T-4-L Posted September 15, 2003 Posted September 15, 2003 (edited) My Invision Power Board has been hacked, what to do ? [Link removed due to objectionable content.] Edited September 15, 2003 by Rickvz Quote
TCH-Rick Posted September 15, 2003 Posted September 15, 2003 Submit a Help Desk ticket. We can restore a backup. Please include any information you can as to when it may have happened. Quote
T-4-L Posted September 15, 2003 Author Posted September 15, 2003 Can you please tell me how to submit a help ticket ? Quote
TCH-Rick Posted September 15, 2003 Posted September 15, 2003 https://ssl.totalchoicehosting.com/supportdesk Quote
T-4-L Posted September 15, 2003 Author Posted September 15, 2003 Okay, ticket submitted. Thank you. Quote
T-4-L Posted September 15, 2003 Author Posted September 15, 2003 Thanks for restoring my board Rick, what is the best way to prevent this from happening again ? Quote
TCH-Rick Posted September 15, 2003 Posted September 15, 2003 I removed the install.php file from the directory so that should prevent anyone from changing your set up. Quote
T-4-L Posted September 16, 2003 Author Posted September 16, 2003 Thanks a lot, you played a blinder mate. The support at TCH is 2nd to none, I love this place. Quote
RJSkon Posted September 16, 2003 Posted September 16, 2003 Rick How is that possible for someone to gain access to that, install.php file on the sever? Is there any preventive action that someone can take to prevent that from happening in the future? Richard Quote
TCH-Dick Posted September 16, 2003 Posted September 16, 2003 The install.php file is supposed to be deleted once you finish the install of the forums. It's easy to gain access to it if you know the path to the root forums folder. For example, if I install an Invision board to www.mysite.com/forum the root folder for the board is /forum. When you install an IPB one of the steps is to navigate to www.mysite.com/forum/install.php this sets up everything for your message board, including admin username and password. If you dont delete that file, anyone can navigate to it and change whatever they want. Another file you want to make sure is secure is config_global.php. This file has your database name as well as the database username and password in it, you dont want anyone accessing it and changing up your info Quote
Wilexa Posted September 16, 2003 Posted September 16, 2003 Mike, A simple, probably naive, question: You say that config_global.php should be "secure". I am assuming you mean that permissions need to be set a certain way. What should they be for the board to work, but still safe? ...Dave Rock Sign Quote
RJSkon Posted September 16, 2003 Posted September 16, 2003 Mike Good info, thanks. Should that install.php file be download for future use, before deleting it or is it not needed any longer? Any suggestions on making that config_global.php file secure? Richard Quote
TCH-Don Posted September 16, 2003 Posted September 16, 2003 Richard, you can change the permissions to 644 with ether an ftp program or the cpanel file manager. Quote
TCH-Dick Posted September 16, 2003 Posted September 16, 2003 Yup, turtle is right with permissions to 644 you'll be good to go. Quote
RJSkon Posted September 16, 2003 Posted September 16, 2003 Turtle & Mike Thanks Another question, my Forum email notification is not working at all now, is there any fix for that? Richard Quote
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.