[HELP] How to stop a forum attack

Discussion in 'PHP' started by uchihaprince, Dec 7, 2008.

0
  1. #1
    my IPB has been attacked and now redirects to another spyware if i click certin parts of the site :(:(:(

    it sometimes tries to download spyware..........

    if any1 knows how to stop this and prevent it id be helll gratefullll
     
    uchihaprince, Dec 7, 2008 IP
  2. EricBruggema

    EricBruggema Well-Known Member

    Messages:
    1,740
    Likes Received:
    28
    Best Answers:
    13
    Trophy Points:
    175
    #2
    Reinstall the software and keep it up to date!
     
    EricBruggema, Dec 7, 2008 IP
  3. Demonic

    Demonic Active Member

    Messages:
    821
    Likes Received:
    12
    Best Answers:
    0
    Trophy Points:
    85
    #3
    And to add on, always backup your site from time to time.
     
    Demonic, Dec 7, 2008 IP
  4. deathshadow

    deathshadow Acclaimed Member

    Messages:
    9,732
    Likes Received:
    1,999
    Best Answers:
    253
    Trophy Points:
    515
    #4
    Also make DAMNED sure the directory permissions are set properly. A number of forum softwares leave their settings.php (or equivalent) file as 775, which could allow a malformed attachment to append code to it - which is why I drop it to 744.

    Of course, if they are attacking via that route and you are hosting on winblows, you are pretty much ****ed since windows file permissions are pretty much a joke.
     
    deathshadow, Dec 7, 2008 IP
  5. Kaizoku

    Kaizoku Well-Known Member

    Messages:
    1,261
    Likes Received:
    20
    Best Answers:
    1
    Trophy Points:
    105
    #5
    lol, winblows. Yeah, keep the forum up to date. And as a rule of thumb; normal files 644, and normal folders 755. If the file really needs 777, then do it.

    Here is a some commands to do that.
    cd to your dir.
    
find ./ -type d -exec chmod 755 '{}' ;\
find ./ -type f -exec chmod 644 '{}' ;\
    Code (markup):
     
    Kaizoku, Dec 7, 2008 IP