Hi all,
Completely and utterly out of my depth here. I keep getting the message below from totalchoice and I'm not sure it's something I should be concerned about (I think they sent it to everyone). I don't THINK I installed any scripts but I do have a few e-mail accounts (like webmaster@tfcassociation.org) that I set up through my cpanel. Does that use the scripts they are referring to? I think there's a form to send comments as well (it was a default set up in frontpage and I never really got it to work right), would that be a problem? I know I sound like a complete idiot but if I'm opening them up to hackers, I want to correct the problem. I tried looking in my public_html folder and I see some mail-related things in there but I don't know if they're the scripts they're talking about in the paragraph below or something that's supposed to be there. I'm happy to remove any possible threat but I just don't know enough to know what one is when I'm looking at it. Thanks!
Erika
We have seen a huge increase in the amount of exploited form mail
scripts taking place on our servers. The attackers are using insecure
form mail scripts to send out spam from the client's web site. It is
critical that you maintain a safe and secure account by continually
keeping your scripts up to date and secure. Please take a moment to
review your account contents. If you're using mail form scripts and are
unsure of their security you should immediately remove them from your
account. Unused scripts that reside in your public_html folder are
still accessible to the public and can be used at any time if they are
found. In regards to your in use scripts, please check them for
security. If you're unsure on how to do this you should contact the
script creator as we can not provide assistance on coding or scripts.
