Change font size Change Width
Advanced Search
 

Joomla! Discussion Forums



It is currently Thu Nov 26, 2009 4:50 am (All times are UTC )

 

Board index » Joomla! Older Version Support » Joomla! 1.0 » Security - 1.0.x

Forum rules

Forum Rules
Absolute Beginner's Guide to Joomla! <-- please read before posting, this means YOU.
Security Checklist
Forum Post Assistant - If you are serious about wanting help, you will use this tool to help you post.



Post new topic Reply to topic  Page 1 of 1
  [ 5 posts ] 
  Print view Previous topic | Next topic 
Author Message
mladost13
Posted: Tue Oct 30, 2007 2:20 am 
User avatar
Joomla! Enthusiast
Joomla! Enthusiast
Offline

Joined: Thu Nov 03, 2005 3:58 pm
Posts: 104
Hi, my website was hacked today, wasnt a big deal, I just asked the host to restore the lastest backup... Im writing this post because I dont want it to happen again. I have done several joomla wesbites and this is the first time this happens.

The curious fact is that I have other 3 websites hosted on the same account but the one affected was only one.

My theory is the following, Im using Image Vue Image Gallery as a standalone gallery for this website in a separate folder called "gallery", there was the malicious php file called "a.php", and as I also read in this forum one vulnerability on the expose gallery was related to the upload.php file on the admin part of the component, my theory also point to that fact, as Image Vue also has an upload.php file and a upload.js script.

The actions I took:
deleted a.php
stablished 744 access rigth to the folder gallery
stablished 000 access rigth to upload.php and upload.js as I dont use them to update the gallery

Is my theory rigth? did I took good actions? could this happen again despite of the actions I took? any suggestions?

Thank you in advance.
Top
  E-mail  
 
vscribe
Posted: Tue Oct 30, 2007 2:53 am 
Joomla! Enthusiast
Joomla! Enthusiast
Offline

Joined: Thu Jun 01, 2006 3:16 pm
Posts: 196
Location: Texas, USA
look for readme.php in the images/themes dir.

Unless you know when it happened you may be restoring the attack.

_________________
cmsconnection.com/forum - the multi-cms forum

Top
   
 
AmyStephen
Posted: Tue Oct 30, 2007 3:04 am 
User avatar
Joomla! Champion
Joomla! Champion
Offline

Joined: Wed Nov 22, 2006 3:35 pm
Posts: 6424
Location: Nebraska
mladost13 -

There are a number of "stickies" in the security forum that you will want to review. The one to spend some time with is entitled You think You're site got hacked?  Read this first, please!!!. Hackwar, one of our Joomla! developers, has done a thorough job of outlining the steps and precautions you should take to protect yourself. It is well worth your time to explore.

I am sorry for your troubles. It is always disappointing to see that happen.

Kind regards,
Amy :)

_________________
http://Twitter.com/AmyStephen
Unofficial Joomla Developer and Site Builders Network http://AllTogetherAsAWhole.org

Top
   
 
mladost13
Posted: Tue Oct 30, 2007 3:06 am 
User avatar
Joomla! Enthusiast
Joomla! Enthusiast
Offline

Joined: Thu Nov 03, 2005 3:58 pm
Posts: 104
The problem is resolved, my website is up again.

I dont use expose, I use Image Vue,  theres no images/themes directory.

I just wanted to know if my theory was correct, if the actions I took are ok and if those actions will prevent a future attack.

Thank you
Top
  E-mail  
 
vscribe
Posted: Tue Oct 30, 2007 3:42 am 
Joomla! Enthusiast
Joomla! Enthusiast
Offline

Joined: Thu Jun 01, 2006 3:16 pm
Posts: 196
Location: Texas, USA
c99madshell is a viable threat.

You are wise to report it.

_________________
cmsconnection.com/forum - the multi-cms forum

Top
   
 
Display posts from previous:  Sort by  
Post new topic Reply to topic  Page 1 of 1
  [ 5 posts ] 

Quick reply

 


Board index » Joomla! Older Version Support » Joomla! 1.0 » Security - 1.0.x

Who is online

Users browsing this forum: No registered users and 21 guests

You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Jump to:  
Powered by phpBB © 2000, 2002, 2005, 2007 phpBB Group
 
 
 
 
 

© 2005-2009 Open Source Matters, Inc. All rights reserved. Joomla hosting by Rochen Ltd.