The sites were minimal, less than minimal, while I was working on them and putting off working on them. I got a note from my host provider about malware. Google also was upset with me.
So I deleted everything and started over. All was fine.
Within a couple months, the host provider again said a couple of my sites were infected with malware possibilities. I only had the login box showing. I had stopped Joomla from serving pages.
I asked the provider for an education in what he was talking about and got a cryptic email consisting of this list.
Insecure direct object references
Cross-site request forgery (CSRF)
Insecure cryptographic storage
Failure to restrict URL access
Insufficient transport layer protection
Invalidated redirects & forwards
The provider didn’t say which of those I had, though.
Can anybody please tell me how I could get infected with only a login box?
The hosting provider offered “protection” for hundreds of dollars a year.
As a side note, I downloaded and installed FPA, but when I went to the link I got a only my login box. I logged in and tried it again, and same thing. And I could find no log file anywhere. And the script was gone when I looked with file manager.
I’m going in circles.