[SOLVED] My site keeps getting hacked!

[steviez]

Hi,

 

Im not sure if this is the correct forum for this post but here i go...

 

I keep getting my site hacked by http://jamaycka.net.tc/, i run cPanel 11.4.19-CURRENT 14378, and Apache 1.3.37 (Unix). How the hell can i stop this? is there certain dir permissions?

 

Please help!!

 

Thanks

[steviewdr]

You need to reinstall your operating system, and only install the software and web scripts you need. Change all passwords of webapps etc.

 

-steve

[the_oliver]

Are you aware of what port they are getting in on?

 

[steviez]

not aware of anything like that as its shared hosting

[steviewdr]

Ah! - shared hosting!!

 

Are there other websites also compromised on this shared server?? It might not be your fault.

 

Is your website dynamic? i.e. datadriven from a database?

 

Do you have **any** passwords saved in ANY files on the webserver???

 

Do you have weblogs? Do they show the attacker coming via the website? or are they accessing and changing the files via the filesystem and server?

 

I suggest you contact your webhosting provider as they may be able to assist in blocking these attacks.

 

-steve

[manishsinha27]

One more loophole that sometimes exists is the file permissions, cant remmember but once a person asked me the same question....

He even told that his file permissions were 777. This is the most insecure file permission. I recommend you check you file permissions. All of them should be set to 644 or 744.

IF other sites are also compromised,then contact your hosting provider

[sushant_d84]

All u r Programing Files.. should not have 777 permission...........

 

Also U r important files should be In the folder called "PRIVATE" 

 

So that files will not be accessed from doc_root folder..........

 

 

Also Keep the .htacess file in Each directory with some specification