In light of Princess Destiny's report and another, I am going to suggest that everyone CHMOD their config.php file and messages/ folder to 644. From what I can see on the one site it looks like this guy is only able to get to these.
Okay a little more investigating on the two sites I know have been hacked. If you have your dbconfig.php file in a folder inside your eFiction folder and that folder is called "data" RENAME IT NOW! In fact, if you can, move it. At the very least rename it to a very wierd name, edit config.php to point to the renamed folder, then CHMOD it so it's not accessible. Also put a blank index.php in that folder so hackers can't confirm that's where your config file is.
Also, if you have the phpinfo.php file on your server DELETE IT. It's not necessary for the function of your site, and it a way for hackers to get a good deal of useful information.
when i change my messages folder to 644 i get this....
Warning: file_get_contents(messages/copyright.txt): failed to open stream: Permission denied in /usr/home2/nsync908/public_html/archive/func.pagemenu.php on line 68
Warning: file_get_contents(messages/welcome.txt): failed to open stream: Permission denied in /usr/home2/nsync908/public_html/archive/index.php on line 38
π³ π³
edit: my site was hacked too... yesterday http://www.nsyncfiction.com/archive
he edited my welcome message and site title ... his name was "VIPSTA".
Change the folder back to 755 and the files in it to 644. Also, it is a good idea to make sure every folder has a blank index file.
thanks Carissa! that fixed the errors i was getting π
could you let me know where i can fix the review notfication emails? that was hacked too i think, members have been emailing about that too.
Are you saying they changed the text? If so, you'll need to go into the en.php file in the languages folder and change it back to the original. If you don't have a backup on your computer, download a new copy and either replace the file or copy over what they changed.
Given what they've done on other sites, and how we suspect they've gotten in, I don't see how it was possible for them to get into that file though...
Another suggestion. From the logs I've been sent it looks like our hacker is finding sites using google and searching for "Powered by eFiction". If your skin lists this in the footer, we won't be offended if you take it off.
Or you can always change it.
Driven by eFiction
Vitalized by eFiction
Energized... change it to fit your fandom.
Whoever said nothing is impossible never tried slamming a revolving door.
url: https://www.potionsandsnitches.org/fanfiction
php: 7.4.33 msql: 5.6.51-community GPL
efic version: 3.5.5 latest patches: yes
bridges: none mods: challenges, tracker, story end, beta, word
Some great suggestions. I moved my dbconfig file to a level above my web directory (For example if your web is in /var/www/ I moved it to /var/data/) This way it can not be accessed via a browser call.
Some great suggestions. I moved my dbconfig file to a level above my web directory (For example if your web is in /var/www/ I moved it to /var/data/) This way it can not be accessed via a browser call.
I've had mine there from the start π
I suggest doing some robots.txt so that all the other folders that should not be indexed by search bots are not.
Ah, one problem with robots.txt is that while most robots will respect it, others will use it as a road map to exactly the folders you don't want them in.
I'm sorry, but due to my schedule, I am not available for commissions.
Do a google sitemap if your sites are listed with google, in fact just do one or a robots txt.
Lazuli, I didn't know some bots do that, it must be the evil ones πΏ
Some great suggestions.Β I moved my dbconfig file to a level above my web directoryΒ (For example if your web is in /var/www/ I moved it to /var/data/)Β This way it can not be accessed via a browser call.
I've had mine there from the startΒ π
Me too.Β Seems like people ought to be doing that anyway.Β It tells you to do it right in the README.txt file.Β
4) Modify data/dbconfig.php with the appropriate MySQL database info, and put outside the web directory.
Yeah, I'm one of those nerds who always reads through the instructions before starting a project.Β My brothers laugh at me for it.Β Then when they can't get stuff to work, they call me for help.Β hahaha
Anyway, if it's outside the web directory, it shouldn't need a blank index page in the same folder, should it?
"A trifling matter, and fussy of me, but we all have our little ways." - Eeyore, The House at Pooh Corner
No, it shouldn't, because they can't access those files anyway.
