links. I'm sorry, but i cannot offer Free support via PM etc, and osCommerce forums prohibit me from putting any reference to paid support in my signauture. However viewing my profile may provide links to my website or something like that which you may find useful. Link to comment Share on other sites More sharing options...
minionsweb Posted April 8, 2008 Share Posted April 8, 2008 It is likely the permissions setting on the index.php file or directory itself. Ideally you should have 755 for the file permissions, look on your host file manager, navigate to the file, check/change permissions. This is also one reason why folks should never default install OSC to website.com/catalog Another issue could be someone backdooring your site via the database. Link to comment Share on other sites More sharing options...
arietis Posted April 9, 2008 Share Posted April 9, 2008 But I need to figure out how this happens and how to stop it from happening. I just don't understand how someone can access my index file. Can anyone help me please? did you password protect your admin area? if not, he could use the file manager feature in the admin to upload a new version of the file. you should not only password protect it, but use a different name besides admin for the directory name. also, tell your isp! they can track the ip address of the person connecting and block him. what he's doing is against the law but it's probably some teenager and since your damages are small i doubt a legal response will go very far. but at the very least, the isp can block him out and it'll slow him down a little. best of luck to you! Link to comment Share on other sites More sharing options...
arietis Posted April 9, 2008 Share Posted April 9, 2008 oh yeah...once this is resolved and he can't do this any more. change your passwords! it's very likely that he's looked at your configuration file. and if you're using any of the same passwords for other parts of your site, administration, or email accounts - change those too. it's never a good practice to use the same password for all these things in case this exact thing happens. Link to comment Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.