been HACKED, need to know what to do where to go
Results 1 to 5 of 5

Thread: been HACKED, need to know what to do where to go

  1. #1
    Junior Member
    Join Date
    Dec 2003
    Posts
    2

    been HACKED, need to know what to do where to go

    Hi,

    I am the webiste owner with no such "advance security skills".

    We been hacked (server is Apache) and would liek to know if there is an "easy" way to improve my secuirty without losing an harm and a leg in the process.

    I have NO idea what the process is or how much it can cost if done by a 3rd party.

    We've of course lost control of our log-in details, I'm with tech support waiting for an answer on how to regain control.

    Would you be kind enough enlighthen please...not funny stuff

    Thank you

  2. #2
    HeadShot Master N1nja Cybr1d's Avatar
    Join Date
    Jul 2003
    Location
    Boston, MA
    Posts
    1,840
    can you please post some logs from the attack? Can you trace where the attack came form and report it to their ISP? Do you have firewalls installed?

    Check these sites for useful information on how to secure your server:

    http://librenix.com/?inode=2575

    http://www.oscura.co.uk/news.asp?cat_id=11

    http://httpd.apache.org/docs/misc/security_tips.html

    http://httpd.apache.org/

    http://www.onlamp.com/pub/a/apache/excerpts/chpt13/

    Good luck m8

  3. #3
    Junior Member
    Join Date
    Dec 2003
    Posts
    2
    Thanks,

    lost control of the site so can't see any log and the site seems completly deleted including cdi-bin so I suspect everything is gone

    tx for the links will cehck them out

    We're on sahred server, I assumed they have a firewall but will sure cehck with them

  4. #4
    HeadShot Master N1nja Cybr1d's Avatar
    Join Date
    Jul 2003
    Location
    Boston, MA
    Posts
    1,840
    yes, def do so...also taking the whole server offline manually could avoid further damage from the hackers until everything is brought back to normal. That is ONLY if you DONT have any vital/important materials and information in the server. Of course thats only if the server is local and you could actually to it .

    Good luck buddy

  5. #5
    Elite Hacker
    Join Date
    Mar 2003
    Posts
    1,407
    What is your website? If it is hosted by someone else there is not much you can do but keep bugging them about security. And if that doesn't work, switch hosts. If you host it yourself, it would be a good idea to subscribe to some newsletters. Maybe just search google, at least once a week, like if you were running apache search for apache vulnerability, or apache exploit. If you find something, and it affects your version, be it apache or whatever server/application you are running, find out how to fix it. There should be instructions on the site you find stuff at. As for the newsletter, I don't know of any off the top of my head, but a google search should get you some good newsletters, or mailing groups or whatever that will keep you informed about new vulnerablilities. Make sure and run all the necessities such as firewall, and antivirus and keep them updated. Just constantly be on alert for funny things happening at the computer, but I think most everything I just said is useless because I believe that you are hosting with some site and do not host on your own, so just follow what I first said and bug them about security and if they don't secure, then you find another host. It's as simple as that. Good luck.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •