One of the websites I did for a local business has been hacked. It was running Joomla 1.5.13 with a few addon modules. How can this be stopped?
What happened? Did you lose the domain or someone added malicious code to your website's source file. Also a link to your site can drive proper responses.
Thankfully I had a backup which I did last week so the website was back up and running within a few hours. I suspect this was caused by a joomla addon rather than joomla itself. Does this sound right?
4. Check the permissions of the files and folders and make sure that you have assigned the permissions correctly. [/QUOTE] I want to know how can I change and secure the permissions in my htaccess
changing permissions can be done with the chmod command. It would be in the following syntax via ssh, "chmod 644 filename" or "chmod 755 directory". Those are proper permissions, but you may want to find out if your host is running suphp/cgi first. Some directories may need 777, usually upload folders, etc...
You can check your server apache logs to find who and how it was did. Usually free open source scripts like Joomla with some plugins are very easy to hack. Their code is open and anyone can find a problem and use it.
also may want to check out /var/log/messages. You can find some useful information, mainly ftp logins, changes etc...
That can be the case. You can check for known vulnerabilities in Joomla and its addons at http://secunia.com/advisories/search/?search=joomla .