Basic Security Tips - Joomla! Forum - community, help and support

-

hello,

my site got hacked recently. in attempt secure, reduce risk have completed following , thought may useful other people.

i know followed basic steps should take wondered have missed anything.

1) took site offline

2) installed latest version of joomla_1.0.10

3) complete review off 3rd party components, modules , bots

  a) visit relevant 3rd party developer sites , download latest releases.
  b) uninstall components, modules or bots not need via joomla administrator area.
  c) accessed site via ftp , removed component, module or bot files may have being left behind.
  d) removed sql tables relating components, modules or bots have uninstalled.
  e) install or upgrade latest released of 3rd party components, modules or bots.

4) chmod permissions

  once happy latest version of joomla installed plus running date components, modules, bots did following.

  a) set all directories chmod 755
  b) set all files chmod 644

5) complete weekly backup of mysql database plus core files.

  a) once above complete took backup off files on server.
  b) every week take backup of mysql database.

thanks
mr bingo

i add taking site offline , reinstall may not sufficient in cases.

to delete files in html folder before reinstalling.
one way know looking @ last saved date files.

also, advised change al passwords formerly used, as, depending on crack, db have been accessed.





Comments

Post a Comment

Popular posts from this blog

Convierte tu Raspberry en un NAS. Firmware fvdw-sl 15.3 - Raspberry Pi Forums

-
¿conocéis este proyecto? fvdw-sl 15.3 para raspberry pi. convierte la raspi en un nas. http://plugout.net/viewtopic.php?f=31&t=1880 llevo tiempo intentando encontrar la forma de hacer que una de mis raspberry se comporte como un nas. configurando samba, minidlna, transmision, ftp, nfs, etc. pues con esta distribución lo tengo todo hecho. lo instalé ayer y me tiene soprendido. ahora mi raspi es un nas, hecho y derecho. caracterísitcas. - interfaz web. que cambia en función de si eres el administrador o un usuario. - gestión de usuarios. puediendo dar distintos permisos carpetas y funciones. - gestión de carpetas - vpn - ftp - nfs - webdav - varios servidores dlna como minidlna, townky, etc - varios gestores de descarga como transmision, mldonkey, etc - gestión de periféricos usb como impresoras o webcam. - gestión de cron para automatizar procesos. - creo que se basa en arch linux. por cierto, estoy creando una tarea para que me exporte un archivo txt del dis...
Read more

How to format a Get Request

-
i have external server running mysql. have installed php script that, when accessed http deliver data 1 of tables. works fine browser: code: [select] http://www.seti.net/php/getevents.php i cannot figure out how send command arduino. have ethernetclient library working , can access google in example. when send command through client: code: [select] client.println("//get /php/getevents.php http/1.0"); the server returns: code: [select] </head><body> <h1>method not implemented</h1> <p>get /php/getevents.php not supported.<br /> what correct way format in arduino? i use send temperature web server. note lack of http version , additional blank line after - not sure whether difference important works: code: [select] void  sendtemptoserver() { char getrequest[80]; if (client.connect(server, 80))   {   sprintf(getrequest,"get /cgi-bin/arduino.cgi?reading=%s&arduino_id=23&sensor_id=1",t...
Read more

avrdude: verification error, first mismatch at byte 0x0000 0x0c != 0x62

-
hello, im confused uno r3, uploaded code quite few months in uno, working fine. now without having altered of circuits, trying upload code changes,im getting strange error "avrdude: verification error, first mismatch @ byte 0x0000          0x0c != 0x62" i tried research able solve issue,  im running kind of fuse bit being changed or clock speed altered, im pretty sure did not play around these items. any people, please . . thanks taz Arduino Forum > Using Arduino > Installation & Troubleshooting > avrdude: verification error, first mismatch at byte 0x0000 0x0c != 0x62 arduino
Read more