Ok after being hacked 4 times i had to do some research and found this is thee best way to stop hackers of any kind what so ever! First If you have already been hacked then you must have a pretty good idea of where the hacker is from, note all of that info down! Ok even if you dont have it move to step 2 Second Now the best way, or the first step to stop hackers is to ban ips now which ips? well here are some countries which is full of potential threats: Tehran Iran Saudia Kuwait Qatar Turkey Third: Install the GEOIP mod: http://www.maxmind.com/app/mod_geoip And ban the following countries: Tehran Iran Saudia Kuwait Qatar Turkey Any comments on this welcomed
One obvious problem is if you have users from those countries. There are a lot of arcade sites that have large percentages of Turkish users (IIRC).
Yeah, and those hackers have never heard of proxies. This will never really be THE BEST way to secure a site. This is like leaving Harrods unlocked and just stopping muslims form entering. Real security takes a bit more sophisticated approach.
I know that but i have to do the best i can? i mean cmon im not here whining about how i was hacked im acutally trying to do something.. And as far as my budget goes this si the best approach for me If you have any ideas how to get more secured...im all ears here bro
I'm just saying your labeling this 'solution' quite generously. Sure, it may work for you for some time but this is hardly secure. Better is to find the actual holes and patch them. Here's a tip I can share: When installing Open Source or other popular software, ALWAYS change the default folder names. On vB admincp/ becomes adminhere/, osCommerce's /admin becomes /manage and /includes becomes /required. It may only be security by obscurity but at least the thousands of hackers' file probes fail and they'll move to someone else's server.
Im sure you have more juicy tips then that but thanks for that one!! Ill keep that in mind! hmm seems like shawn didnt quite secure dp lol http://forums.digitalpoint.com/admincp/
Dear friend gnet today my site hacked by someone from mention of the above countries. I disagree with your approach it's like I have headache so we cut head and we are ok. We must find more sophisticate approach to solve the problem
Not only is this not the best way to secure your website, it does not secure your site. It is based on the incorrect presumption that black hats and script kiddies only come from a short list of Middle Eastern countries. This is absolutely incorrect. There are multitudes of such individuals in the United States, Canada, China, western Europe, Russia, and every other country with internet service. There is only one way to certifiable protect the data on a server -- never use a server. The next best solution is to follow TOPS30's advice, study all sources of information about securing internet servers, make sure all software is fully patched all the time, harden all software installed on your machine, review the source code for all scripts that you install to determine whether or not they contain obvious holes, use hard to guess user names and passwords. There is no such thing as perfect security and no such thing as an inately secure operating system. That is marketing hype. Therefore, it is imperative to do the most you can to protect your data.
This is actually why I will only use my own PHP code on my sites except for *very* unimportant details. Blogs, phpBB, etc - every time I've installed something third party it's been hacked on my servers. If I ever install third party software it MUST be well supported, actively, and I subscribe to updates. You can't let any software remain unpatched. Server software itself (PHP, Apache, qmail, mysql) then becomes the largest problem, but those have never been as big an issue for me. Preferably, your host will perform upgrades ASAP. Otherwise, make sure you or a hired server admin keep things up to date.
You can get hacked from anywhere, heard of TOR? or proxies in general? lol. The best security is not blocking countries, but making/using scripts without holes.
Banning ip:s without a clear reason has nothing to do with security. Although you could hack the original ip of a hacker, he'll just use proxy and that's it. In my oppinion best ways to prevent website hacking (hacking an entire server and preventing that is a different thing and is host's responsibility, unless you have an unmanaged dedicated server) - Use scripts which have good reputation and which are in active developement (meaning that when for example a security hole is found that will be patched quickly) - Remember to keep your scripts up to date (this is very important) - Keep your folder and file structure clean...don't upload your extra files here and there etc. - Make sure your files and folders have correct permissions. - If you notice anything wierd going on (wierd traffic etc) contact your host although you wouldn't have been hacked. It's good to let your host check it (and they should do it!) and tell you what is causing it and if it's ok or not.
You can get hacked from anywhere or proxies The best security is not blocking countries, but making/using scripts without holes. and my site hacked by similar script
Absolutely agree! Again, dead-on...one of the simplest ways is to change filenames. Most of their hacking scripts are looking for default names. This does not secure you, but rather LOWERS THE RISK. There is a difference. I would advise having a good talk with a Senior IT Security officer at your hosting company, or switching to a better host that has better security measures in place. I also, I know it's been said, but only use SECURE programs and scripts on your site.
There's no such thing as 100% secure, only more secure or less secure. Changing default filenames is a good approach, but not as important as keeping up with the latest patches on a script. Even more secure would be to use as few scripts as possible, so you only have to go one place to check for patches. Otherwise it becomes tedious to maintain your scripts, and you will end up forgetting to do it or just not bothering.