Hi,
Someone hacked the website. I don't know how did they enter into my website.
But I believe they first uploaded a .pl file and it downloaded a lot of files from other server and changed files chmod to 777
Script removed by admin
Can you tell me what does it do?
One is exploit.conf and another one is freeBSDmaster.password.c
Website hacked
Moderator: General Moderators
- social_experiment
- DevNet Master
- Posts: 2793
- Joined: Sun Feb 15, 2009 11:08 am
- Location: .za
Re: Website hacked
Possibly a poorly scripted file upload scriptagriz wrote:I don't know how did they enter into my website. But I believe they first uploaded a .pl file...
“Don’t worry if it doesn’t work right. If everything did, you’d be out of a job.” - Mosher’s Law of Software Engineering
Re: Website hacked
are you running any open source software or just your own?
Re: Website hacked
There are many exploits out there, without information as to server configuration, software versions, code for your site, etc, getting specific will be rough.
On you are able to get a file to upload and execute on a server, you can find out a lot about it, and then based upon versions of the various programs (and OS) you have installed, someone can find known exploitable items which can let them run things as root.
The fun part, if they can do that, you have to really really really check what is accessible from the outside to see where they may have set up other backdoors into your system.
Loads of fun.... Been there, done that...
On you are able to get a file to upload and execute on a server, you can find out a lot about it, and then based upon versions of the various programs (and OS) you have installed, someone can find known exploitable items which can let them run things as root.
The fun part, if they can do that, you have to really really really check what is accessible from the outside to see where they may have set up other backdoors into your system.
Loads of fun.... Been there, done that...