Hello i hosting a myspace resource site on godaddy and it keeps being hacked b4 the guy just delited all my files but now i have seen he have also removed my google pub id and inserted his own!! I looking for some one thath can help me look for securety problems on this site url i can give if u pm. Is it my site or is it godaddys servers that make it posible to hack in and change my files etc?
Do you have a simple password for accessing your site? Try changing the password. Also look at the log files to see how the hacker got it in. There may be terms like SELECT or activities on an admin.php page if you have one. Are you using any freeware like phpNuke, phpBB, or ???
i have tyed to change my pass 2 times using totaly random password forexmapel : uD7-pP48 the godaddy dont have logs i have asked 2 times cuz i have to times payed them 150$ to restore my files the strange thing is that i have 2 other sites on the same account and they also geting delited i dont know if u use any free things its a turnkey myspace recource script that i know many sites use..
If you are using strong passwords, then the problem is with the scripts that you are using. There is a terrible misconception that just because something is "open source" or "sold" that it has been properly tested and is secure. This is simply not true. I have seen many scripts which contain significant vulnerabilities. At a cost of $150 every time you need to restore your files from back up, you need to spend some time and or money making sure your scripts are secure. It is more than worth it. I would also be going to the website where you obtained your turnkey script and see whether other people are being hacked and what solutions are available to resolve the issue.
A lot of myspace sites have an upload a pic script that is an open door to hackers. I disabled the one on my sites.
can you send me url too? if you changed it to a strong password, and was hacked fast, then it must be an inside job don't you think? someone from your organization or team, or you have a spyware on your computer that logs your actions...
I had this issue with Lunarpages. Godaddy's tech team SHOULD be inspecting all the logs to let you know how the guy is breaking in. If godaddy is doing nothing to help you stop the hacking, you need to change hosts. Consider Rackspace - they're expensive but they know their shit. This was the advice I got from the FBI when my site was under attack - not to go to Rackspace but to change hosts. The really big shared hosting companies just don't give a dma if you get hacked but a good hosting company will know in a minute how he's breaking in from the logs (unless he's a master hacker which I doubt.)