December 16th, 2003, 03:12 AM
been HACKED, need to know what to do where to go
I am the webiste owner with no such "advance security skills".
We been hacked (server is Apache) and would liek to know if there is an "easy" way to improve my secuirty without losing an harm and a leg in the process.
I have NO idea what the process is or how much it can cost if done by a 3rd party.
We've of course lost control of our log-in details, I'm with tech support waiting for an answer on how to regain control.
Would you be kind enough enlighthen please...not funny stuff
December 16th, 2003, 03:16 AM
can you please post some logs from the attack? Can you trace where the attack came form and report it to their ISP? Do you have firewalls installed?
Check these sites for useful information on how to secure your server:
Good luck m8
December 16th, 2003, 03:21 AM
lost control of the site so can't see any log and the site seems completly deleted including cdi-bin so I suspect everything is gone
tx for the links will cehck them out
We're on sahred server, I assumed they have a firewall but will sure cehck with them
December 16th, 2003, 03:31 AM
yes, def do so...also taking the whole server offline manually could avoid further damage from the hackers until everything is brought back to normal. That is ONLY if you DONT have any vital/important materials and information in the server. Of course thats only if the server is local and you could actually to it .
Good luck buddy
December 16th, 2003, 05:25 AM
What is your website? If it is hosted by someone else there is not much you can do but keep bugging them about security. And if that doesn't work, switch hosts. If you host it yourself, it would be a good idea to subscribe to some newsletters. Maybe just search google, at least once a week, like if you were running apache search for apache vulnerability, or apache exploit. If you find something, and it affects your version, be it apache or whatever server/application you are running, find out how to fix it. There should be instructions on the site you find stuff at. As for the newsletter, I don't know of any off the top of my head, but a google search should get you some good newsletters, or mailing groups or whatever that will keep you informed about new vulnerablilities. Make sure and run all the necessities such as firewall, and antivirus and keep them updated. Just constantly be on alert for funny things happening at the computer, but I think most everything I just said is useless because I believe that you are hosting with some site and do not host on your own, so just follow what I first said and bug them about security and if they don't secure, then you find another host. It's as simple as that. Good luck.