Page 1 of 1
protect server
Posted: Wed Jun 11, 2008 3:23 pm
by ibm1234
how to prevent access to my server? because my file [index.php] was changed..
and how to modify php.ini?? bcos i want to turn on safe_mode
Re: protect server
Posted: Wed Jun 11, 2008 9:24 pm
by hansford
you host and their little gremlins have access as well as anyone who knows your login info. As far as turning safe mode on. Most hosts have safe mode on by default. I cannot modify this in my php.ini - they wont allow this. the php.ini will be in your root or in some dir that the host setup.
Re: protect server
Posted: Wed Jun 11, 2008 9:38 pm
by superdezign
ibm1234 wrote:how to prevent access to my server? because my file [index.php] was changed..
Talk to your service providers. It's their responsibility jus as much as your to keep hackers at bay.
ibm1234 wrote:and how to modify php.ini?? bcos i want to turn on safe_mode
Safe mode can't save you now.

Hopefully these questions are unrelated. Otherwise, you have a false conception of what safe_mode does.
Re: protect server
Posted: Thu Jun 12, 2008 12:37 am
by ibm1234
what should i do if somene has been changed my file??
its useless if i rewrite the file as same as bfore.. theyll do the same thing again..
T_T
any solution??
Re: protect server
Posted: Thu Jun 12, 2008 1:33 am
by Mordred
You must find out how it happened. The most common way to do that is to install a troyan on your machine, sniff your FTP password, and then modify whatever they want. It will help if you show us what modifications were made, and if anything shows in the access logs. Try restoring your index.php and then browse the site a bit, access it some times with FTP and see when it will be modified again.
Re: protect server
Posted: Thu Jun 12, 2008 1:34 am
by hansford
call your HOST they can change your userid & password or they have a manage HOST page which allows you to do this.. Do not give this info out unless you implicitely trust them. Do Not run scripts that has this info. Do a virus scan on your OS. There are hackers out there that are better than us at getting this information. If it happens again-after making these changes-call your HOST. They have a server go down and you make changes before they do their backup, then your old page will be whats left. - rare. very.
Re: protect server
Posted: Thu Jun 12, 2008 1:40 am
by Benjamin
First thing I would check are any file upload forms or third party script vulnerabilities.
Re: protect server
Posted: Fri Jun 13, 2008 2:30 am
by taramichael
Is PHP codes are protecting the Servers?
cheap web hosting
Re: protect server
Posted: Fri Jun 13, 2008 12:46 pm
by Benjamin
Hey it's the spammer again.
Re: protect server
Posted: Fri Jun 13, 2008 7:44 pm
by hansford
LMAO! as if we don't get enough of that in our lives.