How to check sites security

hiya
i have practically finished my site again after it got hacked last night .. but was wondering if there was any way i can check it to see if there is any way someone could get in again. I obviously dont want to start adding links if its just gonna get ruined again.
i have found out the way the 'person' got in last night, and think i have fixed that problem .. but with me not being an internet expert, i dont know if theres any other way they could get in .. or how to check if they could.
Am i rambling ? lol
Anyway, if anyone has any pointers on what to check, i would be extremely grateful
Many Thanks
Erica xx

 

help us out here.
are you using a cms? php? if so, check your config file is not open. also, if its a homebrew cms you NEED to get someone to look over it for you, check all user inputs get cleared! second.
change all your passwords, ALL, change mysql pass, mysql user, cpanel pass, cms pass and the email that cpanel sends emails to pass.

 

sorry .. its a directory script i am using (php files)
the config file .. what setting should that be on please ? and i will go and check it.
I dont know what cms is, so am assuming i am not using it

after last night when my site got hacked, i have changed passwords of absolutely everything on every site i have, i have deleted the user and database and started again from scratch so they have diff names and pass's .. the email address associated with that cpanel was one from a different domain, but even so, every email password has been changed. talk about feeling paranoid lol

Thanks for replying
Erica xx

 

Well have you figured out how they got in the first time? That would be where I would start. And my own personal opinion is that the best way to tackle this problem site destruction by hackers is to firstly have a daily backup policy or a backup every time your site is changed if your content changes very little. And secondly to sacrifice time doing research and keeping up with the latest exploits, especially the widespread ones relating to PHP. Prevention and cure.

 

Thank you wormy
My host had a look and said he couldnt see anywhere that anyone had got in illegally .. and someone else pm'd me and mentioned the fact that sometimes the database pass can be seen on some files (i didnt know this) .. and stupid me, i used the same password on the database as i did on my cpanel, and i hadnt even changed that from the basic pass that came with my hosting .. so in all probability thats how they got in .. i think its not a case of actual hacking is it, more a case of my stupidity
anyway .. i have totally changed my way now. i spent a full day changing passwords to EVERYTHING that needed passwords .. this included ebay, paypal, forums, my sites, sites i had done for others, admins, all emails, you name it, i changed it .. they all now have random letters (mixed cases) numbers and characters. I backup EVERY time i change something and on my store site, i backup at the end of every day (so i get new customers and sales backed up) .. and i have lectured all my friends and family to be aware when using the internet.
One of my sites has zencart on it, and i am always checking that i am up to date and that there is no new patches.
On the site that got defaced, I have taken that script off. I have now started working on a different url and went for a more indepth one. I have signed up to their forum too and will watch out for patches and updates etc.

I'll also do what you said about researching vulnerabilities etc in php.

Many Thanks for you reply .. and sorry for the war and peace sized message back lol
Erica xx

 

if yo dont own the server and you dont know about nix system there is nothing to do

 

I would recomend you install Tripwire on that host, very usefull to track changes in future.