Have I been hacked?

I don't think you've been hacked in the true sense of the word. It seems like he uploaded a file to your stories folder because it has to be CHMODed to 777. I know it feels like a terrible breach, but I think you're ok. Just delete the file, make a new, blank index.php file and CHMOd just to 666. To be safe, you might want to change your passwords too.

ETA Make sure you have register globals off in your settings. If your host has them on, you can turn them off with an htaccess file or email your host and get them to do it for you.

Thanks so much. That is a relief.  And I'll take your advice and change my passwords. Where would I go to check the register globals status? Nevermind, found it. They are on, I'll get that taken care of. 😉 Thanks again for the help!

--deleted--

Had a problem, but figured it out.

Put an htaccess file in the stories folder with the following in it:

<files *>
Order deny, all
Deny from all
</files>

That will prevent direct access to all the files in the stories folder.  Since the script includes the text rather than reading the file directly, it won't affect eFiction.  It will stop hackers from running scripts out of the directory.

I think I have been hacked again.

It started with getting a 500 Internal Server Error, now it is _FATALERROR _NOTCONNECTED

A visitor informed me that for a small point in time when they went to the site they got access to the block_config.php file, and it was some Turkish crud saying I had been hacked. I think this is the same guy as before, only this time instead of adding a file to the stories folder, he replaced the block_config.php file. I have since replaced it back with the original file, but I fear other damage has been done.

Regrettably the last back up I made of my site was 11-1-07. I'd rather find a way to fix this over losing all that content by restoring to that old of a file.

I've tried moving the site to other hosts, but still get the _FATALERROR _NOTCONNECTED and cannot get my MySql tables to work, this is also for my Forum besides eFiction.

Can anyone help me???? My host is being less than helpful, as usual, which is why I want to leave them, but this has put a wrench into my plans.

ANY help would be appreciated.

Site info is in the original post of this thread.

I got done a little while back, perhaps even by the same crud you are talking about. And what i did, was deleted the entire contents of the efiction folder (although left stories there after checking each one for no bad things) and then just reuploaded the install (for me it was 3.3.1) and i found that once the files were replaced, everything seemed fine and i have had no trouble since.

At first i tried just reuploading and overwriting, but that didnt work, since there were files that should not have been there, so i cleaned the lot out, and reuploaded, fixed the config file and everything was good again. Fortunately my tables seemed completely unharmed.

Yeah, your Site info is not in the original post of this thread. What version are you using?

I'd do what jacci suggested, delete everything on the remote folder but the stories folder, and go through that folder manually to see what files are in it - it should just have story text files and folders. Unless you modified your script, the files on your server should be the same files as a new eFiction download from this site (except for the stories folder and the config file, maybe some skins if you made your own). The database is what makes every archive different from another, and that is what you want to have safe, and not redo.

Then upload the eFiction files again.

You should make more frequent back ups of the database, and to a lesser extent the story text files. Authors can always reupload chapter text, but they can't post the reviews they got again.