The Joomla! Forum ™

Download

Demo


Board index » Joomla! Older Version Support » Joomla! 1.5 » Security in Joomla! 1.5

Forum rules


Forum Rules
Absolute Beginner's Guide to Joomla! <-- please read before posting, this means YOU.
Security Checklist
Forum Post Assistant - If you are serious about wanting help, you will use this tool to help you post.



Post new topic Reply to topic  Page 1 of 1
  [ 3 posts ] 
  Print view Previous topic | Next topic 
Author Message
wastenothing
PostPosted: Tue Jan 05, 2010 8:00 pm 
Joomla! Fledgling
Joomla! Fledgling

Joined: Tue Jan 05, 2010 7:46 pm
Posts: 2
Hello,

My site has been hacked because I was running an older version of Joomla--my fault. I'm new to this and am learning the right precautions as I go. If someone would kindly help me,

I'm in phpmyadmin editing my database and have changed my username and e-mail back to something I know. The trouble is that the hacker appears to have taken my site offline. I've tried visiting my site with the index.php?option=com_user&view=reset but I just get the same Joomla "site offline" page but with a message from a hacker in it instead of "site down for maintenance etc." I don't know if it's really offline or not.

One strange thing is that the offline message in jos_migration_configuration still has the default "site down for maintenance" offline message.

Would someone be willing to tell me where in the database or joomla files I can see if my site is really "offline" and how I can toggle that back to online? Is this as simple as changing a 1 back to a 0 somewhere? I'd love to hear anyone else's ideas too.

Thanks so much,
-WN
Top
 Profile  
 
wastenothing
PostPosted: Tue Jan 05, 2010 8:03 pm 
Joomla! Fledgling
Joomla! Fledgling

Joined: Tue Jan 05, 2010 7:46 pm
Posts: 2
My apologies, I see that this language is confusing:

"The trouble is that the hacker appears to have taken my site offline. I've tried visiting my site with the index.php?option=com_user&view=reset but I just get the same Joomla "site offline" page but with a message from a hacker in it instead of "site down for maintenance etc.""

Just to clarify, the hacker message is always there, whether I go to index.php or index.php?option=com_user&view=reset.

Thanks,
-WN
Top
 Profile  
 
mandville
PostPosted: Tue Jan 05, 2010 8:13 pm 
User avatar
Joomla! Master
Joomla! Master

Joined: Mon Mar 20, 2006 1:56 am
Posts: 11644
Location: The Girly Side of Joomla in Sussex
there is probably a code injection into all your index files
run through this document http://docs.joomla.org/Security_Checklist_7 and recover.
also use the VEL while your at it

_________________
HU2HY- Poor questions = Poor answer
Un requested Help PM's will be added to the foe list and possibly just deleted
{Community.Connect Administrator }{ Showcase & Security Moderator}
Top
 Profile  
 
Display posts from previous:  Sort by  
Post new topic Reply to topic  Page 1 of 1
  [ 3 posts ] 


Board index » Joomla! Older Version Support » Joomla! 1.5 » Security in Joomla! 1.5

Who is online

Users browsing this forum: jodofin and 14 guests

You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Jump to:  
Powered by phpBB® Forum Software © phpBB Group